PDA

View Full Version : Caution...I know this is not the section....



mm stan
08-19-2012, 03:23 AM
ATTENTION, CAUTION:mad:
But this is where everyone will see this most..yes get the most visability.. Moderators please move if you deem this inappropiate...

My computer just crashed and I lost my Norton security from a virus
about 15 minuetes ago and had to be reloaded...I opened that thread
with the russian charathers in the general section and got a window with a red box error...yes it's Spam
PLEASE BE CAREFUL ON THAT THREAD...HOPE THIS DOES NOT HAPPEN TO YOU..
Just to let you all know and be aware...

SuzukHammer
08-19-2012, 03:28 AM
I also had a computer crash a couple of days ago. had to reload windows, norton and microsoft office.

buddhuu
08-19-2012, 03:47 AM
Thanks for the heads up. I have deleted that thread.

mm stan
08-19-2012, 04:10 AM
Mahalo Rick,
Don't know why those guys ever do those things....

ksiegel
08-19-2012, 04:16 AM
Mahalo Rick,
Don't know why those guys ever do those things....

Because they can, Stan. They are Fecal-Cranial Syndrome carriers.



-Kurt

(And what the heck are you doing up? It is 4 AM in Honolulu!)

Plainsong
08-19-2012, 04:35 AM
Sometimes when you get into that OS-install time vortex, you don't even realize it's 4am! Or maybe Stan is up with the chickens! :)

mm stan
08-19-2012, 04:41 AM
Aloha Kurt and Kim,
ha ha yup its 4:40am now and I am up all nite baby....actually I have a pinched nerve in my back and I am in pain ..and the chilly nites don't help....so I am here....Lah Lah Lah Lah
had to use this thingie called Norton Power eraser...

OldePhart
08-19-2012, 09:25 AM
That's interesting. I picked up that "FBI has locked your computer" drive-by virus from some web-site over the weekend. That one's nasty and I guess a fair number of people are actually paying the $200 "fine" to unlock their computer from what my post-infection research (from another computer) revealed. It was pretty easy for a computer junky to clear but I guess for a lot of non-tech folks it could be a nightmare and most of the virus checkers and cleaners still aren't catching or removing it even though it's been out for more than a month in its current incarnation.

It was a pretty tricky presentation. I wasn't fooled for a minute not least because I knew I hadn't been doing any of the illegal things that "could trigger the FBI locking your computer yada yada." The language of the lockout page wasn't completely atrocious grammar like most of those stings, though. It was one of the more clever approaches I've seen, both in its wording and in how they were demanding payment. Of course, I suppose that if anybody thinks the FBI is going to tip their hand to an investigation into copyright violation, child pornography, or any of several other violations, and then let suspects off the hook for payment of a $200 fine, maybe they both have a guilty conscience and deserve to be fleeced... :)

One of the clever things about this one was that it used ctfmon to schedule the lockup randomly. The virus actually installed itself the 17th and didn't fire until the middle of the day on the 18th when I wasn't even surfing the web. Consequently, I'm not sure where I picked it up from - I suspect it was one of the advertisements on one of my regular sites that I visited the 17th.

John

The Big Kahuna
08-19-2012, 09:45 AM
Sounds like the MoneyPak virus John.

mds725
08-19-2012, 02:38 PM
Stan - thanks for the heads-up.

I also got the MoneyPak virus. I was taken in for a moment until I realized two things: (1) The FBI would not depict the term "two hundred dollars" like this -- 200$ -- with the dollar sign after the number, and (2) freezing a computer and unfreezing it on condition of the payment of money would be an unconstitutional taking and/or an unconstitutional search or seizure. If the FBI believed that you had done something illegal with your computer it would obtain a warrant and raid your home. I also did some research on a noninfected computer and found some malware fighting software that solved my problem. For what it's worth, I also discovered that I could use my infected computer for limited stuff, like web surfing, in safe mode.

foxfair
08-19-2012, 03:01 PM
Stan - time to buy youself the shiny Mac or Macbook Pro, and throw the virus problem away from your head.

