Re: After reading the posts about 'about:blank' I am so confused.
From: LuckyStrike (LS_at_smokedamagedfurniture.youcandriveitawaytoday.com)
Date: 07/01/04
- Next message: Mike: "reinstallation of IE"
- Previous message: Jan Il: "Re: Homepage resetting to unwanted site."
- In reply to: Dave: "Re: After reading the posts about 'about:blank' I am so confused."
- Next in thread: Dave: "Re: After reading the posts about 'about:blank' I am so confused."
- Reply: Dave: "Re: After reading the posts about 'about:blank' I am so confused."
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 30 Jun 2004 23:58:26 -0600
NAV fix a DSO exploit? Not likely as that isn't it's province, BUT, I don't
use NAV so cannot say for sure. I've seen that DSO exploit before in Spybot
and it normally was able to fix it. If for some reason it cannot, try this:
Have "Search & Destroy" look for problems the usual way, then:
(1) highlight (by single left click) one of the "Data source object exploit"
items,
(2) Right click the highlighted item to bring up the menu list and select
"More details"
(3) Click "Jump to location"
(4) You should now be viewing the Registry and can use the path shown in the
Search & Destroy window to get to the key shown.
Export the Keys, and then Delete them in the registry. That should do the
trick.
If all else fails, try Spybot scan in Safe-Mode. Note: your Desktop icons
will probably change positions, so take a screenshot (if you don't have a
program which restores their locations) of where they are so you can
relocate them after you are finished.
-- LuckyStrike LS@smokedamagedfurniture.youcandriveitawaytoday.com How to make a good newsgroup post: http://www.dts-l.org/goodpost.htm http://home.satx.rr.com/badour/html/post.html -------------------------------------------------------------------- "Dave" <david.frickNOtoSPAM@homestore.com> wrote in message news:upsTYrxXEHA.2388@TK2MSFTNGP11.phx.gbl... > Thanks guys. > > I followed the instructions at > http://mvps.org/winhelp2002/unwanted.htm#Coolwebsearch and basically did the > following to remove the about:"blank virus:" > > Ran CWShredder > Ran HijackThis > Ran Spybot 1.3 > > "about:blank" is now gone. However, subsequently when I run a scan under > Spybot, I get a report of malicious files: > > DSO Exploit: Data source object exploit (Registry change, nothing done) > > I run the fix under Spybot but when I scan again the files are still there. > > Does anyone know what these files are? > > <snipped...>
- Next message: Mike: "reinstallation of IE"
- Previous message: Jan Il: "Re: Homepage resetting to unwanted site."
- In reply to: Dave: "Re: After reading the posts about 'about:blank' I am so confused."
- Next in thread: Dave: "Re: After reading the posts about 'about:blank' I am so confused."
- Reply: Dave: "Re: After reading the posts about 'about:blank' I am so confused."
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
