Could be a hosts file hijacker. Could be a DNS hacker. Could be lots of things.
Lets take a look.
- Download HiJackThis v1.98.2 (written by Merijn Bellekom) from
Save HijackThis.exe into its own permanent directory, NOT in a TEMPorary folder or on the DESKTOP. Temporary folders get cleaned out periodically and are often destinations for viruses and spyware. So you don't want it there. If you place HJT on the Desktop, then all of your logs and backups will get spread out over the desktop. That is not efficient. For simplicity, I recommend c:/program files/HJT/
Important: Close all windows/programs, internet connections and especially internet browsers before scanning and fixing with HJT.
- Doubleclick HijackThis.exe. Config | Misc Tools | Check for update online, save into your permanent directory. If you find a new version, then close HJT. Unzip into permanent directory. Replace file=Yes.
- Doubleclick HijackThis.exe. Press the <Scan> button
DO NOT FIX ANYTHING YET!! Most of the entries found in a HiJackThis scan are programs/files which are REQUIRED for your computer to operate normally.
- Press the <Save Log> button and save into your HJT folder. Change the file name to HJT 9-22-04a.log or some similar dating nomenclature so you can identify each log
- The log should automatically open in Notepad. If not, open the log file from any text editor (Notepad, MS Word, Word Perfect, etc)
- Copy/paste the results here in this forum and let an expert evaluate it for you.
- Close HiJackThis//
Ich kann auf Deutsch helfen. Mach ein' post und PM mich. Peebs85 kann auch Deutsch.
If I help you, please donate to upgrade our outgrown server. I will donate my time to helping you for free, but the server is not free. Please send donations to Jason Connors (TSF owner), 4410 Grandwood Lane, New Port Richey, FL 34653. Even if its only a dollar. Thank you.