OK then, here is a post from Jim Byrd - MVP dealing with this About:Blank
nuisance, copied and pasted (thanks Jim) Apply the fixes only as far as they
will apply to your particular instance. I agree with Jim Byrd in that using
a spyware removal fix from the actual spyware installer is a questionable
practice with a degree of inherent spookiness built in, if you know what I
mean. The Fox and the Hen-House routine, as it were.
Jims Post:
<paste>
You can try this AT YOUR OWN RISK. I normally wouldn't advise
using a malware provider's uninstall, but this particular approach has been
reported to work. Paste the following IP into your browser:
195.190.118.131
On the screen you arrive at, you see a "Search For" window, and below it a
red "Uninstall Software". Download their uninstaller, uninstall.exe. At
this point I would either use TotalUninstall or make a complete backup of my
system for safety's sake. Total Uninstall,
<
http://www.geocities.com/ggmartau/tu.html> or direct dwnld here:
<
http://files.webattack.com/localdl834/tun234.zip>
Before you try to remove spyware using any of the programs below, download a
copy of LSPFIX from any of the following sites:
<
http://www.cexx.org/lspfix.htm>
<
http://www.spychecker.com/program/winsockxpfix.html> (if your OS is Win2k
or
XP) The process of removing certain malware may kill your internet
connection. If this should occur, this program, LSPFIX, will enable you to
regain your connection
Run this uninstall program program that you downloaded from the malware
site, then UPDATE them and go to Safe mode to run UPDATED versions
CWShredder, AdAware and SpyBot per the following directions:
Note that this symptom often indicates the possibility of other malware.
You might want go to this page at Jim Eshelman's site, here:
<
http://aumha.org/a/noads.htm> or here:
<
http://inetexplorer.mvps.org/parasite.htm> and wait a little bit (be
patient), while an analysis of a number of possible parasites on your
machine will be made to help you identify and remove them. NOTE: You will
need to disable Ad Blocking in Zone Alarm 3.x, if present or any other Ad
Blocking software which interferes with Java Scripting for this scan to
work. You should get a message between the two lines of **** giving the
results of the scan.
All of these removal tools should be run from Safe mode when possible
For the general hijack case, the best way to start is to get Ad-Aware 6.0,
Build 181 or later, here: <
http://www.lavasoftusa.com/support/download/>.
UPDATE and run this regularly to get rid of most "spyware/hijackware" on
your machine. If it has to fix things, be sure to re-boot and rerun
AdAware again and repeat this cycle until you get a clean scan. The reason
is that it may have to remove things which are currently "in use" before it
can then clean up others.
Another excellent program for this purpose is SpyBot Search and Destroy
available here: <
http://security.kolla.de/> SpyBot Support Forum here:
<
http://www.net-integration.net/cgi-bin/forums/ikonboard.cgi>. I recommend
using both normally. After UPDATING and fixing things with SpyBot S&D, be
sure to re-boot and rerun SpyBot again and repeat this cycle until you get a
clean "no red" scan. The reason is that SpyBot sometimes has to remove
things which are currently "in use" before it can then clean up others.
Note that sometimes you need to make a judgment call about what these
programs report as spyware. See here, for example:
<
http://www.imilly.com/alexa.htm>
A currently common parasite is some malware called CoolWebSearch. Do the
following:
Download, UPDATE before running, and run:
<
http://209.133.47.200/~merijn/files/CWShredder.exe> to remove the parasite.
Be sure to close all instances of IE and OE. You may also get it here if
that link is blocked: <
http://www.zerosrealm.com/downloads/CWShredder.zip>
BE SURE that you get v.158 or later!
You will need to show Hidden files first and then at the end clear the
malware garbage from your System Restore backups after you've cleaned up.
It's best to perform CWShredder (and most other malware fixers too) from
Safe mode and then reboot. AFTER cleaning things up, then you can disable
and then re-enable System Restore. See ******** below.
The following links give instructions on how to do these various functions:
HOW TO Restart in Safe Mode
HOW TO Enable Hidden Files
HOW TO Disable/Flush System Restore (do this at the end AFTER cleaning or
use the suggested procedure for XP at the ******'s)
(WinXP)
(WinME)
Then download and run:
<
http://www.kellys-korner-xp.com/regs_edits/iegentabs.reg> to restore your
tabs and remove any restrictions that the parasite has put in place.
<paste/>
END ~~~~~~~~~~~~~~~~~~~~~~~~~ END
--
LuckyStrike
(e-mail address removed)
How to make a good newsgroup post:
http://www.dts-l.org/goodpost.htm
http://home.satx.rr.com/badour/html/post.html
--------------------------------------------------------------------