Page 1 of 2

trouble with virust infection

Unread postPosted: Sun 23 Aug 2015, 16:31:39
by onlooker
Yes I am having trouble with a nasty virus that is popping up when I access a few sites including PO. the virus name is by DNSUnlocker
Any ideas of now to eliminate it would be greatly appreciated

Re: trouble with virust infection

Unread postPosted: Sun 23 Aug 2015, 17:19:29
by SeaGypsy
Big problem. Its ransomware. As far as I know it is impossible to get off without either- pay the ransom- reformatt back to factory settings (& lose your data).

Re: trouble with virust infection

Unread postPosted: Sun 23 Aug 2015, 17:44:42
by PrestonSturges
what antivirus and antimalware tools are you running now?

Re: trouble with virust infection

Unread postPosted: Sun 23 Aug 2015, 18:17:26
by onlooker
A Sea not ransomware, as I do have access to computer and no demands for ransom. Preston I am just using a simple antivirus called Windows Security Essentials.

Re: trouble with virust infection

Unread postPosted: Sun 23 Aug 2015, 18:38:17
by SeaGypsy
Sounds like ransomware. Your security maybe preventing the ransom message? DNS unlocker has been going rampant, blackmailing institutions. Everything still works, but the more you dig, the more you find the warning. Since this one came out it has been very important not to click dubious links. I'm pretty sure I have dozens of infected messages in my spam box.

Re: trouble with virust infection

Unread postPosted: Sun 23 Aug 2015, 18:48:31
by onlooker
thanks for the help guys, so far no luck, tried a few things. who the heck comes up with these nasty viruses :x

Re: trouble with virust infection

Unread postPosted: Sun 23 Aug 2015, 18:48:39
by KaiserJeep
The real deal is called "Microsoft Security Essentials", and is freely downloadable, although you must take reasonable care that you get it from a real Microsoft server, not a hacker's clone server downloading malware.

If what you are using is really called "Windows Security Essentials", then they got you already. Save whatever personal files you can, format the hard disc, and either reinstall from CDs or upgrade your hardware and operating system if it is 4 or more years old. Then reintroduce those personal files only after scanning the media with a good commercial virus checker that you paid real money for.

As for who writes the stuff, the corporate CEOs all thought it would be so clever to offshore software development to places like India, Pakistan, Sal Salvador, and other places where labor is cheap. Then they offshored software testing the same way. Common operating systems like Windows and Android now come with "trap door" vulnerabilities built in by design, in 2nd world countries, by software developers who have two jobs, the second of which is getting paid for enabling malware.

Re: trouble with virust infection

Unread postPosted: Sun 23 Aug 2015, 19:02:49
by onlooker
Wow Gary thanks for alerting me. Pretty nefarious, wonder what is the motivation for the malware are they rival companies, terrorist types, blackmailers just wondering. By the way stay safe over there in Cali, with the freakish weather happening. oh no my boo boo it is MSE

Re: trouble with virust infection

Unread postPosted: Mon 24 Aug 2015, 07:26:55
by radon1
May try setting up a trial version of a well-known anti-virus program. Then run a full virus check. This might help.

Re: trouble with virust infection

Unread postPosted: Mon 24 Aug 2015, 08:01:37
by onlooker
radon1 wrote:May try setting up a trial version of a well-known anti-virus program. Then run a full virus check. This might help.

thanks Radon for your help, I had neglected the full system check. I am doing that now.

Re: trouble with virust infection

Unread postPosted: Mon 24 Aug 2015, 09:43:03
by davep
According to google, it's not that hard to get rid of. This url uses well-known malware removal tools, so their solution is worth trying https://www.how-to-remove.com/dns-unlocker/

Re: trouble with virust infection

Unread postPosted: Mon 24 Aug 2015, 12:00:57
by Keith_McClary
KaiserJeep wrote:If what you are using is really called "Windows Security Essentials", then they got you already. Save whatever personal files you can, format the hard disc, and either reinstall from CDs or upgrade your hardware and operating system if it is 4 or more years old. Then reintroduce those personal files only after scanning the media with a good commercial virus checker that you paid real money for.
After that, use a different computer or device for surfing. Alternatively, you can boot (most) PCs into Linux from a USB stick. I have an old PC (750 MB RAM) and an old laptop (1GB RAM) (neither with hard drive) that work great running Puppy Linux with the latest Chromium. Some video formats, etc. may not be supported. You can save files to the USB stick between sessions (bookmarks automatically saved). I use the laptop when I have to connect to those icky hotel wi-fis.

