Silicon Investor (SI) -- The First Internet Community

STOCKTALK

We've detected that you're using an ad content blocking browser plug-in or feature. Ads provide a critical source of revenue to the continued operation of Silicon Investor. We ask that you disable ad blocking while on Silicon Investor in the best interests of our community. If you are not using an ad blocker but are still receiving this message, make sure your browser's tracking protection is set to the 'standard' level.

Pastimes : Computer Learning -- Ignore unavailable to you. Want to Upgrade?

To: mr.mark who wrote (37137)	9/30/2003 4:25:40 PM
From: MulhollandDrive	Read Replies (1) \| Respond to of 110655

thank you, mr.mark.. i did in fact send him a link from the same website (different page) the same day i posted my last message forums.spywareinfo.com he told me that by accessing this link, and deleting the 64.191.95.139 www.google.com lines, the problem was resolved. (at least for now) Download this program and look in your HOSTS file: members.shaw.ca Remove all the lines that contain this IP address (see example below) 64.191.95.139 www.google.com

To: mr.mark who wrote (37137)	10/2/2003 4:46:11 AM
From: Elsewhere	Read Replies (2) \| Respond to of 110655

Hijacked "Hosts" file / New Trojan A German IT information service has published an article on a new Trojan which modifies the "Hosts" file. Normal DNS lookup is disabled and users are directed to new sites if they try to access popular search engines (Google, Lycos, Altavista, Yahoo, Ask). This enables "man-in-the-middle" attacks if seemingly secure sites are accessed by SSL. Network Associates calls it QHosts-1: vil.nai.com Internet Explorer versions prior to 6 can not be protected. For 6.x it is recommended to switch off Active Scripting and ActiveX or even better temporarily use another browser like Opera or Mozilla until Microsoft will have released a proper patch. Trojaner leitet Browser auf falsche Seiten heise.de