IE forwards to another URL

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

When I select on a link with right mouse button to "Open in a new window"
I've queried for in GOOGLE within the past week the new window forwards to
some other URL usually loaded with advertisements. If I back up one step it
takes me to the URL I originally wanted.

Anybody know if this is some sort of AD-WARE problem or experienced this
type of thing before?

Thanks,
 
Todd,

Yes this is an adware thing. Here is what I would do.

1. Go to C:\WINDOWS\system32\drivers\etc open the hosts file with
Notepad. If you have andother version of Windows you may need to
replace 'WINNT' with 'WINDOWS'. This file should look something like
this:

# Copyright (c) 1993-1999 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host
name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

2. Make sure there are no other entried after the 127.0.0.1
localhost
3. Go to http://www.spywareguide.com.
4. Click on Tools
5. Click on Free Online Scanner
6. Allow the ActiveX control to load and install x-cleaner.
7. Run x-cleaner
8. After it is done uninstall x-cleaner.
9. Retry visiting the website. See if you are still forwarded to the
ads page.
10. Open IE go to Tools->Internet Options->Programs->Manager Ad-Ons.
11. In here disable any program which you think looks suspicious. If
you have google, yahoo, etc these are well known but Spywareboot or
any application that has no publisher should be disabled.

I hope this helps.
 
yes this is a browser hijack which is adware and or malware. You can run Ad
Aware a free Adware program from www.lavasoft.com for the adware and for
malware help google malware until you find something you can use. Let me
know if this helps.
Best,
Kaja
 
This may be caused by spyware/malware that's gotten installed on
your system. Use Ad-Aware, Windows Defender and/or Spybot Search & Destroy
to remove it.

Windows Defender
http://www.microsoft.com/athome/security/spyware/software/default.mspx
Ad-Aware: http://www.lavasoftusa.com/
Spybot: http://www.safer-networking.org/en/index.html
Good sites on how to install and use Spybot -
http://www.safer-networking.org/en/tutorial/index.html
http://tomcoyote.com/SPYBOT/index1.php

Also download a winsock repair tool, to have just in case cleaning up
anything found breaks it -

Winsock repair tools:
LSPFix- all versions of Windows http://www.cexx.org/lspfix.zip
Winsock2 Fix- Win98, ME
http://www.bu.edu/pcsc/internetaccess/winsock2fix.html
LavaSoft- all versions of Windows-
http://digital-solutions.co.uk/lavasoft/whndnfix.zip

More information here:
http://www.spywareinfo.com/
http://inetexplorer.mvps.org/tshoot.html
http://spywarewarrior.com/sww-help.htm

If no joy, in IE go to Tools...Internet Options...Advanced tab, Browsing
section, uncheck "Enable third-party browser extensions", click Apply, click
Okay, reboot. If that solves your problem, then more troubleshooting is
needed to find out exactly which program, or Browser Helper Object (BHO) is
causing this problem. You don't want to leave it at that, as some BHOs are
useful or necessary - like Adobe Acrobat for reading .pdf files or an
essential component of Norton AV. Get BHODemon -
http://www.definitivesolutions.com/bhodemon.htm - read all about BHOs.
Disable all items, and then gradually replace one or two at a time to narrow
down the culprit.

Or if you have IE 6 SP-2 you can do this within the browser:
How to manage Internet Explorer add-ons in Windows XP Service Pack 2
http://support.microsoft.com/default.aspx?scid=kb;en-us;883256

If all the above fails, then the problem could be something new that the
spyware cleaners above don't have in their databases yet. In that case....
HijackThis direct download:
http://www.spywareinfo.com/~merijn/files/hijackthis.zip
Tutorial on how to use HijackThis:
http://www.spywareinfo.com/~merijn/htlogtutorial.html
Then post it's output log to the forum here for analysis and feedback by the
parasite experts:
http://forums.spywareinfo.com/
http://aumha.net/viewforum.php?f=30
Or one of the other HijackThis Logs forums listed here:
http://www.spywareinfo.com/~merijn/forums.html

Or try this program to get some of the most nasty malware:
CWShredder direct download:
http://aumha.org/downloads/cwshredder.zip

An alternate resource for all of this and more:
http://www.aumha.org/secure.htm
 
Back
Top