Uh Oh

[W3WN]

Phone rings last night; my sister-in-law talking to my wife about the upcoming 18th family birthday party for my nephew. Then she hands me the phone.

I'll condense the next 20 minutes:

She got hit with a drive-by malware infection. Masquerading as an alert from "Microsoft Internet Security." Won't let her access the Internet, insists that she's infected, wants to scan her machine (her husband did that, worm now insists on downloading an "anti virus" program).

I have been volunteered to inspect the machine. I got the evil eye from the boss when I suggested the machine be taken somewhere else... since it would cost $$ (of course, I'm expected to clean it. For free. Of course. Not the first time I've had to fix a computer while the family parties, but that's a whole 'nother story...)

I haven't laid eyes on the little bastard yet. I think this is a variant on the "AntiVirus 2009" scam. Sound familiar to anyone? And will Malwarebytes AntiMalware nuke it, or should I be looking at other cleaners?

[NQ6U]

I recommend removing the HD and soaking it in diesel fuel for about three days. That will probably take care of the infection but, if not, try applying acetone at about 465° C.

[kf0rt]

I feel your pain, brother Ron.

Had a BIL do the same with me this summer and I complied. His system really was pretty clean -- probably clicked on an errant link somewhere. Malwarebytes cured it and he fixed my lawn mower in return. He was SURE it was caused by using the computer during a lightening storm (because, well, that's when the problem started).

Boot in safe mode, and run Malwarebytes from there.

[KC2UGV]

Backup "My Documents", and reinstall Windows... Only sure-fire way to clean the thing out, and spend less than 10 hours on it.

[W3WN]

I recommend removing the HD and soaking it in diesel fuel for about three days. That will probably take care of the infection but, if not, try applying acetone at about 465° C.

Ooooooo... I like that idea.

Well, remember I gave you the condensed soup version. I have been assured that she has "all" of her data backed up to CD, save a few recent photos. She is supposed to take care of that the next few days.

My "druthers" are to find out the type of hard drive (IDE or SATA), go to Best Buy, purchase (on HER credit card) a brand new drive with equal or greater capacity, install drive, reinstall OS etc. from OEM disks, and then she can reinstall her data. Less time, less pain, secure-er system. Of course, that's not going to happen, but I can dream.

If I don't get anywhere fast, that is what I'm going to recommend.

And I'm NOT fixing it up next weekend. Pa QSO comes first!

[VE7MGF]

format is your friend
do a full format then reinstall the os
dont even bother to try and save anything on the drive

[N1LAF]

Phone rings last night; my sister-in-law talking to my wife about the upcoming 18th family birthday party for my nephew. Then she hands me the phone.

I'll condense the next 20 minutes:

She got hit with a drive-by malware infection. Masquerading as an alert from "Microsoft Internet Security." Won't let her access the Internet, insists that she's infected, wants to scan her machine (her husband did that, worm now insists on downloading an "anti virus" program).

I have been volunteered to inspect the machine. I got the evil eye from the boss when I suggested the machine be taken somewhere else... since it would cost $$ (of course, I'm expected to clean it. For free. Of course. Not the first time I've had to fix a computer while the family parties, but that's a whole 'nother story...)

I haven't laid eyes on the little bastard yet. I think this is a variant on the "AntiVirus 2009" scam. Sound familiar to anyone? And will Malwarebytes AntiMalware nuke it, or should I be looking at other cleaners?

A friend of mine went through this, even bought the antivirus software. She was pretty upset, couldn't use internet, facebook, etc. We got the terms from the offending website, she wrote the letter for refund, and had the credit card dump the charge and stop all activities until it was straightened out.

Bottom line - it was fix-able.

AVG antivirus and Antimalware will fix it.
After you clense the system, install firefox, and make it the default browser.

Problem never came back. IE was most likely the weak point here, and Firefox anti popup prevented any further outbreaks.

Edit: I was on copy for the letter to that company associated with the phony anti-virus. It was to support(a)mailingsimple.com, dated July 12, 2009

[KJ3N]

Boot in safe mode with networking, and run Malwarebytes from there.

Fixed... and agreed.

[KJ3N]

Backup "My Documents", and reinstall Windows... Only sure-fire way to clean the thing out, and spend less than 10 hours on it.

BS

Light-weight...... :roll:

[KJ3N]

format is your friend
do a full format then reinstall the os
dont even bother to try and save anything on the drive

WRONG!

WTF is it with you people?

Some of you surrender so easily. Are you French? It's a simple bit of malware. :bfd:

I've cleaned machines that were in far worse shape. One had no less than 185 "infections" and was completely cleaned with no data loss.

Get a grip.... :roll: