HIGH Alert-Fake Microsoft Security Essentials Alert

Discussion in 'Et Cetera, Et Cetera' started by b.c., Oct 8, 2010.

  1. b.c.

    Gold Member

    Joined:
    Nov 7, 2005
    Messages:
    9,263
    Albums:
    1
    Likes Received:
    1,669
    Gender:
    Male
    Location:
    at home
    So, while browsing some Asian porn sites the other night this Microsoft Security Essentials Alert thingy popped up.

    Knew right off the bat that it was bogus, because one of my security programs popped up an alert, thought didn't stop it from loading. I call this a high alert item because first of all, it's disguised as the real thing, and second because of how it tries to seize control of your machine.

    It dumps some kind of media collector/sharing file in windows/system32 which no doubt gives (someone) access to all your shit. At the same time the fake alert message pops up.

    It blocks Explorer from running and it has a button that says "apply action" which of course does nothing. Because the "hook" is to get you to go online to further "clean" your machine, only while your supposedly cleaning your machine, the program continues to "clean" you out.

    Naturally, I didn't click it, because if it quacks like a duck.... So I immediately disabled my network connection and even physically pulled the cable until I worked thru this little gem.

    The worst part is, this little f*cker disables your task manager program, disables regedit from the start menu, and even blocks you from deleting the rogue application, hotfix.exe or similar files via the c prompt. You can't delete it, and it pops up when you try to log on via Explorer, Firefox, or any other browser.

    The hotfix.exe (or "antispy" or "defender" or similar shit) hides out as a hidden file under c:\documents and settings\your name\application data. You'll also find a little ms/dos batch file bearing the same creation date as the infection.

    There are several ways to handle this nuisance all depending on variables. One, you can simply log on as another user. Two, you can rename the little shit (hotfix1), then reboot; after which you can run various antivirus/antispyware scanners from your vendor sites (the real ones, not the bogus shit that apparently comes up when you take the bait of this phony "alert").

    Anyway, there are various online resources about this latest spawn created by those who, undoubtedly, must be among the truly dickless.

    Here's just one:

    Get Rid of Microsoft Security Essentials Fake Alert Trojan Installing Red Cross, Peak Protection 2010, Pest Detector, Major Defense Kit, Antispy Safeguard | Reimage PC Repair Review


    btw, and three, avoid unfamiliar "poon" sites in the first place. :cool:
     
    #1 b.c., Oct 8, 2010
    Last edited: Oct 8, 2010
  2. StaffnRod

    Gold Member

    Joined:
    Feb 1, 2008
    Messages:
    2,496
    Likes Received:
    331
    Gender:
    Male
    Location:
    Never Never Land
    Thanks b.c.- for the heads up on this 'little f*cker' which sounds worse than dear old 'Vitumonde' derivatives in the years past. Your in depth tips will prove invaluable to those of us, who may become afflicted by this parasite. :beerchug:

    That final warning is so very true b/c it seems anytime I see querky browser/Win OS behaviour; it follows online sessions at those Russian-East Euro websites.

    As you so aptly put it, they are 'truly dickless' maggots. :adam4:
     
  3. Zeuhl34

    Gold Member

    Joined:
    Apr 12, 2008
    Messages:
    2,104
    Albums:
    2
    Likes Received:
    40
    Gender:
    Male
    I had this happen to me a few days ago. The "Warning" would pop up whenever I tried to open anything connected to the internet (Yahoo messenger, Skype, Winamp, etc), but I managed to get around it by just opting to run everything as an administrator. My antivirus program took care of it in about a day or two.
     
  4. HazelGod

    Gold Member

    Joined:
    Dec 11, 2006
    Messages:
    7,531
    Albums:
    1
    Likes Received:
    9
    Gender:
    Male
    Location:
    The Other Side of the Pillow
    Pffft...Windoze users... :lmao:
     
  5. sleepiboi

    sleepiboi Member

    Joined:
    Nov 2, 2006
    Messages:
    503
    Likes Received:
    0
    Gender:
    Male
    Location:
    Washington
    I almost happened to me at tube8 before, but luckily i'm quick with the task manager lol.
     
  6. BiItalianBro

    Gold Member

    Joined:
    Oct 22, 2006
    Messages:
    1,246
    Likes Received:
    10
    Gender:
    Male
    Location:
    Chicago & Louisville KY
    I got bit by that thing a few months ago! Took me a few days to figure out what you just posted....good idea to copy and file those instructions just in case.
     
