Thread: L33t people, enter please.
View Single Post
Old Oct 28, 2003 | 08:30 AM
  #3  
flipped cracka's Avatar
flipped cracka
BOOM goes the dynamite!
 
Joined: Mar 2003
Posts: 27,571
Likes: 1
From: in a van down by the rive
Default
found this is a search

Yep, I was hijacked too. I guess it's harmless but annoying.

How to get to the registry to rectify the damage?

Open up the hijacker file C:\Windows\Fonts\msoffice.hta.
The contents refer to HKCU... and HKLM...

HKCU refers to the registry entry HKEY_CURRENT_USER
HKLM refers to the registry entry HKEY_LOCAL_MACHINE

Click Start | Run, and type in RegEdit, which brings you to the Registry Editor. Click Edit | Find and type in http:\\www.searchdot.net. All references to this URL in the registry will be shown. To change the Value to the URL you want, right click the registry name and Modify, entering the correct URL.


Don't forget to delete the HIJACKER file C:\Windows\Fonts\msoffice.hta !!!!!! Reboot after the smoke clears.
Reply
0