Oh no -- major malware attack

Hi Doug, sorry to hear about your prevails.
My uncle had something similar just days ago. He knows next to nothing about computers but I was able to help him by simply rolling back his system to the restore point one day before his troubles happened. Have you tried that yet?
If you have system restore turned off you can also wait for the next monthly update of malicious software removal tool from MS. That little program has helped me a couple of times, and on this issue MS is actually quite fast to include newer threats.

All the best, Kim

I had a close call just the other day, but the results would have been much worse. Being a consultant, I’m always looking for web projects, whether simple or complex. I responded to a request on Craigslist (looked legitimate). I didn’t hear back from anyone for about a week. Then I got a response email saying that they were interested and to please fill out an application online.

Kind of unusual, since I always attach my resume and it has all the info in it. But it’s not by any means rare. So I went to their website. It was a “resume submission service”, unusual again, but still not rare. Some companies use these services because it is easier than building it in their own websites. So I began filling it out, and saw that it asked for a little too much info, and all fields were required. This made me suspicious and I stepped through the different sections. Sure enough the last page said to include my banking details so they could set up “direct deposit”. So I stopped in my tracks, erased the little non-dangerous info that I had already put in, and went to the home website of this “resume submission service”. The page looked like a legit home page, but none of the links went anywhere.

So I looked up the whois information for the website, and sent it and the email that I had received to a company that investigates online fraud, ID theft and phishing.

As Doug says. This kind of stuff affects me in a very potent way. If I even met these people, I’m pretty sure I would act out of character… meaning things like inflicting horrendous and tortuous violence upon who ever is responsible. :smiling_imp:

I DO have off-line backup in case total devastation occurs. Since this was just malware, I wouldn’t think it necessary to go to that length.

In 15 years or so of being on the Internet, this is actually the FIRST problem I’ve ever had (other than the Worm that hit everyone in the world about 7 years ago). I dion’t even have anti-virus software (although I do have Adaware). Apparently I need to rethink that.

System seems to be running okay now. My streaming problem was actually due to Safe Mode resetting my soundcard sample rate to its default 48khz.

Regarding “retribution”: I’ve said for many years now, 95% of us in the world are basically decent folks that, despite deep disagreements about various things, have goodwill and aren’t out to harm anyone else. It’s the 5% that RUIN it for the rest of us. I don’t know why society tolerates them, frankly. I’m not talking about people that suffer from addictions, or people that make mistakes, or disagreeable chaps, or even people that are forced to steal to feed their family. I’m talking about the motherf-ckers who for whatever reason feel compelled to hurt, defraud, and kill others for their own pleasure, greed, or advancement. If we would simply liquidate them, the world would be so much nicer to live in.

+1

and it irritates me to no end. All they’re good for is contaminating the gene pool. All my thoughts from now on will be so abominable, alarming, appalling, atrocious, awful, bad, beastly, creepy, dire, distressing, fearful, formidable, frightful, frozen, ghastly, godawful, grievous, grim, grody, gross, hideous, horrendous, horrific, humorous, icky, lousy, mean, monstrous, rotten, shameful, shocking, shuddersome, spooky, terrible, terrific, tragic, tremendous and even wicked because what needs to be done with these people is …
[invisible]

[/invisible]
… and that’s my final word!!! :imp:

Hi Doug

which OS are you using?

try this as an admin (worst case make a new admin user)…

  • Save your Data to an external drive
  • Make an image of the drive (or drives) if possible
  • Someone already mentioned the microsoft Windows Malicious Software Removal Tool (KB890830) - its ok
  • If you dont have a virus checker I would try a free one… either Microsoft Security Essentials, avira personal ed. or f-secure (30 Day) or avast… the last 3 are IMHO a bit more effective than MSE… - Scan your System
  • The other way is you buy a full suite like Norton 360… but its not free
  • See that your computer is up to date (windows Updates)

Worst case, if you cant get rid of the whatever is causing the trouble, you might have to re-install the computer.

Hope you can get it up and running again.

Regards
Ian

+1

And my thoughts are antisocial, bestial, calamitous, deadly, emphatic, furious, grinding, hellish, inclement, jock-strap-jellifying, kombative, lambasting, mauling, ninja-like, oafish, petulant, quoshing, ragamuffinesque, shirty, testy, uproarious, vehement, warlike, x-rated, yobbish and zealous …

… because what needs to be done is - severe.

Good post – I like any post that makes numerous allusions to various sci-fi classics

umMM… like that’s any different from the present???

:laughing:

I’ve had this same attack twice before and its managable. Best advice has been given: get Malwarebytes.

YOU DON"T HAVE TO REFORMAT or REINSTALL.

When this kind of take over attack happens ,best to get to a second computer and look up the attacker; in this case the bogus Virus Program. Someone ,somewhere has already had the same attack and you can always find manaual removal instructions. The last version of this I saw was Supr Anti Virus 2010. When you’re infected it takes over and disables your protecting programs as well as email and IE.

+1 for Malware bytes. I would bet a lot of money it’s not off your system if you didn’t use Malwarebytes.

I’ve never used Malwarebytes before… Maybe I’ll check that one out. I keep hearing about it. (Not only here but in other places as well). What I currently use I have used for years and never had a problem. But then again, rare to nil is the case when I visit anything risky. I think the riskiest thing I do now on the computer is visit free plugin download sites and anime video’s (yes I’m a closet anime freak). :stuck_out_tongue: :sunglasses:

I know the received wisdom is “don’t run anti-virus software on a DAW” but I think that applies to Norton or MacAfee - programs that seem to take over the PC, slow it down and take up a huge slice of resources. For years I used Avast and Spywareblaster for 100% protection, never had a problem. When Avast included Malware detection and prevention I ditched Spywareblaster and downloaded MalwareBytes so that I could run the occasional check.

I am a PC Support specialist and spend a lot of time persuading people to ditch their expensive “Internet Safety Software” (can’t mention any big names) which isn’t difficult as by then I’ve demonstrated the presence of spyware/viruses which their expensive product didn’t stop from getting on their system. I install Avast and teach them to run MalwareBytes every month. I know I’m not going to get called out again - at least not for malware/virus infection.

Avast does NOT interfere with Cubase 6 64-bit running on Windows 7 64-bit and neither did it affect Cubase 5 32-bit on XP. However my wireless USB does, I always have to remove the dongle before a session.

I run Norton AV 2010 on my DAW. Run’s all the time and I have zero problems with it. I also leave the studio DAW constantly on the home network too (wired connection). Both are supposed no-no’s but I have no problems with either. I do have full system backups that I regularly update.

I’m careful about what sites I use etc…and have seen the thing that twilight ran into that prompted this thread. Any internet site that says “malware etc…found on your PC”…I say, yeah right…you’re trying to put some on it. Or “perform a free evaluation of your PC’s performance or exposure to viruses etc…” same thing.