  7. b.c.

    Gold Member

    Joined:
    Nov 7, 2005
    Messages:
    9,263
    Albums:
    1
    Likes Received:
    1,669
    Gender:
    Male
    Location:
    at home
    MY pleasure, dude. Way I figure it, if EVERYBODY knows up front not to click "online scan", then it sorta defeats the whole purpose of the ruse, doesn't it? :tongue:

    Absolutely!
     
  8. Mr. Snakey

    Gold Member

    Joined:
    Apr 9, 2006
    Messages:
    24,702
    Likes Received:
    25
    Internet Explorer is a dangerous browser. Most of the viruses you get in Windows are hitting your computer through Internet Explorer. If you were to run Firefox browser you would cut down the viruses you get by at least 70%. It is simply a better and much safer browser. In terms of safety, Windows 7 is much more vulnerable to viruses than Vista. The statements i make are the results of months of testing and observing. I ran the browser tests on XP, Windows 7 and Vista. I used Malwarebytes, Avast and AVG too scan for viruses and Malware. With Internet Explorer the results were viruses galore. With Firefox? Nothing. Perhaps a tracking cookie. Thats it.
     
  9. sargon20

    Gold Member

    Joined:
    Mar 14, 2006
    Messages:
    11,370
    Likes Received:
    2,102
    Gender:
    Male
    Location:
    Atlantis
    One should really flee the entire Microsoft platform for greener pastures.
     
  10. Mr. Snakey

    Gold Member

    Joined:
    Apr 9, 2006
    Messages:
    24,702
    Likes Received:
    25
    In my opinion the last rock solid O.S. Microsoft released was XP Home Edition. It will be supported for many years to come, as they release a failed O.S one after the other. It's no wonder their stock is only $24 a share. Thats amazing considering the millions of computers running their software. I am in total agreement with you. Then again Apple who once made great products are making garbage too.
     
  11. B_Marius567

    B_Marius567 New Member

    Joined:
    May 30, 2004
    Messages:
    1,952
    Likes Received:
    5
    Gender:
    Male
    you get a warning trying to view a bad web site so why do you view the site?


    I am security warning pop ups that say this site is harmful to your computer but I will view it anyway.

    use Microsoft Windows Malicious Software Removal Tool
     
    #11 B_Marius567, Oct 12, 2010
    Last edited: Oct 12, 2010
  12. Nevfx

    Verified Gold Member

    Joined:
    Oct 11, 2010
    Messages:
    371
    Albums:
    12
    Likes Received:
    10
    Gender:
    Male
    Location:
    Birmingham (GB)
    Verified:
    Photo
    I was hit by this, its a nasty virus.

    I have to do a system restore in the end, lost everything on my laptop. I have been using Firefox since then... and havent had a virus since.
     
  13. b.c.

    Gold Member

    Joined:
    Nov 7, 2005
    Messages:
    9,263
    Albums:
    1
    Likes Received:
    1,669
    Gender:
    Male
    Location:
    at home
    I think the reason why Explorer and Windows based systems get hit the most is in part because the viruses/malware/adware/spyware are designed to target those programs, operatings systems, and browsers that have the greatest percentage of users. That's why before The Storm I was using ancient s*it that the viruses were even designed for.

    Just today, Microsoft itself released a whole slew of patches designed to fix flaws it knew existed in its operating system (linky-poo):

    Microsoft issues its biggest-ever security fix - Technology & science - Security - msnbc.com

    Funny thing about this particular parasite (the Fake Alert) was that I didn't even know about THE REAL Microsoft Security Essentials until I caught the fake, afterwhich I downloaded the REAL Security Essentials to help rid myself of the phony (You can get it HERE):

    http://www.microsoft.com/security_essentials/

    (and a thanks goes out to fake alert designers for the promo)

    As for my current machine, had it since late '05 and it's fairly old and quirky anyway.... been stalling on getting a new one for over a year now, but it does what I need it to do, for now. :rolleyes:
     
    #13 b.c., Oct 12, 2010
    Last edited: Oct 12, 2010
  14. Zeuhl34

    Gold Member

    Joined:
    Apr 12, 2008
    Messages:
    2,104
    Albums:
    2
    Likes Received:
    40
    Gender:
    Male
    I don't know about the OP, but I just clicked a link, and my internet closed on me without warning. When I tried to reopen it I got the bogus "warning."
     
