about:blank page always freezes my I.E and doesnt close out

  1. 10-10-2006  #11
    VopThis
    VopThis is offline Senior Member (Canada)

    Re: about:blank page always freezes my I.E and doesnt close out

    The majority of your issues have cleaned up nicely.


    ERROR: Cannot create file C:\WINDOWS\System32\DRIVERS\ETC\hosts
    It sounds like your HOSTS file is 'read only' at this point. The procedures I gave specifically looks for red text (at the very top right) that may read 'Your Hosts file is marked as read only'. If so, there is box to the right of such text 'Make Hosts Writable?' click on that box to make the HOSTS file writable. Then the current potentially bogus HOSTS file content can then be overwitten.

    If the O1 - entries are allowed to remain they could potentially continue to hijack your PC to 216.130.185.143 ( http://www.dnsstuff.com/tools/ipall....16.130.185.143 ) for questionable purposes and potentially reinstate new and previous infections. What is the purpose of this site to you and why is being so closely protected - do you know that site to be legitimate? Is there another unknown application (from your ISP or other service provider) that has somehow caused restricted access to the HOSTS file? It may be necessary to ask a friend or local shop for assistance.






    Try searching for C:\WINDOWS\System32\DRIVERS\ETC\hosts directly - right click on it and see if you can change the properties attribute which could then allow the file to be deleted.


    Or, see if you can manually remove the 'O1 - ' entries in HijackThis.



    There is also one additional step that also should be done after the above issue is resolved.

  3. 10-10-2006  #12
    mjjfan4life
    mjjfan4life is offline Newbie
    Thank you so much for your assistance
    But my Host file is not marked Read Only, and i still cannot delete it. Hmm.. I've tried to manually delete all the O1 items and the same error message pops up. Is there any other way I can possibly delete this host?
  4. 10-10-2006  #13
    VopThis
    VopThis is offline Senior Member (Canada)
    Save 20% on AVG Internet Security 2012 Suite!
    Might be able to shift some controller or interference process items by running the following scan:


    Download and install AVG Anti-Spyware 7.5 (formally known as Ewido anti-spyware 4.0 - uninstall any previous version first).
    • Click the Download BUTTON. On the next page click the Download now BUTTON.
    • Save and then install (Run) from the save location.
    • Open/Run ewido anti-spyware
    • Wait a few moments and Ewido should Auto update itself (note date of last update). If it doesn't update, click the update ICON at top of screen:

    • Click on the Update now LINK at the top of the window
      • Click on the Start update button
      • Wait for the update to download and install
  5. This is very important to get the LATEST updates
  6. Click on the Status ICON
    • Under "Your computers Security"
      Click change status on Resident shield to inactive (ONLY consider activation of that feature once you are clean)
  7. Click on the Scanner ICON at the top of the window
  8. Click on the Settings tab then select Recommended Actions and choose Quarantine
  9. When updating has finished. Close Ewido.



    10. We will be using this tool in a later step.




    Reboot your computer in Safe Mode.
    • If the computer is running, shut down Windows, and then turn off the power.
    • Wait 30 seconds, and then turn the computer on.
    • Start tapping the F8 key. The Windows Advanced Options Menu appears. If you begin tapping the F8 key too soon, some computers display a "keyboard error" message. To resolve this, restart the computer and try again.
    • Ensure that the Safe Mode option is selected.
    • Press Enter. The computer then begins to start in Safe mode.
    • Login on your usual account.
    ______________________________


    Close ALL open Windows / Programs / Folders. Please start Ewido, and run a full scan:
    • Click on the default Status ICON and select the Scan now LINK.

      OR

    • Click on the Scanner ICON . Select the Scan TAB.

      • Select Complete System Scan. Ewido will now begin to scan your system.

    • If Ewido finds anything it will list them in the Preview WINDOW:
      • Make sure that Set all elements to: shows Quarantine, if not click on the link and choose Quarantine from the popup menu.
      • Select Apply all actions at the bottom of the window (and the items found will be quarantined – and recoverable, if any items are needed back).

    • When the scan has completed, click on the Save Scan Report button and save the scan to your Desktop where it can be easily found.
    • Copy and paste the EWIDO scan results into your next post.
    • Close Ewido.


    Post your latest HijackThis log and let us know how your PC is now behaving.
+ Reply to Thread
Page 2 of 2 FirstFirst 1 2
« Help Please - Boot Up Time Over 2 Minutes | Advice on this log please »

Similar Threads