beltvalleycomputers
asked on
About Blank
I have tried every thing i know to find what keeps reloading about blank. I ran hijackthis and here is the log but im not sure what to do from here.
Please Help!!!!
Logfile of HijackThis v1.98.2
Scan saved at 11:13:17 AM, on 9/17/2004
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.e xe
C:\WINDOWS\system32\winlog on.exe
C:\WINDOWS\system32\servic es.exe
C:\WINDOWS\system32\lsass. exe
C:\WINDOWS\system32\svchos t.exe
C:\WINDOWS\system32\svchos t.exe
C:\WINDOWS\System32\svchos t.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\LEXBCE S.EXE
C:\WINDOWS\system32\spools v.exe
C:\WINDOWS\system32\LEXPPS .EXE
C:\WINDOWS\system32\netdde .exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\WINDOWS\jautoexp.dat:qp uel
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.ex e
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\svchos t.exe
C:\WINDOWS\system32\d3ox.e xe
C:\WINDOWS\system32\RUNDLL 32.exe
C:\Program Files\Winferno\Secure IE\SIEPulse.exe
c:\program files\mcafee.com\agent\mca gent.exe
C:\WINDOWS\system32\S3tray 2.exe
c:\progra~1\mcafee.com\vso \mcvsescn. exe
C:\HP\KBD\KBD.EXE
C:\windows\system\hpsysdrv .exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Spyware Doctor\spydoctor.exe
C:\Program Files\Netscape\Netscape\Ne tscp.exe
C:\PROGRA~1\Yahoo!\MESSEN~ 1\ymsgr_tr ay.exe
C:\PROGRA~1\INCRED~1\bin\I MApp.exe
C:\Program Files\Messenger\msmsgs.exe
c:\progra~1\mcafee.com\vso \mcvsftsn. exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\Owner\LOCALS~1 \Temp\Temp orary Directory 2 for hijackthis.zip\HijackThis. exe
C:\Program Files\Microsoft Office\Office10\WINWORD.EX E
R1 - HKCU\Software\Microsoft\In ternet Explorer\Main,Search Bar = res://C:\WINDOWS\system32\ efuue.dll/ sp.html#29 126
R1 - HKCU\Software\Microsoft\In ternet Explorer\Main,Search Page = res://C:\WINDOWS\system32\ efuue.dll/ sp.html#29 126
R1 - HKLM\Software\Microsoft\In ternet Explorer\Main,Default_Page _URL = about:blank
R1 - HKLM\Software\Microsoft\In ternet Explorer\Main,Default_Sear ch_URL = res://C:\WINDOWS\system32\ efuue.dll/ sp.html#29 126
R1 - HKLM\Software\Microsoft\In ternet Explorer\Main,Search Bar = res://C:\WINDOWS\system32\ efuue.dll/ sp.html#29 126
R1 - HKLM\Software\Microsoft\In ternet Explorer\Main,Search Page = res://C:\WINDOWS\system32\ efuue.dll/ sp.html#29 126
R1 - HKCU\Software\Microsoft\In ternet Explorer\Search,SearchAssi stant = res://C:\WINDOWS\system32\ efuue.dll/ sp.html#29 126
R0 - HKLM\Software\Microsoft\In ternet Explorer\Search,SearchAssi stant = res://C:\WINDOWS\system32\ efuue.dll/ sp.html#29 126
R1 - HKCU\Software\Microsoft\In ternet Explorer\SearchURL,(Defaul t) = http://rd.companion.yahoo.com/slv/ycheck/as/*http://search.yahoo.com/search?p=%s
R3 - Default URLSearchHook is missing
N3 - Netscape 7: user_pref("browser.startup .homepage" , "http://home.netscape.com/bookmark/7_1/home.html"); (C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\defa ult\ahv870 bc.slt\pre fs.js)
N3 - Netscape 7: user_pref("browser.search. defaulteng ine", "engine://C%3A%5CProgram%2 0Files%5CN etscape%5C Netscape%5 Csearchplu gins%5CSBW eb_01.src" ); (C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\defa ult\ahv870 bc.slt\pre fs.js)
O2 - BHO: (no name) - {7DE152D8-309F-6788-9563-D F3BA708A2C C} - C:\WINDOWS\sysgv.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-F ADC6B08487 2} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-9 05236F6F65 5} - c:\progra~1\mcafee.com\vso \mcvsshl.d ll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7 859DF00B1D 6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [d3ox.exe] C:\WINDOWS\system32\d3ox.e xe
