Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In with Facebook Sign In with Google Sign In with OpenID

Categories

We have migrated to a new platform! Please note that you will need to reset your password to log in (your credentials are still in-tact though). Please contact lee@programmersheaven.com if you have questions.
Welcome to the new platform of Programmer's Heaven! We apologize for the inconvenience caused, if you visited us from a broken link of the previous version. The main reason to move to a new platform is to provide more effective and collaborative experience to you all. Please feel free to experience the new platform and use its exciting features. Contact us for any issue that you need to get clarified. We are more than happy to help you.

About:blank

684867684867 Posts: 110Member
I am looking for information and code samples regarding the browser hijacker I affectionately know as about:blank. There are several causes (read variants) of this hijacker. The one I am most interested in drops a file called se.dll into the following run key

HKLM/SOFTWARE/MICROSOFT/WINDOWS/CURRENT VERSION/RUN

as

Rundll32 [path]se.dll, dllinstall

and

HKLM/SOFTWARE/MICROSOFT/INTERNET EXPLORER/MAIN

as

res://[path...ex. c:documents and settings... emp]se.dll/sp.html....


Anyone who has identified this on a machine will need a lot of help and prayers manually removing the trojan. There are two other files usually accompanying this file. I can help you remove it if you will give me the file for inspection and analysis.

I need these files to build an idea of where they are originating and how to stop them.

****************************************
Excellence Breeds! Go Hard or Go Home.

Let Penguins rule the earth.
Break some windows today.
Sign In or Register to comment.