This is the golden tip. After cleaning out the newdotnet with x-cleaner micro from here: http://www.xblock.com/download-freeware.php (Do not forget to bckup the registry), I rebooted the computer and lost both the browser and mail internet connections. Happily the man had Win XP SP2 indstalled. So went via start to the commandline prompt and give in the magical “netsh winsock reset” (without brackets), and instantly after the enter it got the connection reset and working again.
So I can state after what I have experienced to-night, that this works beautifully. Chapeau “noz”, you are a promishing malware fighter. Thanx. Else I would have used lspfix from a mem stick.
Open my computer, double click, and run from that partition.
But again “netsh winsock reset” is the easiest and most elegant of varyous solutions lest on XP SP2.
Good work noz, I remember the victim of Newdotnet after he saw his Internet connection back. “How did you do that?”
I responded: “Just some magical word from a very good anti-virus forum”. The nicest thing is the big smile in the eyes you get. Great feeling, man. Most awarding.
Yep, the case that I cleansed was with SP2 installed. We had various newdotnet infections here in threads on this forum, you could ask the victims, who are now free of this foistware, if they had SP2 installed. This spyware nuisances all go according the “known to give guarantee” recipe. So it is very well possible they work in a way you suppose. There was a whole period that malware was silently installed through one and the same exploit (unpatched ByteVerify java hole for instance).
Foistware and nuisances like these are applied by methods that are not particvularly innovative, but they seek for effectiveness.
I am pretty sure that this newdot.net virus is what destroyed my other computer. I am using a brand new, bug/virus free computer and would like to keep it that way.
I was able to copy some pics, documents etc from the computer that died, is it safe to put those on this new computer?
I have all my spyware/spamfighter/virus protection enabled and it scans clean.
So, should I wait a little longer before attempting to add the old files I made from the CD onto this computer? Or is it safe enough to scan them with avast and proceed to add them. I do have a favorites folder as well.
Just don’t wanna go through that again.
By the way I am using Netscreen hardware firewall, not sure if this was the reason Avast could not fully delete that virus from my old comp.
Newdotnet is primarily "Adware/Spyware", not a "Virus".
And I have never heard of it "destroying" a computer,
since its purpose is to "deliver" ads & possibly "spy" on
you to deliver that info to its "sponsor" .
What are the name(s) of your antispyware program(s) ?
And the mention of "Netscreen hardware" firewall
implies you do NOT have a "software" firewall !?
Anything from the "old" computer should be screened
by more than just Avast; I suspect you probably have
other "malware" that caused your other computer to
be "destroyed".
Hopefully, you have the good & FREE "Ewido" from :
www.ewido.net/en on your new computer !?
It did something so the computer couldn’t find the ethernet card, now I don’t know what would cause this or if Avast didn’t know what it was. My husband reinstall the OS and had to do something to get the ethernet card to work.
Do you think I can safely put the information I saved from that old computer onto this new one? Or should I wait abit in case it’s a new virus/worm.
Do you think I can safely put the information I saved from that old computer onto this new one?
You can scan the CD you made for the data using avast and ewido as Tech mentions to see if there is anything there.
Placing that data in a temporary folder on your hard disk ‘TempCD’ or similar name shouldn’t cause any problems as you aren’t executing any potential malware. You could also scan that folder (as I’m not sure it would scan a CD) using an on-line scanner as a second or third opinion, etc.
On-line Virus Scanners and other useful Links Security-Ops.eu.tt, you would need to pause Standard Shield once you establish the connection just before starting the on-line scan to avoid conflict, enable it again immediately the scan is completed.
If you reinstalled the OS in such a way that a larger part of your old files are there, this should be fine after a thorough scan or a look into possible registry or dll conflicts. You could safe all your data and reinstall the old programs. Some programs need a reinstall to make them work again.
If you are sure that this was the only thing in which your OS was affected and after for instance a thorough online scan, you can trust your machine and the folders on it from that point.
The major point for me always is to know the background of trouble (instantly or gradually). Essential to know is what made the computer malfunction? Even spyware infections badly documented can create havoc on a machine.
Hello peeps I’m back the only proper way to defeat new dot net is as follows
First, Download LSPFix.exe to a convenient location. Do NOT run this program. This is only to be used if you lose Internet Access after removing NewDotNet.
To Get rid of NewDotNet, go to:
Start > Control Panel > Add or Remove Programs and remove the following:
Then delete all newdotnet folders in \program files and run HJT and delete all found refences to newdotnet such as
O4 - HKLM..\Run: [New.net Startup] rundll32 C:\PROGRA~1\NEWDOT~1\NEWDOT~2.DLL,NewDotNetStartup -s
In the event that you lose Internet access after removing New.Net, please double-click LSPFix.exe that you downloaded earlier. You will see 2 panels. If there is any file listed in the “Remove” panel on the right-side, leave it as is and just click “Finish>>” then reboot your computer and you should now have access to the Internet. If nothing is listed under the “Remove Panel”, do NOT do anything - just close the program.
Hi to all
I have a question regarding this NewDotNet thing
I’ve just noticed that I have it on my PC, but avast! do not detect it ???
Did Alwil removed the detection till the problem with removing the registry keys is fixed, or this is new variant?
I’ve send the file to Alwil, just in case
Just another reason for those without SP2 to install that for XP
(think of the instant restore of the winsock settings through start command prompt, and giving in “netsh winsock reset”(without the brackets, and of course only for XP SP2).
Hi Akaara :
M:A:S:.,