Help! Scary Big time computer attack last night
I was on Crooks and Liars last night when all of sudden the Net dropped and a virus program with all the bells and whistles appears, telling me that I was infected with Trojans, viruses etc. and did I want a free computer scan to remove the viruses. I've seen this type of thing before, but normally you can right click out of it and take action to dump it. All I could do was X out of it and start my NOD32 Eset Scan. During the scan, that same warning message kept reappearing from this other virus program (I think it was called Windows 7 2012) All I could do was keep X-ing out of it. Well my NOD32 program noted that there were 5 infiltrations, cleaned 4 of them and I think deleted one.
Now, every program I try to open, be it Windows, Excel, AOL, FireFox, you name it, a screen appears with the Adobe 9.1 icon and asks which program I want to use to open the file. What the hell? I am able to open my files through a roundabout way. I did an internet search and it described all the messages that come up on this fake virus site. It was a match for the same messages I got.
I called MakeITWork and they'll be coming tomorrow, but has anybody had this happen to them? Can you get infected just trying to X out of these things?
hobbit709
(41,694 posts)Best thing to do when one of these hits is immediately shut down the computer. Then boot up in Safe Mode with Networking and run Malwarebytes and your antivirus.
Download rkill from bleepingcomputer
http://www.bleepingcomputer.com/download/anti-virus/rkill
and fixncr
http://www.bleepingcomputer.com/virus-removal/remove-xp-security-2012
and run them
dkofos
(6,614 posts)and waiting a minimum of 30 sec. to a minute.
And if it is a laptop, remove the battery.
Then proceed with Hobbit's advice.
Occulus
(20,599 posts)and run your antivirus, full system scan.
Warning- these types of viruses are hard to remove.
elifino
(366 posts)I have had good success removing this virus at worik using a Fake Anti-Virus Removal Tool.
Link: http://esupport.trendmicro.com/solution/en-us/1056510.aspx
Read the complete Knowledge Base shown on this link to decide which tool to download.
I see this problem about once a week in our company.
I download this to a flash drive from a clean computer. Then execute the file on the infected unit.
Good Luck
HopeHoops
(47,675 posts)You can never trust the X or cancel buttons on an unfamiliar screen. They usually just make the entire window one big "FUCK UP MY MACHINE - RIGHT NOW!" button. Click anywhere and you're giving the virus all the permission it needs to take over. Don't feel bad, a lot of people get caught by that trap. I keep the Windows Task Manager open all the time for such things, but it can be difficult the track them down. They usually do not appear under "Applications", so you have to hunt through the "Processes" list to find the buggers.