Jump to content

Trouble removing about:blank


Recommended Posts

I cannot get rid of this darn problem. I have Hijackthis and AboutBlaster as well as Spybot S&D and I still cannot get rid of this problem. PLEASE help me if you can. AboutBuster removed a couple of items but I still have the problem. :D

I ran hijackthis and here are the results below:

Logfile of HijackThis v1.99.0

Scan saved at 2:35:33 PM, on 11/18/2005

Platform: Windows 2000 SP4 (WinNT 5.00.2195)

MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:

F:\WINNT\System32\smss.exe

F:\WINNT\system32\csrss.exe

F:\WINNT\SYSTEM32\winlogon.exe

F:\WINNT\system32\services.exe

F:\WINNT\system32\lsass.exe

F:\WINNT\system32\svchost.exe

F:\WINNT\system32\spoolsv.exe

F:\WINNT\atllw.exe

F:\WINNT\System32\svchost.exe

F:\WINNT\system32\nvsvc32.exe

F:\Program Files\Kodak\Kodak EasyShare software\bin\ptssvc.exe

F:\WINNT\system32\regsvc.exe

F:\WINNT\system32\MSTask.exe

F:\WINNT\system32\ScsiAccess.EXE

F:\Program Files\Spyware Doctor\sdhelp.exe

F:\WINNT\system32\stisvc.exe

F:\WINNT\system32\ZoneLabs\vsmon.exe

F:\WINNT\System32\WBEM\WinMgmt.exe

F:\WINNT\System32\mspmspsv.exe

F:\WINNT\system32\svchost.exe

F:\Program Files\Raxco\PerfectDisk\PDSched.exe

F:\WINNT\Explorer.EXE

F:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

F:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE

F:\WINNT\SM1BG.EXE

F:\WINNT\system32\appjm.exe

F:\Program Files\Common Files\Real\Update_OB\realsched.exe

F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

F:\Program Files\DAP\DAP.EXE

F:\Program Files\Internet Explorer\iexplore.exe

F:\Documents and Settings\Keith Thomas\Desktop\Hijack this\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://F:\WINNT\system32\xxwsu.dll/sp.html#58044

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://F:\WINNT\system32\xxwsu.dll/sp.html#58044

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R3 - Default URLSearchHook is missing

O2 - BHO: DAPHelper Class - {0000CC75-ACF3-4cac-A0A9-DD3868E06852} - F:\Program Files\DAP\dapbho.dll

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {2A646672-9C3A-4C28-9A7A-1FB0F63F28B6} - (no file)

O2 - BHO: (no name) - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - (no file)

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - (no file)

O2 - BHO: (no name) - {9A23B8A4-C6C9-4A68-8FA6-5F905DC8FF80} - (no file)

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - f:\winnt\googletoolbar1.dll

O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - F:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll

O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - (no file)

O2 - BHO: Class - {E7E44D30-1491-53C4-69AA-25935936A07C} - F:\WINNT\system32\ntkn.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - f:\winnt\googletoolbar1.dll

O3 - Toolbar: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - (no file)

O4 - HKLM\..\Run: [Zone Labs Client] F:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

O4 - HKLM\..\Run: [EM_EXEC] F:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE

O4 - HKLM\..\Run: [sM1BG] F:\WINNT\SM1BG.EXE

O4 - HKLM\..\Run: [appjm.exe] F:\WINNT\system32\appjm.exe

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE F:\WINNT\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [TkBellExe] "F:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [synchronization Manager] mobsync.exe /logon

O4 - HKLM\..\Run: [LoadQM] loadqm.exe

O4 - HKCU\..\Run: [spybotSD TeaTimer] F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [spyware Doctor] F:\PROGRA~1\SPYWAR~1\swdoctor.exe /Q

O4 - HKCU\..\Run: [Registry Cleaner] F:\PROGRA~1\REGIST~1\RegClean.exe

O4 - Startup: Delta Force-Black Hawk Down Team Sabre Registration.lnk.disabled

O4 - Global Startup: Adobe Gamma Loader.lnk.disabled

O4 - Global Startup: Adobe Reader Speed Launch.lnk.disabled

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O8 - Extra context menu item: &Download with &DAP - F:\Program Files\DAP\dapextie.htm

O8 - Extra context menu item: &Google Search - res://f:\winnt\GoogleToolbar1.dll/cmsearch.html

O8 - Extra context menu item: Backward Links - res://f:\winnt\GoogleToolbar1.dll/cmbacklinks.html

O8 - Extra context menu item: Cached Snapshot of Page - res://f:\winnt\GoogleToolbar1.dll/cmcache.html

O8 - Extra context menu item: Download &all with DAP - F:\Program Files\DAP\dapextie2.htm

O8 - Extra context menu item: Open Picture in &Microsoft PhotoDraw - res://F:\PROGRA~1\MICROS~2\Office\1033\phdintl.dll/phdContext.htm

O8 - Extra context menu item: Similar Pages - res://f:\winnt\GoogleToolbar1.dll/cmsimilar.html

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll

O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - F:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll

O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - (no file)

O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)

O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - F:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe

O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - F:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe

O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - F:\Program Files\AWS\WeatherBug\Weather.exe (HKCU)

O12 - Plugin for .ipp: F:\Program Files\Internet Explorer\Plugins\npimth32.dll

O12 - Plugin for .ipt: F:\Program Files\Internet Explorer\Plugins\npimth32.dll

O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) -

O16 - DPF: {0E4796D6-A990-4372-9069-72FBDB4AE868} -

O16 - DPF: {0F9B4CA4-A30F-480A-841D-69B45C50A8F8} (SekureL0gin.SekureKontrol) -

O16 - DPF: {22A88341-AFCB-45F0-A856-C2BAE74F878E} (InstallX Class) -

O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} -

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by102fd.bay102.hotmail.msn.com/resources/MsnPUpld.cab

O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -

O16 - DPF: {8EDAD21C-3584-4E66-A8AB-EB0E5584767D} - http://toolbar.google.com/data/GoogleActivate.cab

O16 - DPF: {9B03C5F1-F5AB-47EE-937D-A8EDA626F876} (Anonymizer Anti-Spyware Scanner) - http://download.zonelabs.com/bin/promotion...ctor/WebAAS.cab

O16 - DPF: {9EAC0186-5F5A-4362-B120-15C312CE012D} -

O16 - DPF: {A17E30C4-A9BA-11D4-8673-60DB54C10000} (YahooYMailTo Class) - http://us.dl1.yimg.com/download.yahoo.com/...ymmapi_0727.dll

O16 - DPF: {A1A961DA-2BA6-4032-859E-01AC35357163} (One2One Viewer) -

O16 - DPF: {AE1C01E3-0283-11D3-9B3F-00C04F8EF466} -

O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/...ro.cab34246.cab

O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} -

O16 - DPF: {CC33BAB9-D438-4383-8D1A-202F246C1943} -

O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://utu.popcap.com/games/popcaploader_v5.cab

O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} (HeartbeatCtl Class) -

O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) -

O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) -

O23 - Service: Logical Disk Manager Administrative Service - VERITAS Software Corp. - F:\WINNT\System32\dmadmin.exe

O23 - Service: InstallDriver Table Manager - Macrovision Corporation - F:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: NVIDIA Display Driver Service - NVIDIA Corporation - F:\WINNT\system32\nvsvc32.exe

O23 - Service: PDEngine - Raxco Software, Inc. - F:\Program Files\Raxco\PerfectDisk\PDEngine.exe

O23 - Service: PDScheduler - Raxco Software, Inc. - F:\Program Files\Raxco\PerfectDisk\PDSched.exe

O23 - Service: ptssvc - KODAK - F:\Program Files\Kodak\Kodak EasyShare software\bin\ptssvc.exe

O23 - Service: ScsiAccess - Unknown - F:\WINNT\system32\ScsiAccess.EXE

O23 - Service: PC Tools Spyware Doctor - Unknown - F:\Program Files\Spyware Doctor\sdhelp.exe

O23 - Service: SymWMI Service - Unknown - F:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe (file missing)

O23 - Service: TrueVector Internet Monitor - Zone Labs, LLC - F:\WINNT\system32\ZoneLabs\vsmon.exe

Link to post
Share on other sites

  • 1 month later...
Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.