O4 - HKLM\..\Run: [WildTangent CDA] RUNDLL32.exe "C:\Program Files\WildTangent\Apps\CDA \cdaEngine 0400.dll", cdaEngineM ain
O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vs o\mcmnhdlr .exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] "c:\PROGRA~1\mcafee.com\vs o\mcvsshld .exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMo n.exe
O4 - HKLM\..\Run: [SIE2004] "C:\Program Files\Winferno\Secure IE\SIEPulse.exe"
O4 - HKLM\..\Run: [sdkap32.exe] C:\WINDOWS\system32\sdkap3 2.exe
O4 - HKLM\..\Run: [S3TRAY2] S3tray2.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD .EXE
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\Real Play.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.ex e
O4 - HKLM\..\Run: [pmktedsphzu] C:\WINDOWS\System32\oslagp .exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded
O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\navap w32.exe
O4 - HKLM\..\Run: [Mstnpd] C:\WINDOWS\System32\MSTNPD .EXE
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\McAfee.com\Age nt\mcupdat e.exe
O4 - HKLM\..\Run: [MCAgentExe] C:\PROGRA~1\McAfee.com\Age nt\McAgent .exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv .exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd. exe
O4 - HKLM\..\Run: [d3fp32.exe] C:\WINDOWS\system32\d3fp32 .exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [caclts.exe] C:\WINDOWS\System32\caclts .exe
O4 - HKLM\..\Run: [Advanced Tools Check] C:\PROGRA~1\NORTON~1\AdvTo ols\ADVCHK .EXE
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe " /background
O4 - HKCU\..\Run: [Yahoo! Pager] C:\PROGRA~1\Yahoo!\MESSEN~ 1\ypager.e xe -quiet
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\spydoctor.exe" /Q
O4 - HKCU\..\Run: [Mozilla Quick Launch] "C:\Program Files\Netscape\Netscape\Ne tscp.exe" -turbo
O4 - HKCU\..\Run: [Microsoft IT Update] winsyst32.exe
O4 - HKCU\..\Run: [IncrediMail] C:\PROGRA~1\INCRED~1\bin\I ncMail.exe /c
O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
O4 - Startup: radio@netscape.lnk = C:\Program Files\Radio@Netscape Plus\Program\radio@netscap e.exe
O4 - Startup: Webshots.lnk = C:\Program Files\Webshots\WebshotsTra y.exe
O4 - Global Startup: customize__IE.lnk = C:\hp\region\customizeIe.w sf
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: MsnFixer.lnk = ?
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\r esources\W ebMenuImg. htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3 \Office10\ EXCEL.EXE/ 3000
O9 - Extra button: Yahoo! Login - {2499216C-4BA5-11D5-BD9C-0 00103C116D 5} - C:\Program Files\Yahoo!\Common\ylogin .dll
O9 - Extra 'Tools' menuitem: Yahoo! Login - {2499216C-4BA5-11D5-BD9C-0 00103C116D 5} - C:\Program Files\Yahoo!\Common\ylogin .dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-0 0010333D0A D} - C:\Program Files\Yahoo!\Messenger\yhe xbmes.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-0 0010333D0A D} - C:\Program Files\Yahoo!\Messenger\yhe xbmes.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-0 0C04F79568 3} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-0 0C04F79568 3} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox. dll
O16 - DPF: {2B96D5CC-C5B5-49A5-A69D-C C0A30F9028 C} (MiniBugTransporterX Class) - http://download.weatherbug.com/minibug/tricklers/AWS/MiniBugTransporter.cab?
