Oh, and - probably related - none of the system restore dates from before the beginning of the infection will restore. They are indicated as existing, but after clicking on them and then "restore" nothing happens. I tried that early on and in the last day.
Try doing this from the command prompt in safe mode:
I used the last know good option from the F8 menu and got lucky I guess. Didn't have to try system restore.
I had dumped all cookies and temp internet files as well as removing Firefox before the use of "last known good". There was nothing in the host file to cause the redirect.
I used the last know good option from the F8 menu and got lucky I guess. Didn't have to try system restore.
I had dumped all cookies and temp internet files as well as removing Firefox before the use of "last known good". There was nothing in the host file to cause the redirect.
You will also want to check your DNS server setup. Some trojans add an entry so you resolve through them.
__________________
Sing to a sailor's courage, Sing while the elbows bend,
A ruby port your harbor, Raise three sheets to the wind.
......................-=Krynnish drinking song=-
I had one that actively changed the registry until it locked me out. I went back in with my backdoor Admin acct and nuked it with AVG. It was very nasty and learned/adapted on the fly.