Jump to content


Get rid of the 'about:blank' hijacker now!

  • Please log in to reply
1 reply to this topic

#1 ellis



  • New Member
  • Pip
  • 2 posts

Posted 28 June 2004 - 08:20 PM

Ellis isn't my real name.

I posted the following text at another forum, pasted here for your edification.

I hearby swear that I have no affiliation with the makers of BoClean, nor is my intention that of spamming.

BoClean isn't free, but it eradicated the 'about:blank' hijacker almost immediately.

The BoClean web page is located here:

Privacy Software's site is here:

Here is the post I made...

My WinXP gaming box had become infected with some weird hijacker that
nothing seemed to be able to stop. Yeah, yeah... it was after some frisky
web surfing with nary a security utility installed. Please skip the
lectures, as I don't use the gaming box to do any kind of e-mail, banking,
or credit card/check purchases. :-|

Anyway, after marveling at the evilness and efficiency of the 'about:blank'
hijacker, I installed AdAware, SpywareBlaster, and Spybot with TeaTimer.
Spybot's file scanner was useless. AdAware's scanner detected and removed
the after effects, but failed to kill the .dll (I'm assuming) that caused
constant re-infection. TeaTimer and/or SpywareBlaster seemed to limit the
insane quickness of re-infection, but still failed to clean the box. With
the last two utilities running in the background, re-infections were up to
an hour apart ~~ but consistent. Never while the system was idle, but
usually when I opened the browser or OE... I would see various pop-ups from
TeaTimer (which I used to deny the system changes), but the browser was
hijacked anyway.

Okay, so I broke down and bought BoClean.

Wow. :-)

After installing BoClean, then uninstalling AdAware, Spybot, TeaTimer, and
SpywareBlaster... the next time I opened OE it immediately closed, and I
noticed the BoClean icon was red. "Hmmmm", I thought ~~ that must mean
something. Sure enough, here's what was in the BoClean log:

06/28/2004 20:27:08: C:\WINDOWS\SYSTEM32\LFHKA.DLL
Trojan horse was found in above file
File copied to C:\evidence.boc for examination.
Active trojan horse was shut down. System now safe.
Trojan horse was removed, registry cleaned.

Re-infection has yet to occur.


Thank you Nancy, and please tell Kevin he has another loyal customer.


#2 ellis



  • New Member
  • Pip
  • 2 posts

Posted 28 June 2004 - 09:03 PM


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

Member of

Support SpywareInfo Forum - click the button
PayPal - The safer, easier way to pay online!