  15. HellsKitchenmanNYC

    Gold Member

    Joined:
    Oct 31, 2005
    Messages:
    5,848
    Albums:
    1
    Likes Received:
    9
    Gender:
    Male
    Location:
    New York
    When you download the esentials it tells you to delete other virus programs. This doesn't sound like good advice.
     
  16. b.c.

    Gold Member

    Joined:
    Nov 7, 2005
    Messages:
    9,263
    Albums:
    1
    Likes Received:
    1,669
    Gender:
    Male
    Location:
    at home


    HSman didn't follow the scenario.

    Without going into all the details, I was browsing what appeared to be an ok site when the fake message popped up, and a program on my computer told me another (the "infection") was trying to gain internet access. I disabled all the connections until I sorted out the problem.



    That's because running more than one antispyware program on your computer at once (in "real-time") will cause problems. You can, however, use it with Spybot (I understand) but only if you disable "TeaTimer".

    To be on the safe side you can always uninstall the other software, run the Essentials scan, remove it, then re-install the original.


    You should be able to run an anti-virus program [er, pardon me, I've got to remove "Double-Click"... there] and one antispy/malware program with few problems. But I'd check on compatibility first. Some makers offer a "suite" consisting of complimentary programs designed to work together.
     
    #16 b.c., Oct 12, 2010
    Last edited: Oct 12, 2010
  17. HellsKitchenmanNYC

    Gold Member

    Joined:
    Oct 31, 2005
    Messages:
    5,848
    Albums:
    1
    Likes Received:
    9
    Gender:
    Male
    Location:
    New York
    INteresting. I don't ever run 2 spware programs etc at the same time. I wasn't aware that even having them on my computer at the same time would be a problem.
     
  18. Mr. Snakey

    Gold Member

    Joined:
    Apr 9, 2006
    Messages:
    24,702
    Likes Received:
    25
    Yes this is my point. If they use Firefox browser they will stop the viruses by at least 70%. Delete you browsing history (cache) every day also. Use Malwarebytes for malware and viruses. The two are free and very important if you are running Windows. If not you will need a new computer very soon.
    They are both free. Easy downloads. Easy to use.

    Firefox web browser | Faster, more secure, & customizable ...

    Malwarebytes Anti-Malware - Free software downloads and software ...
     
  19. B_Marius567

    B_Marius567 New Member

    Joined:
    May 30, 2004
    Messages:
    1,952
    Likes Received:
    5
    Gender:
    Male
    The Free copy of Malwarebytes only scans your computer when you press scan. and will not stop you from getting a virus.

    I use Webroot and does a good job and will block you from viewing a website that has a virus. and only 40.00 for two years.

    I turn my computer off as fast as can if I get a web site trying install something.

    use windows IE 9 64-bit but a lot people use ie 6 that is more then 10 years old and they womder why they get a virus
     
    #19 B_Marius567, Oct 13, 2010
    Last edited: Oct 13, 2010
  20. Mr. Snakey

    Gold Member

    Joined:
    Apr 9, 2006
    Messages:
    24,702
    Likes Received:
    25
    You have to run Malwarebytes and do a scan. Nothing complicated. In my opinion, it's the best out there for getting rid of viruses. Webroot has too many false positives and you simply can get a better program for free. Some of the programs (you pay for) can even destroy your computer. I have seen Norton destroy computers with my own eyes. Some of these programs (you pay for) infect your computer with viruses. They want your money. I have also done a clean install on on a brand new computer to see that its infected with viruses. Once you install the O.S. on some of the new computers you are infected. I have seen this in many Dell computers. The O.S. you get in a new computer is a watered down version. A knock off by the computer manufacture. It's not a white box version of Windows 7 for example. It's a cheaper version. What have they done too it? They all come with a free trial of Norton or others. Wouldn't it be a good idea slip some viruses into the O.S to make some money? Once again, if people would use Firefox instead of Internet Explorer their problems would be solved. Now the new Android phones are infected with viruses. Thanks to Google, which is the worst spyware in the world and a magnet for malware and viruses. The best thing to remember is safe surfing. Think before you click on a link. It's only going to get worse for Windows users. The hardest hit will be the Windows 7 users. It is simply a disaster in terms of safety. The Android phones are being attacked with viruses all over the world.
    Android phones infected with SMS-sending Trojan - TECH.BLORGE.com


    Android Software has been infected with 'Trojan' Virus | Chinese ...
     
Draft saved Draft deleted