Don't visit Drudge is the first step you can take. His sight is riddled with unsafe spyware. That's likely where you picked it up.
Go to what was once your homepage in Internet Explorer by typing the URL in the address bar. Once the page has loaded, locate the icon in the Address bar, hold the left mouse key down and drag it over the "home" icon and drop it there, that will set that page as your home page.
Not exactly sure to what you are referring, but try AdAware, SpyBot Search & Destroy 1.3, and CW Shredder.
Get thee behind a firewall, preferably hardware and software.
Check out this site: http://www.zone-x.com/spybot.php for some other helpful info.
Load Opera? ;-)
Could you give a little more detail about your problem? It sounds like you just need to set your homepage to some URL - whatever you want.
Here's even more:
http://computercops.biz/article-5199-nested-0-0.html
Thanks for calling this to attention; I learned something.
Good luck!
Download a program called "Hijack This". I fix many of my friends computers, and they'll pick up this problem sometimes at questionable websites. More than likely, besides hijacking your current home page setting, the javascript or active x component also changed registry settings which will change it back again after you fix it when you reboot. You'll likely need to change those registry settings to prevent a re-occurance. The easiest way for a novice is third-party utilities such as Hijack This. I believe the utility is still available as freeware at cnet.com, for example.
What operating system do you have?
Is your "About Blank" home page being hijacked to MSN.com?
Details here:
http://www.freerepublic.com/focus/f-news/1168134/posts
Hijacked! New Browser Exploits Plague Web
various sites | 07-09-04 | The Heavy Equipment Guy
The good news? It can be fixed-
The not-so-good?
You will have to learn a lot of new stuff, probably join the forums listed, quit using Internet Exploder, except for MS updates. But it can be cured, only took me 2-3 weeks...
My provisional theory is that a programmer at AdAware has a rectal-cranial inversion. Yes, there is a hack that uses the name "about:blank," but that is also the name of the default blank page. Surely any programmer who can find Russian spies on your computer could figure out a way to tell the difference between the default blank page and a box of malware named "about:blank." |
Any time you have something like this come up, just put the name into GOOGLE.. You will get any number of sites that are dedicated to getting rid of this trash..
http://computercops.biz/article-5199-nested-0-0.html
The above link contains the following instructions...
1) With “Reglite.exe” find name of hidden file:
Double Click on “AppInit_DLLs” located in “HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWindows” The “value” window reveals the hidden file name. (mine was “hlpl.dll”, yours may be different!) In this example let’s call it “hidden.dll”
2) Rename the hidden file:
Close Windows and reboot using “Windows Recovery Console” Go to “c:Windowssystem32” and do two things. Change file from read only by typing “attrib –r hidden.dll” Then rename it (I don’t know why, but this procedure did not work until I renamed it) type “rename hidden.dll nasty.dll” (and remember that “hidden.dll” is for this explanation only use the name you found earlier) Type “exit” and reboot to Windows.
3) Edit registry to remove hidden file
Run “reglite.exe” again. Double Click on “AppInit_DLLs” located in “HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWindows” Delete the file in “value” window, the “size” window changes also. “Apply” changes and exit “reglite.exe”
4) Edit registry to remove the second file
Run “HiJackThis.exe” and scan the registry. Check the boxes to remove the following entries:
“R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = res://C:WINDOWSSystem32jheckb.dll/sp.html (obfuscated)
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = res://C:WINDOWSSystem32jheckb.dll/sp.html (obfuscated)
R1 - HKCUSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant = res://C:WINDOWSSystem32jheckb.dll/sp.html (obfuscated)
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Bar = res://C:WINDOWSSystem32jheckb.dll/sp.html (obfuscated)
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = res://C:WINDOWSSystem32jheckb.dll/sp.html (obfuscated)
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant = res://C:WINDOWSSystem32jheckb.dll/sp.html (obfuscated)
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,HomeOldSP = about:blank” (as you can see my second .dll was called “jheckb.dll” yours may be different) For this example let’s call it “obvious.dll”.
Finally delete the two .dlls (“hidden.dll” and “obvious.dll”) You should be running again.
By the way, if you go offline with Internet Explorer and type OK To these nasty adware windows you will see the guys who benefit. From this hijacker. I found:
www.palsol.com
www.likesurfing.com
www.vn.msie.cc (the real web page)
They seem to be selling “adware/spyware protection” Pass the word, Boycott them, Who needs to be extorted for “protection money”?
Laugh!
Or telling you to get a Mac or switch to Linux. I know what you mean. You ask for help with a tune-up and folks tell you to get a new car.
Use Firefox, like me. I only use IE for sites that refuse to use standard html style.
Are you talking about the thing where Ad Aware insists that "about:blank" is a malicious web site, and that some Evil Bad Guy is trying to take over your machine because IE is set to wake up in about:blank?