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5 A1EDB1D8A2 1} (McAfee.com Operating System Class) - http://bin.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,84/mcinsctl.cab
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0 050DA18DE7 1} (RdxIE Class) - http://207.188.7.150/150e3db25721971e1d01/netzip/RdxIE601.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5 D2C442ADFD E} - http://a1540.g.akamai.net/7/1540/52/20040427/qtinstall.info.apple.com/saba/us/win/QuickTimeInstaller.exe
O16 - DPF: {77E32299-629F-43C6-AB77-6 A1E6D7663F 6} (Groove Control) - http://www.nick.com/common/groove/gx/GrooveAX27.cab
O16 - DPF: {7BA7BCE2-D359-4407-82D9-C DF9A74C487 A} (DownLoadStub Class) - http://www.hpphoto.com/downloads/DownloadPhotos.cab
O16 - DPF: {B942A249-D1E7-4C11-98AE-F CB76B08747 F} (RealArcadeRdxIE Class) - http://games-dl.real.com/gameconsole/Bundler/CAB/RealArcadeRdxIE.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C 18E1ADA438 9} (DwnldGroupMgr Class) - http://bin.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,21/mcgdmgr.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-F B9E207A39E 6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/vso/en-us/tools/mcfscan/2,0,0,4389/mcfscan.cab
O16 - DPF: {F00F4763-7355-4725-82F7-0 DA94A256D4 6} (IMDownloader Class) - http://www2.incredimail.com/contents/setup/downloader/imloader.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-5 87CAF3EE8C 6} (MSN Chat Control 4.5) - http://fdl.msn.com/public/chat/msnchat45.cab
Please Help!!!!
Logfile of HijackThis v1.98.2
Scan saved at 11:13:17 AM, on 9/17/2004
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.e
C:\WINDOWS\system32\winlog
C:\WINDOWS\system32\servic
C:\WINDOWS\system32\lsass.
C:\WINDOWS\system32\svchos
C:\WINDOWS\system32\svchos
C:\WINDOWS\System32\svchos
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\LEXBCE
C:\WINDOWS\system32\spools
C:\WINDOWS\system32\LEXPPS
C:\WINDOWS\system32\netdde
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\WINDOWS\jautoexp.dat:qp
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.ex
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\svchos
C:\WINDOWS\system32\d3ox.e
C:\WINDOWS\system32\RUNDLL
C:\Program Files\Winferno\Secure IE\SIEPulse.exe
c:\program files\mcafee.com\agent\mca
C:\WINDOWS\system32\S3tray
c:\progra~1\mcafee.com\vso
C:\HP\KBD\KBD.EXE
C:\windows\system\hpsysdrv
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Spyware Doctor\spydoctor.exe
C:\Program Files\Netscape\Netscape\Ne
C:\PROGRA~1\Yahoo!\MESSEN~
C:\PROGRA~1\INCRED~1\bin\I
C:\Program Files\Messenger\msmsgs.exe
c:\progra~1\mcafee.com\vso
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\Owner\LOCALS~1
C:\Program Files\Microsoft Office\Office10\WINWORD.EX
R1 - HKCU\Software\Microsoft\In
R1 - HKCU\Software\Microsoft\In
R1 - HKLM\Software\Microsoft\In
R1 - HKLM\Software\Microsoft\In
R1 - HKLM\Software\Microsoft\In
R1 - HKLM\Software\Microsoft\In
R1 - HKCU\Software\Microsoft\In
R0 - HKLM\Software\Microsoft\In
R1 - HKCU\Software\Microsoft\In
R3 - Default URLSearchHook is missing
N3 - Netscape 7: user_pref("browser.startup
N3 - Netscape 7: user_pref("browser.search.
O2 - BHO: (no name) - {7DE152D8-309F-6788-9563-D
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-F
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-9
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7
O4 - HKLM\..\Run: [d3ox.exe] C:\WINDOWS\system32\d3ox.e
O4 - HKLM\..\Run: [WildTangent CDA] RUNDLL32.exe "C:\Program Files\WildTangent\Apps\CDA
O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vs
O4 - HKLM\..\Run: [VirusScan Online] "c:\PROGRA~1\mcafee.com\vs
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMo
O4 - HKLM\..\Run: [SIE2004] "C:\Program Files\Winferno\Secure IE\SIEPulse.exe"
O4 - HKLM\..\Run: [sdkap32.exe] C:\WINDOWS\system32\sdkap3
O4 - HKLM\..\Run: [S3TRAY2] S3tray2.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\Real
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.ex
O4 - HKLM\..\Run: [pmktedsphzu] C:\WINDOWS\System32\oslagp
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded
O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\navap
O4 - HKLM\..\Run: [Mstnpd] C:\WINDOWS\System32\MSTNPD
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\McAfee.com\Age
O4 - HKLM\..\Run: [MCAgentExe] C:\PROGRA~1\McAfee.com\Age
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.
