rwrudd
asked on
NewDotNet and HuntBar-how do I get rid of these unwanted programs?
Sptbot S&D, Adaware 6.018 and McAfee Virus Scan have all pinpointed NeDotNet and HuntBar/BTIEIN as the unwanted programs that have taken control over IE and redirect it to unwanted and unsolicited web pages. However, none of these spyware protection programs have been able to eliminate or disable these unwanted programs. I have tried running both Adaware and Spybot S&D on startup (as recommended), disabling NewDotNet on the msconfig startup manager and using uninstall. Nothing has worked so far. Does anyone have a solution to this problem? Help!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
sunray_2003
check this for huntbar http://www.kephyr.com/spywarescanner/library/huntbar.btiein/index.phtml
You say you tryed ADaware but you need to be sure you have the latest refernce file installed also. If you downloaded Adaware and ran it it probably didn't catch 50 % of what you have installed. Be sure to use the latest refence file to get it go here:
http://www.lavasoft.de/update/refs/reflist.zip
Download the zip and extract the file in C:\ Program Files \Lavasoft \adaware and replace the file that currently resides there and then re-run the Adaware scan. Bet you find tons of stuff that can be removed
Hope this Helps
Hank
http://www.lavasoft.de/update/refs/reflist.zip
Download the zip and extract the file in C:\ Program Files \Lavasoft \adaware and replace the file that currently resides there and then re-run the Adaware scan. Bet you find tons of stuff that can be removed
Hope this Helps
Hank
NewDotNet.
litraly makes me want to vomit with loathing and contempt.
http://www.newdotnet.com/#remove
<rant>
whilst im on the subject of this vomit indusing crap
its intresting to note that having a poke about inside NewDotNet's guts with a hex editor you will see some of the following hard coded content...
RETR
Return-Path:
Bcc:
Cc:
To:
From:
POP3
EHLO
HELO
RSET
MAIL FROM:
DATA
RCPT TO:
netscape.com/webmail/br/co
/webmail/br/compose.tmpl
visto.com/mail/new.html /mail/mail=send.html
netaddress.com/tpl/Message
/tpl/Send
excite.com/ExciteMail/comp
/ExciteMail/compose
www.mail.com/mailcom/writemail.jhtml
/mailcom/writemail.jhtml
mail.yahoo.com/ym/Compose?
/ym/Compose?
hotmail.msn.com/cgi-bin/co
/cgi-bin/premail
now theres only one reason, i can think of that this evil scum might be hard coding the URLs and querystrings of popular web based email services and Chunks of POP3 Protocol into their widly distributed winsock layer...
and that would be that they are harvising the email addresses of everysingle person you send email to so they can hose them with showers of stinking spam.
and we wonder why the web is drowning in a sea of putrid, uncolidited, crap while new.net proudly bosts 174,661,619 users
oh unless anyone can think of a better explanation...of course
</rant>
grrr, arrg
ZapTheDingbat
http://www.zapthedingbat.com
litraly makes me want to vomit with loathing and contempt.
http://www.newdotnet.com/#remove
<rant>
whilst im on the subject of this vomit indusing crap
its intresting to note that having a poke about inside NewDotNet's guts with a hex editor you will see some of the following hard coded content...
RETR
Return-Path:
Bcc:
Cc:
To:
From:
POP3
EHLO
HELO
RSET
MAIL FROM:
DATA
RCPT TO:
netscape.com/webmail/br/co
/webmail/br/compose.tmpl
visto.com/mail/new.html /mail/mail=send.html
netaddress.com/tpl/Message
/tpl/Send
excite.com/ExciteMail/comp
/ExciteMail/compose
www.mail.com/mailcom/writemail.jhtml
/mailcom/writemail.jhtml
mail.yahoo.com/ym/Compose?
/ym/Compose?
hotmail.msn.com/cgi-bin/co
/cgi-bin/premail
now theres only one reason, i can think of that this evil scum might be hard coding the URLs and querystrings of popular web based email services and Chunks of POP3 Protocol into their widly distributed winsock layer...
and that would be that they are harvising the email addresses of everysingle person you send email to so they can hose them with showers of stinking spam.
and we wonder why the web is drowning in a sea of putrid, uncolidited, crap while new.net proudly bosts 174,661,619 users
oh unless anyone can think of a better explanation...of course
</rant>
grrr, arrg
ZapTheDingbat
http://www.zapthedingbat.com
I agree with zapthedingbat.
Also, when you run Adaware, make sure you follow the directions posted on their website for running a "Custom" scan the
first time.
Make sure you get the latest version of CWShredder (ver 1.55, I think) - Cool Web Search has been rewritten to try and
block CWShredder.
Good luck!
Also, when you run Adaware, make sure you follow the directions posted on their website for running a "Custom" scan the
first time.
Make sure you get the latest version of CWShredder (ver 1.55, I think) - Cool Web Search has been rewritten to try and
block CWShredder.
Good luck!