JSMcCoy
asked on
http://www.freewebs.com/abuseFrozen.htm "FreeWebs Site Frozen" Page Set as Home Page With Every IE Launch
The url "http://www.freewebs.com/abuseFrozen.htm" launches with every Internet Explorer launch after Windows XP Pro boot.
The page has the text "FreeWebs Site Frozen. Account Frozen. Access Denied.". Then I reset my home page (for example, to www.google.com), upon the next IE launch after a fresh boot, the FreeWebs page again is present as the home page.
How can I eliminate the source file for this nuisance spyware/malware?
Thanks,
JSM
The page has the text "FreeWebs Site Frozen. Account Frozen. Access Denied.". Then I reset my home page (for example, to www.google.com), upon the next IE launch after a fresh boot, the FreeWebs page again is present as the home page.
How can I eliminate the source file for this nuisance spyware/malware?
Thanks,
JSM
delete temp internet files for every profile-- delete c:\windows\prefetch\* (files in prefetch folder) if using xp--
check start-->run-->msconfig -- startup tab-- for items that don't need to be running in the background --almost everything--a good site to check for these is sysinfo.org.-- check the run folder in regedit to make sure that nothing is spawning from there and then reboot--
oh yeah,
run ad-aware, spybot, and antivirus scans in safe mode w/o networking.---
make sure you have up-to-date files for all 3.
P
check start-->run-->msconfig -- startup tab-- for items that don't need to be running in the background --almost everything--a good site to check for these is sysinfo.org.-- check the run folder in regedit to make sure that nothing is spawning from there and then reboot--
oh yeah,
run ad-aware, spybot, and antivirus scans in safe mode w/o networking.---
make sure you have up-to-date files for all 3.
P
I usually start with adaware:
http://www.lavasoftusa.com/software/adaware/
Here's more that can help:
http://www.fjsmjs.com/IE/homepage.htm Can't Change HomePage-
http://www.pjwalczak.com/spguard/ StartPage Guard
http://www.pestpatrol.com/Support/HowTo/How_To_Clear_a_Hijack.asp How To Clear a Hijack
http://www.ccleaner.com/ CCleaner - Crap Cleaner free software download - Spyware FREE
-R.S.
http://www.lavasoftusa.com/software/adaware/
Here's more that can help:
http://www.fjsmjs.com/IE/homepage.htm Can't Change HomePage-
http://www.pjwalczak.com/spguard/ StartPage Guard
http://www.pestpatrol.com/Support/HowTo/How_To_Clear_a_Hijack.asp How To Clear a Hijack
http://www.ccleaner.com/ CCleaner - Crap Cleaner free software download - Spyware FREE
-R.S.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
callrs supplied the winning answer.
This troublesome and difficult to remove IE home page hijacker was only removed by running the SmitRem utility at http://noahdfear.geekstogo.com.
Ad-aware SE, Spyware Doctor, AVG, Norton Antivirus, or Ewido Anti-Malware could not locate and delete the offending file. SmitRem did.
Read the narrative and follow the directions at the noahdfear site closely. This utility worked (and apparently it will eliminate a number of trojans, hijackers, and other malware variants.
Although the other Experts provided logical approaches, only callrs approach worked without significant time or effort involved.
Thanks, callrs !!
This troublesome and difficult to remove IE home page hijacker was only removed by running the SmitRem utility at http://noahdfear.geekstogo.com.
Ad-aware SE, Spyware Doctor, AVG, Norton Antivirus, or Ewido Anti-Malware could not locate and delete the offending file. SmitRem did.
Read the narrative and follow the directions at the noahdfear site closely. This utility worked (and apparently it will eliminate a number of trojans, hijackers, and other malware variants.
Although the other Experts provided logical approaches, only callrs approach worked without significant time or effort involved.
Thanks, callrs !!
It is free for 14 days and will most likely clear up the problem.
After starting Ewido, click on Updates to update, then click on "Quick Scan", that is normally enough.
If the problem persists after that, then run Hijackthis as follows:
Download and run HijackThis from http://www.hijackthis.de/
Copy-and-paste the resulting log back to that same web site (not here)
Click on "Analyze", and then click on "Save Analysis" at the bottom of the next page.
Finally post a link here to the saved analyzed page.