O4 - HKLM\..\Run: [d3fp32.exe] C:\WINDOWS\system32\d3fp32
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [caclts.exe] C:\WINDOWS\System32\caclts
O4 - HKLM\..\Run: [Advanced Tools Check] C:\PROGRA~1\NORTON~1\AdvTo
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe
O4 - HKCU\..\Run: [Yahoo! Pager] C:\PROGRA~1\Yahoo!\MESSEN~
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\spydoctor.exe" /Q
O4 - HKCU\..\Run: [Mozilla Quick Launch] "C:\Program Files\Netscape\Netscape\Ne
O4 - HKCU\..\Run: [Microsoft IT Update] winsyst32.exe
O4 - HKCU\..\Run: [IncrediMail] C:\PROGRA~1\INCRED~1\bin\I
O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
O4 - Startup: radio@netscape.lnk = C:\Program Files\Radio@Netscape Plus\Program\radio@netscap
O4 - Startup: Webshots.lnk = C:\Program Files\Webshots\WebshotsTra
O4 - Global Startup: customize__IE.lnk = C:\hp\region\customizeIe.w
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: MsnFixer.lnk = ?
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\r
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3
O9 - Extra button: Yahoo! Login - {2499216C-4BA5-11D5-BD9C-0
O9 - Extra 'Tools' menuitem: Yahoo! Login - {2499216C-4BA5-11D5-BD9C-0
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-0
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-0
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-0
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-0
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.
O16 - DPF: {2B96D5CC-C5B5-49A5-A69D-C
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0
O16 - DPF: {62475759-9E84-458E-A1AB-5
O16 - DPF: {77E32299-629F-43C6-AB77-6
O16 - DPF: {7BA7BCE2-D359-4407-82D9-C
O16 - DPF: {B942A249-D1E7-4C11-98AE-F
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C
O16 - DPF: {EF791A6B-FC12-4C68-99EF-F
O16 - DPF: {F00F4763-7355-4725-82F7-0
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-5
umm.... you don't need to run that many spyware removal programs. adaware or spybot work plenty well by themselves.
Also, spysweeper is a paid program. you don't want to pay for something when another program can do it for free.
Also, spysweeper is a paid program. you don't want to pay for something when another program can do it for free.
My experience will not agree with it..... give a try to all these programs, and u will notice that they all are picking up different things from each other,,,,, u cannot say that just one or two software will clean out all junk.... atleast I cannot believe this :)
it's been my experience that those programs remove everything by themselves. I believe that you will find the discrepancy lies in the reporting. They are finding all of the same stuff but they're naming it differently, or one program detects all instances as one piece of spyware whereas the other lists all instances separately. Spybot and AdAware both update their defs regularly. If you took this same approach with antivirus, you would say the more the better. But antivirus programs update regularly and no one fusses about one having more coverage than the other. They just pick one and stick with it.
ASKER
Thanks guys I am still in the middle of Saahil's repair process ill report back when that is complete.
Thanks
Thanks
beltvalleycomputers u are not supposed to close ur answer until u get the solution,,,, u have to Accept that comment which helped u to solve ur problem,,,,,, can i ask why did u Close ur question ??
