Not seen this particular piece of malware, but in the grand scheme of things, if the PC got infected, then can you really trust it by just uninstalling the AV. You could use Procmon and Filemon/Regmon and find out which dll's ( Its probably a dll hooked into IE or other utilizes which means its got some root-kit type action) and try and figure out what is doing the re-direct, but the best issue would be use a boot and nuke CD and wipe the entire disk clean ( 7 rounds, 3 passes) and start new.
Z Edward E. Ziots Network Engineer Lifespan Organization MCSE,MCSA,MCP,Security+,Network+,CCA Phone: 401-639-3505 ________________________________ From: Durf [mailto:[EMAIL PROTECTED] Sent: Thursday, August 14, 2008 2:26 PM To: NT System Admin Issues Subject: "Vista Antivirus 2008" malware removal ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
