IE homepage changes by itself

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

How do I get Microsoft AntiSpyware to make the homepage for IE stop changing?
I have the defaults set to MSN.com and I change the homepage to it, but then
I close and re-open IE and it's back to about:blank... does anyone know what
I should do?
 
CWS.Aboutblank
Variant 35: CWS.Aboutblank
Approx date first sighted: March 2, 2004
Log reference: Reconstruction
Symptoms: IE pages changed to about-blank.ws and 213.159.118.226
(1-se.com), hijack returning on system restart
Cleverness: 5/10
Manual removal difficulty: Involves some Registry editing and deleting a
randomly named file
This variant does everything in its powers to redirect you to a domain
owned by 1-se.com. IE is hijacked to it, the hosts file is replaced to redirect
about 100 porn and CWS domains to 1-se.com, and a randomly named stylesheet is
dropped that redirects to 1-se.com when certain keywords appear in
webpages.Restoring the IE pages by searching the Registry for about-blank.ws,
removing the hosts file, the svchost.exe file in the Windows directory (the one
in the System32 folder is legit) and the randomly named stylesheet (1079 or 1087
bytes in size) fixed this.


Download CWShredder here:

http://cwshredder.net/cwshredder/cwschronicles.html
 
the second one I know very well because I originally changed my homepage to
about:blank right there.
"The other method that will work is open a IE window goto 'Tools' on the top
bar then 'Internet Options' , on the hompage address box type the homepage
you want and press Apply "

the first one, I tryed before coming here, and it worked fine, until after
opening IE. While the window was open, a pop-up came up from MSAS saying that
the IE homepage had been changed to about:blank. The problem is that I need
to know what to change so that it watches the homepage and stops it from
going back to about:blank as opposed to going to msn.com after I go into the
advanced settings and reset, because if I have to do that every time I may as
well just type msn.com into the address bar.

As to what dave was talking about, the Coolwebsearch is very similar to this
problem. This one apparently is "enjoywebsurf", except that the file it is
making me see is on the hard drive somewhere but it keeps changing the
filename and when I do manage to find and delete it it, the problem just puts
another copy of it back with yet another name.
 
Back
Top