New
#31
I uninstalled Java last time I got a fake MSE window. There must be a door open somewhere?
I uninstalled Java last time I got a fake MSE window. There must be a door open somewhere?
I wanted to post a follow-up to clarify some points on this thread/threat.
Britton30 is correct that the OP did not do anything unnecessary and that the "message from webpage" can be, and frequently is, faked.
I have dealt with this type of threat 4 or 5 times, once on my own machine, the rest on client's. In each
case I ran a virus scan, Malwarebytes scan and, having found nothing, a root-kit scan, which also came up dry.
This is what I observed:
1. It did not trigger an alert from legitimate security software, nor did it disable or interfere with it.
2. It only appeared with a browser window open and closed when the browser was closed
3. If none of the buttons in the fake alert window were pressed, including the "X" to close it, it did not appear to have installed any malware. I suspect this would change if any buttons were clicked.
4. The alert window did not appear repeatedly, once closed it did not come back. I even tried revisiting the page where the fake alert appeared and it did not reappear.
There are numerous types and variations of rogue security ware and they are constantly evolving. Even if the alert window closes and does not reappear, I run the full battery of scans. After that, I run Ccleaner to remove all Temporary Internet Files. The next variant may not be so easily defeated.
Good point, MrWhoopee. The hackers aren't satisfied with being nuisances; they want to be destroyers.
My fake window did, indeed, disappear since I didn't touch anything on it. And it has not re-appeared. But I am still leery!
I shall leave you in Mr Whoopees hands. His 4-5 experiences sure trump my experience of a few dozen.
It's OK, guys. I think whoever is allowed to push that "mark as solved" button" can proceed as the mysterious window is long gone. Thank all of y'all for your help.
OK, then. I'll let the higher-ups decide. Thanks. Britton30.
OOOH. Forgot what "OP" was. Duh. I shall then put this thread out of its misery.