Questions

Browser hijacking removal help

+
0 Votes
Locked

Browser hijacking removal help

rwtodd2007
I have a remote user who is experiencing some sort of browser hijacking attempts. Thank goodness we run content advisor on IE.

The sites that keep trying to load as follows:

ismallgame.com
paystt.com
mulhealth.com
ebibuy.com
unionbizonline.com

I have run the latest version of Spybot, but it hangs towards the end when trying to scan for zlob downloader.bs.

Searching for *.hta or *.js is coming up blank. All *.tmp files have been deleted just in case.

Any suggestions would be appreciated.