Duke said:
hi, my ie has been hijacked by nowfind.net, and it will not go away no
matter what i try, i change the hompage, it changes back, i have removed the
registry entries, and they come back, anyone know what the host file is?
Beginning of standard canned reply.
Update Windows. Use a firewall.
Use an Anti-Virus of your choice and keep it updated.
In Windows Explorer, set Folder Options to “show all files”.
Clean out all temp, cache, ect. files.
Download BeClean here:
http://boozet.xepher.net/beclean/
Download Sysclean from here:
http://www.trendmicro.com/ftp/products/tsc/sysclean.com
Read this(it tells you how to use it!):
http://www.trendmicro.com/ftp/products/tsc/readme.txt
Reboot into safe mode and run Sysclean, write down results, then reboot
normally.
If offending file is in “restore” read this:
http://service1.symantec.com/SUPPOR...2001111912274039?OpenDocument&src=sec_doc_nam
Download AdAware from here:
http://www.majorgeeks.com/download506.html
Read the help files,download the winsock fix, and then Update and run
AdAware.
If you lose your Internet connection after running AdAware run the fix.
Winsock Fix here:
http://www.tacktech.com/display.cfm?ttid=257
Download Spybot Search+Destroy here:
http://www.safer-networking.org/en/download/index.html
Read this:
http://www.safer-networking.org/en/tutorial/index.html
Update and run Spybot (enable all protection).
Download Spyware Blaster here: (enable all protection)
http://www.javacoolsoftware.com/spywareblaster.html
Run a couple of online scanners (pick a different one than your main AV):
BitDefender:
http://www.bitdefender.com/scan/licence.php
Norton:
http://security.symantec.com/sscv6/...d=sym&plfid=23&pkj=XHPGJRSOMVZGYYTZXPE&bhcp=1
Panda:
http://www.pandasoftware.com/activescan/com/activescan_principal.htm
eTrust:
http://www3.ca.com/securityadvisor/virusinfo/scan.aspx
House Call:
http://housecall.trendmicro.com/housecall/start_corp.asp
If the previous do not solve your problems:
Download Bazooka here:
http://www.kephyr.com/spywarescanner/
Download SwatIt here:
http://swatit.org/
Download KL-Detector here
http://dewasoft.com/privacy/kldetector.htm
Download CWShredder here
http://www.intermute.com/spysubtract/cwshredder_download.html
Download HijackThis here:
http://www.majorgeeks.com/download3155.html
Install, run and save the log that is created. Don’t let it fix anything
yet!
You can find forums to post the log to have it analyzed here:
http://tomcoyote.org/hjt/
Download Stinger here:
http://vil.nai.com/vil/stinger/
Download eScan here:
http://www.mwti.net/antivirus/free_utilities.asp
Rename the downloaded file escan.zip and extract (with a zip program) to
C:\Downloads, which you will have to create. Run the updater
(kavupd.exe) and then run eScan (mwavscan.exe).
End of standard canned reply.
-max
--
Keeping Windows Clean:
http://www.geocities.com/maxpro4u/madmax.html
Virus Cleaning+Fixes:
http://www.geocities.com/maxpro4u/TechPros
Change nomail.afraid.org to neo.rr.com so you can reply by e-mail
(nomail.afraid.org has been set up specifically for
use in Usenet. Feel free to use it yourself.)
