Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

ihavenet redirect my browser - Endpoint Protection 12

Created: 06 Feb 2013 | 3 comments
lukassc's picture

How can I remove this "virus" when Symantec Endpoint Protection 12 doesn't 

Everytime that I open any Browser, ihavenet.com come up... 

Any ideas?

Comments 3 CommentsJump to latest comment

.Brian's picture

Flush your DNS cache and check your HOSTS file for malicious entries

Also, are you using IE? You can check for a malicious browser add on and disable it

Check this thread for some removal tools:

Is your system infected? Symantec tools to help clear an infection

https://www-secure.symantec.com/connect/forums/you...

You may want to try malwarebytes scanner to remove it if SEP or above tools cannot detect it

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

SebastianZ's picture

Check the IE setting for startup pages - maybe the malware added this address as a homepage - and every start of the browser triggers the page to be opened - IE allows several tab to be set as homepages simultanously.

Mick2009's picture

Some interesting info: from http://www.youtube.com/watch?v=NUn19m7nHaY

"iHaveNet.com is one of the many low-quality websites that have been associated with what is commonly known as the Google Redirect Virus. The Google Redirect Virus is a well-known browser hijacker that takes over search results on Google and other popular search engines in order to direct computer users to different websites against their will. This is usually part of a scam that involves profiting illegally from pay-per-click schemes, affiliate marketing plans, and advertising revenue"

Symantec and Microsoft have just taken down a "click fraud" botnet that sounds similar.

Bamital Bites the Dust
https://www-secure.symantec.com/connect/blogs/bamital-bites-dust

That white paper is definitely interesting reading.

With thanks and best regards,

Mick