• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1839
  • Last Modified:

I am suffering from a web redirect problem. Adelphia says this is "malware" but I can't go to yahoo.com, instead ie and netscape take me to www.thebestse.com

Recently, internet explorer and netscape stopped taking me to my homepage of www.yahoo.com. Instead of directing me to the appropriate site I am directed to www.thebestse.com. What is wierd about this experience is the fact that my browser's url bar still reads www.yahoo.com. This problem occurs when I go to www.msn.com and www.google.com. I have yet to discover other site addresses with this problem.

I first called adelphia and they suggested I install adaware. Although adaware found 341 different spyware programs and the like, it did not solve the problem. They had no other ideas but to have me call Dell. Dell was unable to solve my problem either. So I'm looking to you all...

What is going on here? Is this in fact malware? How can I get rid of this problem?

Any advice is greatly appreciated!

1 Solution
Another good one that can fix you up is Spybot Search & Destroy.  www.security.kolla.de
go to run type gpedit - this will open the group policy editor

drill down to user configuration/administrative templates/windows components/windows messenger/ and on the rite pane - do not allow messenger to be run - rite click and on properties change to enable,

this will stop this sucker from running completely

then in outlook express/ go to options/ and uncheck logon to messenger under general and hilite only go directly to my inbox that will make oe start in a jiffy
WEBINAR: GDPR Implemented - Tips & Lessons Learned

Join the WatchGuard team on Thursday, March 29th as we recount some valuable lessons learned in weighing the needs of a business against the new regulatory environment, look ahead at the two months left before implementation, and help you understand the steps you can take today!

Hijack This and BHODemon and Browser Hijack Blaster

Hijack This http://www.spywareinfo.com/~merijn/files/hijackthis.zip | Written by a member of our support forums and based on our Hijacked! article, this program scans the locations in your computer system that may be modified by browser hijackers and fixes any problems found. An easy-to-understand tutorial is available at TomCoyote.org.

BHODemon http://www.spywareinfo.com/downloads/bhod/ | Think of BHODemon as a guardian for your Internet browser: it protects you from unknown Browser Helper Objects (BHOs), by letting you enable/disable them individually. This program is my choice for BHO detection and is highly recommended.

Browser Hijack Blaster http://www.wilderssecurity.net/bhblaster.html | Running silently in the background, Browser Hijack Blaster only springs into action when an attempt is made. It watches and protects the following items: IE Homepage, IE Default Page, IE Search Page, BHOs. Whenver one of the above items is changed, or a BHO is added, you are immediately provided with information on the item, along with the option to keep the change, or revert to your previous settings.

Could be malware has installed itself on your system that is the causing this. The following utilities can help you find and remove most known malware. The first two are free and I would suggest to use both of them because neither is 100% in finding malware but using both together helps find what the other may have missed.

spybot here



General and overall information about Spy/Adware
filibuster1015Author Commented:
thank you to everyone who responded... webshredder did the trick. thank you sir bounty. my kind regards to you and to everyone who posted. I now believe that I am free of the "malware".

hopefully it will not come back!
If by chance the above spyware removal tools still don't work for you, you may want to try flushing your dns cache.  To do this go to the command prompt and type "ipconfig /flushdns".  Note that this only works on 2000 and XP.  This may remove any improper domain name resolutions that your computer has stored.  

Good luck.
Posted while I was typing! Please disregard the last post ;)
Have you looked into you HOST FILE?
It’s under \system32\drives\etc\
Look there, some spy ware software adds entries there to redirect you to the sites they want you to go to.
This is done by manipulating the local DNS of the pc your using.

Example:            localhost      www.yahoo.com      yahoo.com

Now if some software changed this to lets say:      www.yahoo.com

What would happen here is every time you try to go to: www.yahoo.com
It will take you to aol.com
Name:    aol.com
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now