Is someone sharing Windows 7 with me?

Page 1 of 16 12311 ... LastLast

  1. Posts : 509
    Windows 7 Home Premium 64-bit, service pack 1
       #1

    Is someone sharing Windows 7 with me?


    So, this all came about when I found the FBI ransom Trojan horse greeting me a couple of mornings ago. With the help of a techie friend, we got the thing removed (I hope). It took two days.

    To find out which site I'd visited that may have given me the virus, I checked my history once everything was up and running again. I found a list of sites I have never, ever visited on any computer at any time in my life. International singles? HAHAHA! Myanmar newspapers? Downloaded videos? Nope. Not my stuff. What does this mean? Is it dire?
      My Computer


  2. Posts : 6,830
    Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
       #2

    nottaclue9

    Let's see something . Run this tool called DDS


    Download



    Double click the dds icon to run the tool.
    Place a check next to attact.txt and click Start . When done, DDS will open two logs
    DDS.txt
    Attach.txt
    Save two logs onto your desktop and upload them with your reply
      My Computer


  3. Posts : 509
    Windows 7 Home Premium 64-bit, service pack 1
    Thread Starter
       #3

    I did as you advised, but I cannot paste the first document, and I don't know how to zip. My apologies. I call myself nottacule for obvious reasons! Are there other ways to let you know what the documents say?
      My Computer


  4. Posts : 6,830
    Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
       #4
      My Computer


  5. Posts : 2,470
    Windows 7 Home Premium
       #5

    nottaclue9,

    You do have a clue...that the ransomware was up to no good!! :)

    Have you deleted your browsing history?
    How to delete your browsing history in Internet Explorer 9

    Also, to make sure the ransomware files were removed, please do the following (this is a short report):

    Download RogueKiller:
    Tlcharger RogueKiller (Site Officiel)

    When you get to the website, go to where it says:
    (Download link) Lien de téléchargement:
    Select the version without the x64.
    Click the dark-blue button to download.
    Save to the Desktop.

    Close all windows and browsers.

    Right-click and select: Run as Administrator

    At the program console, wait for the prescan to finish. (Under Status, it says: Prescan finished.)
    Press: SCAN

    When done, a report opens on the Desktop: RKreport.txt

    Please provide the RKreport.txt (Mode: Scan) in your reply.
      My Computer


  6. Posts : 4,161
    Windows 7 Pro-x64
       #6

    You don't necessarily have to visit the actual site. The malware can come in on third-party ads from a site that you did visit. Or you may have clicked on an innocent looking "Info Box" on a site. Many sites sell ad space and don't monitor the ads or the links. Even the server that handles the ads could have been hacked for a short time.
      My Computer


  7. Posts : 509
    Windows 7 Home Premium 64-bit, service pack 1
    Thread Starter
       #7

    My computer became hopelessly locked up, so I sent it away with the computer guy who found all sorts of infections. He explained these to me, but I cannot explain them to you as my eyes glazed over and my brain shut down. Apparently, there is something called a black hole back door virus? There were three primary infections, and yes. Someone else was using my computer. He "changed my identity" at sign-in, so as far as the person in Thailand is concerned, my computer no longer exists.

    He ran a free spyware detection program before he had to leave, and I am now faced with deciding whether or not this is serious. Of course, I am asked to pay money to get rid of a "snap do" threat. What do y'all think?
      My Computer


  8. Posts : 2,470
    Windows 7 Home Premium
       #8

    ...so I sent it away with the computer guy who found all sorts of infections...

    He ran a free spyware detection program before he had to leave, and I am now faced with deciding whether or not this is serious. Of course, I am asked to pay money...
    Sent it away, he had to leave...you lost me. In any event, you do not need to spend any money to resolve the issue.

    You can use some very basic detailed instructions to run a program that will remove the problem from your computer.

    If you wish to go this route, do you have a clean computer available, and a USB pen drive?

    Also, at this point, can you run RogueKiller as posted above? It will provide a stsrting point.

    If you cannot run RogueKiller, also let us know.
      My Computer


  9. Posts : 8,608
    Windows 7 Ultimate 32bit SP1
       #9

    nottaclue9 said:
    My computer became hopelessly locked up, so I sent it away with the computer guy who found all sorts of infections. He explained these to me, but I cannot explain them to you as my eyes glazed over and my brain shut down. Apparently, there is something called a black hole back door virus? There were three primary infections, and yes. Someone else was using my computer. He "changed my identity" at sign-in, so as far as the person in Thailand is concerned, my computer no longer exists.

    He ran a free spyware detection program before he had to leave, and I am now faced with deciding whether or not this is serious. Of course, I am asked to pay money to get rid of a "snap do" threat. What do y'all think?
    This "FBI ransom Trojan" is an "Identity Thief"! Do NOT pay any money .... If your computer was used for online banking or has credit card information on it, all passwords should be changed immediately to include those used for email, eBay and forums.
    You should consider them to be compromised.

    Passwords should be changed by using a different computer and not the infected one, if not an attacker may get the new passwords and transaction information.
    Banking and credit card institutions should be notified of the possible security breech.
      My Computer


  10. Posts : 509
    Windows 7 Home Premium 64-bit, service pack 1
    Thread Starter
       #10

    Great information you guys. Thanks very much. Will proceed as directed.

    RogueKiller has been run on this computer. It did not catch "snap do," or "snap do" has been quarantined by the free spyware scan to con me into paying for its removal. Can I ignore this, or is it something serious?
      My Computer


 
Page 1 of 16 12311 ... LastLast

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 10:21.
Find Us