I've got enought of the about:blank general tips...as a "not very up to date in computers" lay person, I would love to have a step by step solution to the problem. Which software should I use? then, which file should I delete.
I would really appreciate some help with this.
Thank you

14 Years
Discussion Span
Last Post by alc6379

There are several about:blank issues so one cannot be specific until the hijack is sighted. I would first run Adaware & spybot, the run hijackthis & post it here.

Download & instal Adaware from here
& update it before scanning.
In settings under 'scanning,' have it set to
'scan within archives,'
'scan active processes,'
'scan registry,'
'deepscan registry'
'scan my IE Favourites for banned URL's,'
'scan my host's file.'
In 'tweaks' under 'scanning engine' set it to 'unload recognised processes during scanning.'
Also in 'tweaks' under 'cleaning engine' set it to 'Automatically try to unregister objects prior to deletion' & 'let Windows remove files in use at next reboot.'
Select 'activate in-depth scan' before starting scan.
When the scan is finished select 'next.'
Remove what it finds by placing a check in the box to the left of the object. Reboot

Download & instal Spybot S&D from here Update it before scanning.
After the scan is complete, have spybot fix everything marked RED.
On the page that first opens when you start Spybot there is an option to immunise, you should do this. In the immunise section there is also a link to download Spywareblaster. This program will prevent the install of bad activex controls that it has knowledge of. Download that & you can keep it updated by selecting the same link that you use to download it. Reboot

Download HijackThis from here & unzip it into it's own, permanent folder, (Not a temporary folder or the desktop & not directly on your hard drive).
If you have anything disabled in MsConfig, please re-enable it/them.
Start HJT & with all browser windows closed, press the scan button. When the scan is finished the scan button will change to save. Save the log to a text file, copy the entire contents of the text file & paste it into the body of your post. DO NOT FIX ANYTHING YET. Most of what is there is necessary for the running of your system.


Additionally, read this thread:


It involves using a tool called APM (Advanced Process Manipulation) to yank a DLL file out of a running IE process. Then, you can do the same to explorer.exe, and then remove the affected files. The instructions are step-by-step, and worked excellently on my wife's system.

Additionally, there's CWShredder. The latest version, 1.59.1, removes several about:blank hijacks, including the really nasty "sp.html" one floating around.

This topic has been dead for over six months. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.