Nah I am half joking, but I don't have the problem with my mac laptop and using chrome rather than firefox or IE.

OldePhart
08-19-2012, 03:04 PM
Sounds like the MoneyPak virus John.

Yep, that's the one. Couldn't remember the name of it off the top of my head, Reveton or something like that. Usually Avast! catches those drive by trojans but I guess this one is sneakier than most. :)

strumsilly
08-19-2012, 03:11 PM
Aloha Kurt and Kim,
ha ha yup its 4:40am now and I am up all nite baby....actually I have a pinched nerve in my back and I am in pain ..and the chilly nites don't help....so I am here....Lah Lah Lah Lah
had to use this thingie called Norton Power eraser...
Chilly nights, you live in HI, come on Stan, now chilly can it get, what the low 70's. just kiddin you, sorry about your back. back pain cAN BE A REAL PAIN IN THE ARSE.

itsme
08-19-2012, 04:06 PM
I had a similar virus a few months ago, except it wasn't the FBI. I saw my AV alert me right before I got a message about my hard drive failing and to run this utility (which BTW is part of a basic Windows install). Then it said it could repair the problem but I'd have to upgrade to the full/paid version and asked me to enter my cc info. There is no upgrade, the virus mimicked the Windows utility look to make it seem legit. It's "ransomware" and I'm sure a lot of people do pay it.

Sadly, I've learned more about virus removal than I really care to know. I got hit from following a link off a known news site in IE to a place called "cafemom", seemingly an innocuous site. But ad servers are known to get infected and spread virii to any site publishing their ads.

I've basically switched to Firefox with the NoScript extension, as it prevents unknown scripts from running. Sometimes it's a hassle when sites don't work right, but you call allow sites on a case-by-case basis.

OldePhart
08-19-2012, 05:31 PM
I had a similar virus a few months ago, except it wasn't the FBI. I saw my AV alert me right before I got a message about my hard drive failing and to run this utility (which BTW is part of a basic Windows install). Then it said it could repair the problem but I'd have to upgrade to the full/paid version and asked me to enter my cc info. There is no upgrade, the virus mimicked the Windows utility look to make it seem legit. It's "ransomware" and I'm sure a lot of people do pay it.

Sadly, I've learned more about virus removal than I really care to know. I got hit from following a link off a known news site in IE to a place called "cafemom", seemingly an innocuous site. But ad servers are known to get infected and spread virii to any site publishing their ads.

I've basically switched to Firefox with the NoScript extension, as it prevents unknown scripts from running. Sometimes it's a hassle when sites don't work right, but you call allow sites on a case-by-case basis.

Heh, heh. My wife got that one on her laptop a few months ago at...surprise...cafe mom. (And she wonders why I won't give her the admin password or let her use credit cards online at all...) :)

JOhn

mm stan
08-19-2012, 05:56 PM
When I first got the alert, I was kinda curious if it was even from Norton and was questioning myself...before I even opened the program to fix the problem, I decided to call Norton to verify this was
a true alert from them..these days you never know and I needed confirmation before moving forward...I noticed even when I wanted to shut down my desktop a porn site even popped up. I have never been on a porn site and wondered why it was there, I quickly closed it. worried as hell...

The Big Kahuna
08-19-2012, 09:14 PM
Here's a free tip. ALWAYS make sure your Java is updated (no, I don't mean check your coffee is fresh). The vast majority of malware these days is deployed via Java exploits.

Just go to control panel and click on Java, then go to the update tab and click update now. If you find that you don't have an update tab, you are probably using Windows 7 64bit, which causes a conflict. If that's the case, post here and I'll tell you how to get around this.

mm stan
08-20-2012, 02:24 AM
Here's a free tip. ALWAYS make sure your Java is updated (no, I don't mean check your coffee is fresh). The vast majority of malware these days is deployed via Java exploits.

