Browser Hijack and SpywareBlaster

[KEDESS]

Hi,

I’ve been seeing many people lately who have been victims of browser hijack.

The offenders vary but the pattern is always the same: ‘Your computer is infected’ persistent pop-ups and a new homepage that will sell you some bogus infection removal tool.

The latest I came upon just yesterday originates from sysnetsecurity.com apparently located in Alabama.

Is there something SpywareBlaster can do against such sites?
Is it worth reporting such information to SpywareBlaster developers?

After cleaning the place, I added sysnetsecurity.com in the list of dangerous sites in the security settings of Internet Explorer 6 (XP Pro SP2) for that computer. But can this really help blocking such sites ?

Contrary to virus developers who remain anonymous, these scams are well maintained web sites who handle (your) credit card operations. They should therefore be more easily traced be autorities to shut them up. However, they seem to spread like crazy!

A search with Google on sysnetsecurity returns their web site on top of search results, while a commercial link on the right of the page sponsors a tool to solve the problems created by sysnetsecurity.com Funny and irritating at the same time!

[Bubba]

Hello KEDESS....Welcome to Wilders

Quote:

Originally Posted by KEDESS

Is it worth reporting such information to SpywareBlaster developers?

In a round about way you just did given the fact the facility to report such items is limited to individuals like yourself bringing it to Javacool's attention by creating a thread as you have done. By the way....Javacool is the sole developer of Javacool Software

Quote:

Originally Posted by KEDESS

After cleaning the place, I added sysnetsecurity.com in the list of dangerous sites in the security settings of Internet Explorer 6 (XP Pro SP2) for that computer. But can this really help blocking such sites ?

Very much so as long as the user leaves the Restricted Zone at it's default setting of High....where almost everything is set to Disable at it's default level.

HTH,
Bubba

[ski123]

85.255.117.53
xxx.sysnetsecurity.com
Host reachable, 80 ms. average

85.255.112.0 - 85.255.127.255

Inhoster hosting company
OOO Inhoster, Poltavskij Shliax 24, Kharkiv, 61000, Ukraine
Abuse notifications to: abuse[AT]inhoster[DOT]com

Andrei Kislizin
OOO Inhoster,
ul.Antonova 5, Kiev,
03186, Ukraine
phone: +38 044 2404332

Fast Web Hosting Support
01110, Ukraine, Kiev, 20Á, Solomenskaya street. room 201.
UA
phone: +357 99 117759

inhoster
Source: whois.ripe.net


ski123

[manugeorge2004]

Hi

I am also having problem where my browser always opens ***.sysnetsecurity.com. Can you please let me know how you clean it and also how you mark this website as dangerous in my internet explorer security settings

You advice is appreciated

Thanks
George

[snowbound]

Quote:

Originally Posted by manugeorge2004

Hi

I am also having problem where my browser always opens ***.sysnetsecurity.com. Can you please let me know how you clean it

U may want to post a HijackThis log over at this site,

http://gladiator-antivirus.com/forum...howtopic=10517

for analysis by the experts there and possible malware removal instructions.



snowbound

[aigle]

BTW, i want to ask does spyware blaster guards against browser hijacks or not?
In my experience No.

[bigc73542]

Quote:

Originally Posted by KEDESS

Hi,

I’ve been seeing many people lately who have been victims of browser hijack.

The offenders vary but the pattern is always the same: ‘Your computer is infected’ persistent pop-ups and a new homepage that will sell you some bogus infection removal tool.

The latest I came upon just yesterday originates from sysnetsecurity.com apparently located in Alabama.

Is there something SpywareBlaster can do against such sites?
Is it worth reporting such information to SpywareBlaster developers?

After cleaning the place, I added sysnetsecurity.com in the list of dangerous sites in the security settings of Internet Explorer 6 (XP Pro SP2) for that computer. But can this really help blocking such sites ?

Contrary to virus developers who remain anonymous, these scams are well maintained web sites who handle (your) credit card operations. They should therefore be more easily traced be autorities to shut them up. However, they seem to spread like crazy!

A search with Google on sysnetsecurity returns their web site on top of search results, while a commercial link on the right of the page sponsors a tool to solve the problems created by sysnetsecurity.com Funny and irritating at the same time!

Spywareguard by Javacool will protect you against browser hijack in IE. It has been a good tool for a long time.

[aigle]

Ok, I will make a separate post about this issue to get the feedback.

[Bubba]

Quote:

Originally Posted by aigle

i want to ask does spyware blaster guards against browser hijacks or not?
In my experience No.

Correct me if I am wrong but your mis-understanding of how Spywareblaster works "against browser hijacks" was hopefully answered in a recent thread you started correct ??

[aigle]

Quote:

Originally Posted by Bubba

Correct me if I am wrong but your mis-understanding of how Spywareblaster works "against browser hijacks" was hopefully answered in a recent thread you started correct ??

Ya, thansk.
Actually i messed the functions of spyware guard and spyware blaster together.

[SpyWareH8r]

Quote:

Originally Posted by manugeorge2004

Hi

I am also having problem where my browser always opens ***.sysnetsecurity.com. Can you please let me know how you clean it and also how you mark this website as dangerous in my internet explorer security settings

You advice is appreciated

Thanks
George

Hi George,

I'm no expert, but I did spent quite a few hours trying to get rid of the same thing earlier today. After trying many different things and softwares (AVG actually removed the trojan for me, but did not solve the ie browser jacking of the hp), I ended up solving the problem with Spybot S&D, under advanced options, tools, BHO's - I deleted the ones that were not trusted - problem solved immediately.

Hope it works for you too.
Miguel