J
Jane Smith
Help
Windows xp home version will NOT let me go to google????
Help me pls
Jane
Windows xp home version will NOT let me go to google????
Help me pls
Jane
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
P
PA Bear
Update your virus definitions and then run a full system scan. From now on,
do both once-a-day.
Trojan.QHosts
http://www.symantec.com/avcenter/venc/data/trojan.qhosts.html
If still no joy, see:
Dealing with Unwanted Spyware
http://mvps.org/winhelp2002/unwanted.htm
These days most of us are recommending HijackThis to identify and assist in
the removal of these bad guys. Post your files to the forum mentioned on
the above page.
If you cannot access the page to download HijackThis, use this link:
http://216.180.252.218/~spywareinfo.com/downloads/tools/hijackthis.zip
If you find you need CoolWebSearch Shredder, use this link:
http://216.180.252.218/~spywareinfo.com/downloads/tools/cwshredder.zip
(Get a fresh copy of CWS Shredder before each use. It's updated
frequently.)
--
HTH...Please post back to this thread
~Robear Dyer (aka PA Bear)
MS MVP-Windows (IE/OE)
http://mvp.support.microsoft.com
AH-VSOP
http://forum.aumha.org/
do both once-a-day.
Trojan.QHosts
http://www.symantec.com/avcenter/venc/data/trojan.qhosts.html
If still no joy, see:
Dealing with Unwanted Spyware
http://mvps.org/winhelp2002/unwanted.htm
These days most of us are recommending HijackThis to identify and assist in
the removal of these bad guys. Post your files to the forum mentioned on
the above page.
If you cannot access the page to download HijackThis, use this link:
http://216.180.252.218/~spywareinfo.com/downloads/tools/hijackthis.zip
If you find you need CoolWebSearch Shredder, use this link:
http://216.180.252.218/~spywareinfo.com/downloads/tools/cwshredder.zip
(Get a fresh copy of CWS Shredder before each use. It's updated
frequently.)
--
HTH...Please post back to this thread
~Robear Dyer (aka PA Bear)
MS MVP-Windows (IE/OE)
http://mvp.support.microsoft.com
AH-VSOP
http://forum.aumha.org/
G
Glenn Hanley
Jane:
I am having the exact same problem only I am using IE6.0.
Let me know if you get an answer that works, please.
thanks,
Glenn
(e-mail address removed)
I am having the exact same problem only I am using IE6.0.
Let me know if you get an answer that works, please.
thanks,
Glenn
(e-mail address removed)
H
H Leboeuf
Qhosts virus/trojan, aka delude.
http://www.f-secure.com/v-descs/delude.shtml
NAME: Delude
ALIAS: Trojan.BAT.Startpage.a
Delude is a trojan that is available on a web page. The web page contains a
code that uses a vulnerability in the Internet Explorer (MS03-032) to
execute.
More information about the vulnerability, including a fix, is available from
Microsoft at:
http://www.microsoft.com/security/security_bulletins/ms03-032.asp
VARIANT: Delude.A
The HTA code available on a web page downloads a file "partyboy.exe" from an
ftp site and runs it. This file is is packed with UPX. It is a batch file
which was compiled to executable binary (".exe") using a BatToExe tool.
When executed, it changes the Internet Explorer start page to find-now.info.
It prevents access to the most major search engines such as Google, Yahoo,
Lycos, MSN and AltaVista. To do this it replaces the following file:
More:
http://securityresponse.symantec.com/avcenter/venc/data/trojan.qhosts.html
http://securityresponse.symantec.com/avcenter/venc/data/trojan.qhosts.removal.tool.html
http://vil.nai.com/vil/content/v_100719.htm
http://www.sophos.com/virusinfo/analyses/trojqhosts1.html
An other removal tool that has been used with success.
http://www.brown.edu/Facilities/CIS/Software_Services/virus/index.html
http://www.f-secure.com/v-descs/delude.shtml
NAME: Delude
ALIAS: Trojan.BAT.Startpage.a
Delude is a trojan that is available on a web page. The web page contains a
code that uses a vulnerability in the Internet Explorer (MS03-032) to
execute.
More information about the vulnerability, including a fix, is available from
Microsoft at:
http://www.microsoft.com/security/security_bulletins/ms03-032.asp
VARIANT: Delude.A
The HTA code available on a web page downloads a file "partyboy.exe" from an
ftp site and runs it. This file is is packed with UPX. It is a batch file
which was compiled to executable binary (".exe") using a BatToExe tool.
When executed, it changes the Internet Explorer start page to find-now.info.
It prevents access to the most major search engines such as Google, Yahoo,
Lycos, MSN and AltaVista. To do this it replaces the following file:
More:
http://securityresponse.symantec.com/avcenter/venc/data/trojan.qhosts.html
http://securityresponse.symantec.com/avcenter/venc/data/trojan.qhosts.removal.tool.html
http://vil.nai.com/vil/content/v_100719.htm
http://www.sophos.com/virusinfo/analyses/trojqhosts1.html
An other removal tool that has been used with success.
http://www.brown.edu/Facilities/CIS/Software_Services/virus/index.html