Bliss desktop picture small

[Charlie3110]

I have problems with malware redirecting my Internet Explorer to wrong sites.
In my efforts to eradicate this malware I have somehow upset my desktop. I
used to have bliss as my pic but now I have a dark blue desktop. I have treid
to change back to bliss but it only shows in the centre of the screen. I
thought the screen resolution might have changed but that is ok. My task bar
used to be blue but now is white and I imagine that goes with the dark blue
desktop. How can I restore the desktop to a full bliss and how can I restore
the task bar to blue also? Thanks

 

[Charlie3110]

Having posted this I Googled the problem and was directed to Kelly's Corner
where I found that if I right clicked on the desktop and chose Properties and
then chose Themes my theme was not set to XP. When I did that then all is
restored. I still have the problem with redirection and despite running
SpyBot and Malwarebyte and Spyware terminator and Adaware and even Microsoft
windows malicious software tool it remains. I would love some help on this
please? Thanks

 

[1PW]

Having posted this I Googled the problem and was directed to Kelly's Corner
where I found that if I right clicked on the desktop and chose Properties and
then chose Themes my theme was not set to XP. When I did that then all is
restored. I still have the problem with redirection and despite running
SpyBot and Malwarebyte and Spyware terminator and Adaware and even Microsoft
windows malicious software tool it remains. I would love some help on this
please? Thanks

DNS poisoning is one possibility.

Another is a compromised HOSTS file.

Pity you couldn't let us have more information...

 

[sandy58]

I have problems with malware redirecting my Internet Explorer to wrong sites.
In my efforts to eradicate this malware I have somehow upset my desktop. I
used to have bliss as my pic but now I have a dark blue desktop. I have treid
to change back to bliss but it only shows in the centre of the screen. I
thought the screen resolution might have changed but that is ok. My task bar
used to be blue but now is white and I imagine that goes with the dark blue
desktop. How can I restore the desktop to a full bliss and how can I restore
the task bar to blue also? Thanks

Try Control Panel>Display>Desktop>position:Stretch.
Good luck.

 

[Paul]

Having posted this I Googled the problem and was directed to Kelly's Corner
where I found that if I right clicked on the desktop and chose Properties and
then chose Themes my theme was not set to XP. When I did that then all is
restored. I still have the problem with redirection and despite running
SpyBot and Malwarebyte and Spyware terminator and Adaware and even Microsoft
windows malicious software tool it remains. I would love some help on this
please? Thanks

When you type in a URL into the browser, the name is translated to an
IP address. So "www.microsoft.com" is converted to numbers like 1.2.3.4,
which is the IP address. The IP address, is how the computer actually
does the communication.

DNS or Domain Name Service is one way to do that translation. Your
ISP has a DNS server, that performs that kind of translation on
request.

But there is also a file on the computer, the "hosts" file, and
it is used to override DNS. So a name can be translated locally.
This is the contents of my (uncompromised) hosts file. The file is
very short, and has only one entry. This file is what gets installed
with my WinXP SP3 install CD.

C:\WINDOWS\system32\drivers\etc\hosts

# Copyright (c) 1993-1999 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

*******

If you find extra entries, they can be there for good reasons, or
bad reasons. For example, this technique prevents communications
with doubleclick.net . Some people distribute hosts files, with the
intent of "disconnecting" sites like doubleclick.net . So they
can't track you and your viewing preferences.

127.0.0.1 doubleclick.net

But if you saw something like this, this could be a redirection
for some other purpose. If you attempted to reach microsoft.com
with your browser, you're going to that number instead (I just
made up a number). The browser would think it had reached Microsoft.

123.102.103.104 microsoft.com

The redirection could still be an active element on the computer,
either code or a browser helper object or whatever. There are
probably other ways to redirect a person, but I'm no "virus/malware"
guy.

HTH,
Paul

 

[Charlie3110]

Thanks gentlemen for your responses. Sandy, thanks but I have resolved the
desktop problem as per my second entry. I will get to the advice from Paul
this afternoon when I have some more time. 1PW you are welcome to at much
info as you desire but I am a senior surfer and if I knew before hand what
advice you needed then I would have supplied it but Paul has steered in the
right direction and I will read what he has written very slowly and act on it.
Thanks again