Virus

How To Get Rid of Scamware

In the past year, it’s not uncommon to see a message similar to the above plasters on your PC screen. Scam artists have long tried to evade the myriad of anti-virus and anti-malware software and this is one that slips through.

The following steps will remove this type of scams in majority of the cases.  Otherwise, your computer would need more in-depth cleansing. The idea is to cleanse all your web browsers as well as identifying and removing any modifications to your computer registry settings.

Here are steps to cleanse each of your web browsers:

  • Download the three free programs onto a flash drive using a separate PC if you can:
    1. CCleaner – www.piriform.com 
    2. Malwarebytes – www.malwarebytes.com
    3. Zemana – www.zemana.com
    4. Remove the flash drive and insert into the infected PC.
  • Cleanse Your Browsers’ temporary files, cache and cookies
    1. Install CCleaner
    2. CCleaner will start after installation.
    3. Make sure you close all your web browsers
    4. Click “Run Cleaner”
    5. Click “OK”
    6. CCleaner will run for a while.
    7. After it finishes, “X” out the application.
  • Scan for malware
    1. Install Malwarebytes
    2. Application will start after installation.
    3. Click “Scan Now”
    4. It may take up to 30 minutes depends on your system
    5. “Remove” or “Quarantine” all found abnormalities.
    6. Restart your computer.
  • Scan for registry and browser hijack devices
    1. Install Zemana
    2. Application will start after installation 
    3. Click “Scan”
    4. Program will scan and when it finishes scanning, click “Next” to quarantine all found traces of suspicious entries.
    5. “X” out of the program
  • Restart your computer.

Use your computer to see if the problem has gone away.  If it has, congratulations!  If not, we have to perform additional steps to remove the pest.

At this point, you have 3 free programs installed and they will remind you to purchase their software.  If you want to remove them, go to “Control Panel”, “Programs and Features” to uninstall them.

Good luck.

Computer Worm Log Entry# 4 – WannaCry

Worm #4:  The message “Oops, your important files are encrypted.” or “Hello, dear friend! All you files have been ENCRYPTED.” displays on your screen and a ransom is demanded.

Visiting Geeks: These are classified as ransomware. Some computers at the City of Atlanta, Baltimore’s 911 system and Boeing were all attacked recently with a crypto-virus derived from a vulnerability uncovered by the NSA.  This type of malware is classified as a WORM.  Once a computer is infected, this WORM will seek out other computers on the same local network and try to infect them as well.  Phishing is the typical way of gaining entry.  Data is encrypted and cannot be recovered unless ransom is paid. To protect your computer, be vigilant on incoming emails, apply latest Microsoft security updates as well as having a real-time anti-virus protection, plus a off-site/cloud backup for your data.