My Norton detected a virus yesterday and stopped it and deleted it but this outfit (dont go to it) (www dot syssecuritysite dot com) took over my Internet Explorer home page and wont let me change it. Ive run my spy check and ad aware programs but nothing touches it. Anyone run into this before? I cant even use my IE for any other site, its locked up at this jerk outfits site.

never heard of it, never will

G5 here

you could always just get a mac and avoid all that drama/concern in your life ....

Well, I would try running several different anti-spyware programs....I usually run three myself...

1. Adaware
2. Spybot
3. Ewido

I also run "toolbar cop" which removes any extensions from IE

If all that fails I simply use the restore feature on my Computer and restore it back to an earlier point in time...Like the day before the virus hit..

To do this (at least on my puter):

START
PROGRAMS
ACCESSORIES
SYSTEM TOOLS
SYSTEM RESTORE

Then simply follow commands in system restore


Good Luck!

Dan

A google on the url shows none of the spyware listed will stop the high jack... Many pages I found are recomending running something called SmartfraudFix. Click this to download it. I have not tested it but the tool was found linked on fairly reilable sites like tweaks.com http://siri.urz.free.fr/Fix/SmitfraudFix.zip

The instructions are Extract the content (a folder named SmitfraudFix) to your Desktop.
Open the SmitfraudFix folder and double-click smitfraudfix.cmd
Select option #1 – Search, by typing 1 and press "Enter"; a text file will appear, which lists infected files (if present).


The System Restore is also a great way to go back before the infection but a lot of this crud is not effected by design. You may go back before it installed itself but as soon as you reboot it reinstalls. I'm not saying this one is this way, just throwing out a be aware if you restore back and it comes back. Also you can loose legit installed software using System Restore...

I have successfully removed it using the SmitfraudFix . Just make sure to run it in Safe Mode after you download it.


Mike

Guess this is part of it. That site thats holding my home page throws this alert up after each reboot. It shows this item present and to 'buy' their tool to remove it which I WONT.
W32.myzor.FK@yf
seems to be the virus but now I need to try that for fix that you guys suggested. Thanks.

My Norton detected a virus yesterday and stopped it and deleted it but this outfit (dont go to it) (www dot syssecuritysite dot com) took over my Internet Explorer home page and wont let me change it. Ive run my spy check and ad aware programs but nothing touches it. Anyone run into this before? I cant even use my IE for any other site, its locked up at this jerk outfits site.
Jim, i ran into the same kind of problem as far as my computer having its own mind...i also have Norton" and i ended up buying there tool and it didn't work, so i went through a 2 hr. Tec. phone deal with Norton and we found the problem..i think there Tec. people are based in India...because it was hard just to get someone to understand me..but then again (RamAirDave) tought me how to copy/paste..:clonk: ..

There are 2 progs to manually remove hyjacks.
HijackThis
and
CWShredder
Google for them
Run the latter 1st.
Some of the hyjack sites are hard to remove, the write into reg files.
If CWShredder doesnt remove, run HijackThis
It gives u a list. a lot of the list u will be able to idenfiy as part of windows....and progs like acrobat reader update etc.
note the paths to files of the browser hyjack.
these will be
C:\
C:\Program Files\
C:\WINDOWS\
C:\WINDOWS\system32
Delete these items in hyjack this. reboot.
If the browser is still hyjacked..some hyjack are more sophisatcated and will reinstall on reboot.
Boot into safe mode (f8 as booting up)
Run hyjack this again
note paths to files...delete these files
run regedit (start /run)
run a search in regedit for the names of files and the name of the hyjacker
remove these entiies.
Check your favorites, delete the hyjack entries there.
Manually reset your home page ...IE/tools/internet options/general/homepage
(this can also be set in the hyjack this options.)

Reboot.
If the browser is still hyjacked, do the above again and check/edit c:\AUTOEXEC.BAT and any new /strange files in there
C:\Documents and Settings\each user name\Local Settings\Temp delete all files
C:\Documents and Settings\each user name\Local Settings\Temp\Temporary Internet Files delete all files

NOTE: If u are not familar with windows files. regedit etc, and u edit/delete something u shouldnt have u can end up with a even bigger mess.
If not sure on a file...run a google search for info.

To prevent further instances of browser hyjacking, dont go to underground sites and keep windows updated...at least every 2nd tue of the month.
Get rid of Symantic, and run KAV
install windows defender and keep updated
keep the firewall on

I got the same several months ago. It was a bugger to get rid of. I looked it up on Majorgeeks.com and used the smitrem and fixquake to remove it. Worked good since then. Just make sure you use a good program to remove it. Good Luck. :)

Click,

Is the Virus Gone? A little tip I perform is to never operate my system under an ADMINISTER account. It really opens the door to Internet critters like you describe. If you have Windows Server Try demoting your account to a POWER USER and using the Administrator logon for system and software upgrades and rutine maintenance.

In my humble opinion go to your nearest Best Buy or Circuit City. Purchase Webroot Spysweeper. You may have to sweep your computer three times in regular mode and possibly three times when it is in safe mode. It's maybe $19.99 or $29.99 to purchase so it is not that expensive. Notorn is good for catching viruses but spyware is a whole other story.

Whatever you do, do not buy anything from the website that pops up and says click here to remove this virus. It is a ploy. These outfits will install more spyware on your computer and if your buy it online there goes your credit card number. Go buy Webroot Spy Sweeper. The purchase price includes a 1 year subscription that automatically updates the spyware defenitions. I use it on my computer and I love it. A friend of mine and his wife both had their computers infected. The webroot spysweeper removed all the threats.

Good Luck!!

I already have webroot spysweeper I bought a year ago. It keeps finding pieces of this crud. But thats in my home PC, its unplugged now while Im in Billings. I will work on that upon return, thanks for the hints guys. :)

I have that problem right now. McAffe did not detect anyhting. Another big help from this site!

I just ran Smitfraudfix. Thanks Dennis. Worked like a charm!


edit:didn't work after all. I will have to try something else.

Well I see I am not the only one, I do not know if it was the same but I got it yesterday when I was looking at this web site. I called the guy that built my computer and he came over and after about 2 hrs or so it is no longer showing up on the computer what he did I do not know but other than say that will be $65.00.

Well I see I am not the only one, I do not know if it was the same but I got it yesterday when I was looking at this web site. I called the guy that built my computer and he came over and after about 2 hrs or so it is no longer showing up on the computer what he did I do not know but other than say that will be $65.00.

I was thinking the same thing. What we have in common is this site.:(

......do not buy anything from the website that pops up and says click here to remove this virus. It is a ploy. These outfits will install more spyware on your computer and if your buy it online there goes your credit card number. Go buy Webroot Spy Sweeper. The purchase price includes a 1 year subscription that automatically updates the spyware defenitions.

You are 100% correct South Side..... Many spyware / virus removal software removal advertisemement mysteriously appear after a PC is infected. Its just as you mentioned A PLOY for you buy their software that really does remove the virus, but removes only that virus and will sheepishly deal with other malware threats. There is a movement against companies that deal in that manner and their days are numbered.

I do IT conulting on the side, and I give all my clients the mandatory 30 minute "best practies" speech before I begin any wok on their systems. Always works!!!!

I use this and it works better than any program I have bought.

http://www.microsoft.com/athome/security/spyware/software/default.mspx