I can see that u are new at this site,,,,, so can i consider that u are unaware of the Accepting answers adn awarding points ??
for info. on how to close a Question, plzz refer here >> https://www.experts-exchange.com/help.jsp#hs5
I can see that u are new at this site,,,,, so can i consider that u are unaware of the Accepting answers adn awarding points ??
for info. on how to close a Question, plzz refer here >> https://www.experts-exchange.com/help.jsp#hs5
argh. don't give me the points! i didn't answer the question! sorry Saahil. :(
ASKER
Sorry guys
I was trying to get my screen to refresh and accepted the answer. I am finding that about blank fix is not a quick fix
Thanks JIM
I was trying to get my screen to refresh and accepted the answer. I am finding that about blank fix is not a quick fix
Thanks JIM
jimmybartlett for ur first comment,,,,,, i cannot say that i can disagree with u,,, but im in this field for almost one year now.... and on the basis of my experience...... im bound to say that all those tools clean the junks different from each other, if not in all manners, then in some manner :)
and for ur second comment, u dont need to say sorry at all, i can see beltvalleycomputers is a new user so a little bit unknow to the EE points system,,,, :)
and for ur second comment, u dont need to say sorry at all, i can see beltvalleycomputers is a new user so a little bit unknow to the EE points system,,,, :)
never mind beltvalleycomputers, i will ask a moderator and he will reopen this question,,,, u just carry on with ur removal instructions of about:blank,,,, and concentrate on it, about:blank is really not a quick and easy to fix =\
starting my 3rd active year in the field. At some point you sacrifice the performance you are trying to regain. When you run so many anti-spyware tools, they take up as much space and resources as all that spyware would in the first place. Run one AV client, one firewall, one anti-spyware client, practice safe & smart browsing, keep your OS up to date with security patches, and you will have a clean computer.
u have ur experience and opinions, and i respect them,,,, nothing to say else :)
beltvalleycomputers so are u going right,,,, or have stuck somewhere =)
beltvalleycomputers so are u going right,,,, or have stuck somewhere =)
ASKER
Hay guys
i thought i had this one but there is a file that I can not delete C:\windows/msqn32.exe I dont have the rights to delete it. I'm logged in as an administrator and I dont have the option to take ownership. how do i delete this file it keeps reinstalling everything.
i thought i had this one but there is a file that I can not delete C:\windows/msqn32.exe I dont have the rights to delete it. I'm logged in as an administrator and I dont have the option to take ownership. how do i delete this file it keeps reinstalling everything.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
SheharyaarSaahil
You have done a great job with this problem. you not only help me to solve my problem but i learned a thing or two. you word your answers very well and precise.
Thanks JIM
You have done a great job with this problem. you not only help me to solve my problem but i learned a thing or two. you word your answers very well and precise.
Thanks JIM
Thanx for those kind words JIM..... glad i cud help u :)
Cheers ^_^
Cheers ^_^
Post this LOG at this site >> http://www.hijackthis.de/index.php?langselect=english
and it will automatically analyse it for u,,, Fix everything which it asks u to delete, to Fix check the lins and click on Fix Checked !! :)
then can u see that res:// hijacker,,,,, it needs special treatment, so go here and follow each instruction to get rid of it >> http://www.pchell.com/support/onlythebest.shtml
after that u will have to download these tools.....
==========================
AdAware ==> http://www.spychecker.com/program/adaware.html
SpyBot ==> http://www.spychecker.com/program/spybot.html
SpySweeper >> http://www.spychecker.com/program/spysweeper.html
SpywareBlaster >> http://www.spychecker.com/program/spywareblaster.html
CoolWebShredder ==> http://www.spychecker.com/program/coolwebshredder.html
Stinger >> http://vil.nai.com/vil/stinger
==========================
Then Disable ur Messenger Service if its running >> http://www.itc.virginia.edu/desktop/docs/messagepopup/
After that Follow these Instructions:
1. Restart ur machine in safemode and Login as Administrator
2. Run the AntiVirus tool and delete all viruses it found
3. Run the Spyware Removal tools and delete everything they detect
4. Then goto My Computer>Tools>Folder Options>View and turn on the feature of Show Hidden Files
5. Goto C:\Documents and Settings\ur usernmae\Local Settings\Temp and delete all files present here
6. Goto C:\Documents and Settings\ur usernmae\Local Settings\Temporary Internet Files, and delete the folder of ContentIE
7. Goto C:\Documents and Settings\ur usernmae\Cookies, and delete all cookies present here.
8. Goto C:\Windows\Temp and delete all files present here
9. Reboot back in Normal Mode and check if problems are gone or not
10. Post Back and Good Luck :)