Fake Certified Microsoft Support Phone Number Pop-up

mslocke15

New member
Local time
6:12 AM
Messages
7
Hello Everyone!

I have came across something that has been getting on my nerves the past month. I work at a small IT store and we have been getting a lot of calls about this pop-up. What it does is it pops up a block saying computer is infected and you have to call this random number to get it fixed. The number is never the same. I have found there are a lot of junk programs that are installed. For example, Optimzer Pro, Cross Browse, PC Tuner to name a few. I have also noticed that most of the computers DNS servers get set static. Current computer i am working on is set to 81.218.119.5 and 82.163.142.130.

I have done some research and find that every DNS i see goes to Israel. I have been removing the infection by running multiple tools. Malwarebytes, Hitman Pro, Adwcleaner, Superantispyware and resetting all the Browsers, but it has been coming back on occasion. I also have been uninstalling the LAN and reinstalling with a newer driver because seeing a DNS get set static by a bug is something i have never seen before.

Wondering if you guys have any suggestions. It has happened on windows 7 and windows 8 computers.

Thanks
 

My Computer My Computer

At a glance

Windows 7 Professional
OS
Windows 7 Professional
Similar ransomware has been around a while. Maybe there is new onslaught of it at the moment.
 

My Computers My Computers

  • At a glance

    7 X64i5 84002x8gb 3200mhz
    Computer type
    PC/Desktop
    OS
    7 X64
    CPU
    i5 8400
    Motherboard
    gigabyte b365m ds3h
    Memory
    2x8gb 3200mhz
    Hard Drives
    various
    PSU
    pure power 11 400w cm
    Case
    Coolermaster
    Cooling
    cryorig m9i
  • At a glance

    7x64g54008gb ddr4 2400
    Computer type
    PC/Desktop
    OS
    7x64
    CPU
    g5400
    Motherboard
    ga b365m ds3h
    Memory
    8gb ddr4 2400
    PSU
    xfx pro 450w
Having the same problem

Hi,

I am having this exact problem on my computer. Unfortunately I am not tech savvy. How can I get rid of this and clean up my computer without paying an arm and a leg? Thanks
Audare

Hello Everyone!

I have came across something that has been getting on my nerves the past month. I work at a small IT store and we have been getting a lot of calls about this pop-up. What it does is it pops up a block saying computer is infected and you have to call this random number to get it fixed. The number is never the same. I have found there are a lot of junk programs that are installed. For example, Optimzer Pro, Cross Browse, PC Tuner to name a few. I have also noticed that most of the computers DNS servers get set static. Current computer i am working on is set to 81.218.119.5 and 82.163.142.130.

I have done some research and find that every DNS i see goes to Israel. I have been removing the infection by running multiple tools. Malwarebytes, Hitman Pro, Adwcleaner, Superantispyware and resetting all the Browsers, but it has been coming back on occasion. I also have been uninstalling the LAN and reinstalling with a newer driver because seeing a DNS get set static by a bug is something i have never seen before.

Wondering if you guys have any suggestions. It has happened on windows 7 and windows 8 computers.

Thanks
 

My Computer My Computer

At a glance

windows 7 64 bit4.0 GB
Computer type
Laptop
Computer Manufacturer/Model Number
Lenovo T420s
OS
windows 7 64 bit
Memory
4.0 GB
Antivirus
don't know
Browser
Chrome
81.218.119.5 is 81.218.119.5/bzq-218-119-5.red.bezeqint.net IP Address Whois | DomainTools.com
You might want to ask your infected users why they're installing such 'non help' programs?....
:shock:

Get rid of the garbage programs (uninstall), then flush the dirty DNS cache, and restore MS's Hosts File:
Copy and paste these lines in Note pad.

@Echo on
pushd\windows\system32\drivers\etc
attrib -h -s -r hosts
echo 127.0.0.1 localhost>HOSTS
attrib +r +h +s hosts
popd
ipconfig /release
ipconfig /renew
ipconfig /flushdns
netsh winsock reset all
netsh int ip reset all
shutdown -r -t 1
del %0


Save as flush.bat to your desktop.
Right click on the flush.bat file to run it as Administrator.
The computer should reboot itself.

Hope that helps in most cases.
 

My Computer My Computer

At a glance

Windows 7 Ultimate 32bit SP1Intel(R) Core(TM)2 Quad CPU @ 2.40GHz, 2400 MHz4 GBATI Radeon HD 2600 Pro
Computer type
PC/Desktop
Computer Manufacturer/Model Number
Bruce ... somewhere in his 40's
OS
Windows 7 Ultimate 32bit SP1
CPU
Intel(R) Core(TM)2 Quad CPU @ 2.40GHz, 2400 MHz
Motherboard
INTEL/D975XBX2
Memory
4 GB
Graphics Card(s)
ATI Radeon HD 2600 Pro
Monitor(s) Displays
Samsung SyncMaster 914v
Screen Resolution
1280 x 1024
Hard Drives
2/500GB each ... ST3500630AS ATA Device.
One is not connected
PSU
Rocketfish 700 W
Case
G.Skill Gigabyte Chassis
Keyboard
Standard PS/2 Keyboard
Mouse
Microsoft PS/2 Mouse
Internet Speed
DSL
Antivirus
Avira Internet Security
Browser
IE 11
Other Info
ATI HDMI Audio
Back
Top