I am getting a Malicious Script Detected whenever I open Help & Support & do a search or close the Help and Support page -both is being caused by the helpctr.exe. To the best of my knowledge it has only started happening after I installed SP1. I have script blocking enabled and am current in all NSW updates. I think I am at the point of having to either uninstall and reinstall NSW 2002 or uninstall and reinstall SP1 - or heaven forbid both! My question is which should I try first? I am leaning towards NSW. Any ideas - I went to another forum and got help in that they could not duplicate it - but other than that - no one seemed to know too much about it. Figured I check with the XP-erts here and see if perhaps NE1 knew any more! I have been through the read, etc on the security hole and the deletion of files blah,blah,blah. I have downloaded and run the XPdite mini utility and says that I have SP1 installed with a "safe replacement entry" - thus I am leery of doing the reinstall thing on SP1 - everything else appears to work okay! Do I dare let the script run one time - even though NAV says it is malicious?? Should I be safe - since I have the "safe replacement entry"? Thanx in advance for any sugegstions - other than reformat!