Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 301
  • Last Modified:

removing about blank

I am trying to remove the about:blank browser hijack from this xp-home box. I ran ewido and hijackthis but I still have it. Any thoughts?
0
ehanner
Asked:
ehanner
1 Solution
 
rpggamergirlCommented:
Please download About:Buster 6.0.
http://www.malwarebytes.org/AboutBuster.zip

Then unzip all files from the zip folder to a folder or your desktop. Start it by double-clicking on the "aboutbuster.exe" icon and then click on the "Update" button to check for new updates. If any updates exist, please install them.

Exit AboutBuster and reboot into safe mode.
Once in safe mode double-click on the "aboutbuster.exe" icon again and click on the "Begin Removal" button. When it has finished scanning you will see a message stating that the Scan Completed and you should press OK. When the next information window opens press the Exit button. Then finally press the OK button again when it tells you a log has been saved.
0
 
rpggamergirlCommented:
Can we look at your hijackthis log with all the bad entries still there? AboutBlank has so many variants.

Copy and paste the hijackthis logfile to either these sites:
http://www.rafb.net/paste/
then at the bottom left corner click "paste"
Copy the address/url and post it here:

Or paste the log at --> http://www.hijackthis.de/ 
and click "Analyse", click "Save".  Post the link to the saved list here.

0
 
sr1xxonCommented:
try this


http://www.pchell.com/support/aboutblank.shtml
I recommend following the manual removal instructions on the above page.


Once it's gone, install spybot search and destroy, see www.safer-networking.org for details.
It's free (and spyware free)  :)
make sure you select the teatimer checkbox as a part of the installation.

HTH.
0
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

 
charan_jeetsinghCommented:
hi....

I agree with  sr1xxon .........i have been spybot for long & its the best antispy engine i know....BUT DO UPDATE IT before starting with ur scans.....

regards
Charanjeet
0
 
ehannerAuthor Commented:
Thank you all for the tips. This varient was very hard to clean. I finally ended up getting the adawre away trial and then purchasing the $29 software license. I ran it in safe mode and wala it's gone. I was not able to get the manual method to work. It did take two scans to eliminate the task bar message warning me that the computer is infected. Anyway it's gone. Thanks again.

Eric
0
 
rpggamergirlCommented:
Well glad you got rid of it.

It wouldn't have cost you anything if you use AboutBuster and posted your hijackthis log for a followup, I've removed so many AboutBlank variants even before AB were able to fix most difficult AboutBlank variant SE dll.

Best wishes!
0
 
ehannerAuthor Commented:
Thanks rpggamergirl, I hadn't intended on buying the software but I had tried twice to run the manual procedure and couldn't get a good line return on renaming the hidden file so you know how it is, I went for it.

Actually the first thing I do is run the hijackthis.de analyse function and fix all the nasty items. I usually don't have any trouble with these things but it doesn't hurt to ask the group now and then.

Good to see you again.

Eric
0
 
rpggamergirlCommented:
>>I usually don't have any trouble with these things but it doesn't hurt to ask the group now and then.
<<

ehanner,
yeah, that's what EE is here for, without the Askers there wouldn't be EE :)

If you use that automated analyzer, I would be careful because it makes mistakes, it's only as good as its database.

It analyzes without interpretting the paths and location of files etc.
So any trojans/worms dressed up with a "legit system file"  would come up as "Safe"

I'm sure you'll okay anyway, :)

Best wishes!
0

Featured Post

The Firewall Audit Checklist

Preparing for a firewall audit today is almost impossible.
AlgoSec, together with some of the largest global organizations and auditors, has created a checklist to follow when preparing for your firewall audit. Simplify risk mitigation while staying compliant all of the time!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now