Just go to control panel and click on Java, then go to the update tab and click update now. If you find that you don't have an update tab, you are probably using Windows 7 64bit, which causes a conflict. If that's the case, post here and I'll tell you how to get around this.
Mahalo Big Kahuna,
I do have windows 7 64bit... so what can I do....let me know..

The Big Kahuna
08-20-2012, 03:24 AM
You can browse to this location and run the 32 bit executable directly:

C:\Program Files (x86)\Java\jre6\bin\javacpl.exe

mm stan
08-20-2012, 03:32 AM
Mahalo Big Kahuna....will do....wow you are a wiz man...

The Big Kahuna
08-20-2012, 03:50 AM
I just do it for a living dude. But thanks anyway. I'll never turn down a compliment ;)

hoosierhiver
08-20-2012, 03:52 AM
I really dislike Norton, I use Webroot.

The Big Kahuna
08-20-2012, 04:40 AM
The first thing I do when I get to a job is uninstall Norton if the PC is playing up. Microsoft Security Essentials (free) and a monthly sweep with Malwarebytes (also free) should be all anyone needs outside a corporate environment.

seneystretch
08-20-2012, 07:23 AM
Here's a free tip. ALWAYS make sure your Java is updated

I leave Java disabled I need it so seldom. A SmugMug upload, posting pix on the local paper website, and then turn it back off.

MS Security Essentials works well. Change your DNS to OpenDNS, the free version will let you add another 20 sites to the white/blacklist. OpenDNS does a good job staying current on the troublesome sites.

SpywareBlaster and Spybot Search & Destroy are worthwhile without slowing down your computer. I also use a large HOSTS file with more than 20k entries. And use a Limited User Account for your everyday work, friends don't let friends browse the web from an Admin account. Firefox with the NoScript add in is always a good idea.

That's about everything I use for the computers I admin at work. FaceBook is accessible only from the MacBook laptop, FB is death to the Windows OS.

Plainsong
08-21-2012, 07:36 AM
The first thing I do when I get to a job is uninstall Norton if the PC is playing up. Microsoft Security Essentials (free) and a monthly sweep with Malwarebytes (also free) should be all anyone needs outside a corporate environment.

Yup, second this. This is the first advice we always give too.

mm stan
08-21-2012, 08:02 AM
Thank you all for the great advice....woo hooo MSE and MWB sounds the way to go....

The Big Kahuna
08-21-2012, 08:05 AM
MSE has a much smaller "footprint" in terms of system resources. Norton 360 is such a hog it makes a 6-Core i7 act like a 386

1931jim
08-21-2012, 11:48 AM
Hello mm stan,
Thank you for this thread. I do not understand computers, other than turning them off whenever they freeze up.
So I have never worried too much up until now that I am slowly getting educated. I am running Windows XP professional because it was on my secondhand Fuji Lifebook (close to 10 years old) laptop. My antivirus freebie protection is called AVG linkscanner 2011. Is this any good please?. Sometimes whenever I turn the computer on to start a new day it will take up to 7 minutes to start up after the AVG does it's checking up thingy on startup.
Thanks also for the input and knowledge from The Big Kahuna and other knowledgeable family members.
So should I uninstall AVG and get the MSE thingy please.?
Regards
Jim

mm stan
08-21-2012, 11:58 AM
Aloha JIm,
I'd try and clean up your temp, run, and prefetch files first...also install clean up and disc cleaner....and do those too.... thats about all I know, other may clue you in to more....good luck
http://www.filehippo.com/
http://www.pchelpsoft.com/pc-cleaner/lp4/?source=m
http://www.filehippo.com/download_ccleaner/

1931jim
08-21-2012, 12:05 PM
Aloha JIm,
I'd try and clean up your temp, run, and prefetch files first...also install clean up and disc cleaner....and do those too.... thats about all I know, other may clue you in to more....good luck
Thank you Stan, I keep everything cleaned up, I run Executive Diskkeeper once a week and flush everything in the delete folder when I quit the email thingy. Again many thanks for your promptness.
Jim