Re: trouble with virust infection

Unread postPosted: Mon 24 Aug 2015, 15:20:04
by onlooker
I fix it guys, thanks again. I paid a hefty sum, but I got a technician from National Help Desk who did the technical work. Then I bought a apparently very good security anti-virus software program in Defender Pro. So my computer is now running great no pop ups or anything. By the way Keith and others you seem like real experts, I am novice so that is why I did it this way. So I guess you will have to put up with my posts still haha :lol:

Re: trouble with virust infection

Unread postPosted: Mon 24 Aug 2015, 17:53:36
by PrestonSturges
You cam also use the MalwareBytes trial version for free, and it plays well with Microsoft Security Essential. MB catches thing MSE misses. The trial version will give you an annoying popup that disappears after a couple days.

Re: trouble with virust infection

Unread postPosted: Tue 25 Aug 2015, 01:29:03
by Keith_McClary
onlooker wrote:I fix it guys, thanks again. I paid a hefty sum, but I got a technician from National Help Desk who did the technical work. Then I bought a apparently very good security anti-virus software program in Defender Pro. So my computer is now running great no pop ups or anything. By the way Keith and others you seem like real experts, I am novice so that is why I did it this way. So I guess you will have to put up with my posts still haha :lol:
Hate to sound like a Linux fanboy, I have been using it for three decades. In the early years you had to know arcane UNIX commands to get anything working, but now everything "just works". I have forgotten most of that UNIX stuff because I never need to use it.
I have never paid a dime for Linux applications, support services or antivirus, etc. I remember an "Onion" style parody about a product "Norton Crash Guard" for Windows - the joke was they were supposedly coming out with "Norton Crash Guard for Linux". :lol:

Re: trouble with virust infection

Unread postPosted: Tue 25 Aug 2015, 02:15:49
by davep
PrestonSturges wrote:You cam also use the MalwareBytes trial version for free, and it plays well with Microsoft Security Essential. MB catches thing MSE misses. The trial version will give you an annoying popup that disappears after a couple days.


I'd recommend that too. It's very good at picking up malware.

Re: trouble with virust infection

Unread postPosted: Tue 25 Aug 2015, 08:25:35
by kanon
Keith_McClary wrote:I have never paid a dime for Linux applications, support services or antivirus, etc.

I was the same for many years, but then I subscribed to Slackware, just because I decided I should contribute something to the people who put my Linux distribution together. Linux is free open source, but the programmers do need groceries. I know a lot of Linux is supported by business, since they need the server code. The lack of a good donation model for the desktop applications is probably why they are still a bit clunky. I think a small donation is plenty, since millions of $1 do add up.

Re: trouble with virust infection

Unread postPosted: Tue 25 Aug 2015, 16:54:37
by Keith_McClary
kanon wrote:I was the same for many years, but then I subscribed to Slackware, just because I decided I should contribute something to the people who put my Linux distribution together.
You make me feel guilty. :oops: I did buy this:
Image

Re: trouble with virust infection

Unread postPosted: Tue 25 Aug 2015, 19:02:28
by PrestonSturges
Keith_McClary wrote:
KaiserJeep wrote:If what you are using is really called "Windows Security Essentials", then they got you already. Save whatever personal files you can, format the hard disc, and either reinstall from CDs or upgrade your hardware and operating system if it is 4 or more years old. Then reintroduce those personal files only after scanning the media with a good commercial virus checker that you paid real money for.
After that, use a different computer or device for surfing. Alternatively, you can boot (most) PCs into Linux from a USB stick. I have an old PC (750 MB RAM) and an old laptop (1GB RAM) (neither with hard drive) that work great running Puppy Linux with the latest Chromium. Some video formats, etc. may not be supported. You can save files to the USB stick between sessions (bookmarks automatically saved). I use the laptop when I have to connect to those icky hotel wi-fis.
Also known as the porn site "fap-top" (fap-fap-fap-fap-fap).

Re: trouble with virust infection

Unread postPosted: Thu 27 Aug 2015, 11:17:09
by vox_mundi
From IBM Threat Intelligence Quarterly 3Q 2015: ...

Ransomware as a service

... Do not assume that if you are infected with encryption-based ransomware you can simply pay
the ransom and reliably get your data back. For example, ZeroLocker command-and-control servers that have not been properly configured may never have received your encryption key, so they can’t sell your data back to you. As a result, they are not only stealing your data, they can’t give it back to you even if you pay! In addition, the authorities or a competing threat group may have “taken down” the command-and-control servers between the time your machines get infected and the time you try to pay the ransom


and from the 'good guys' ...

AP sues over access to FBI records involving fake news story

The Associated Press sued the U.S. Department of Justice Thursday over the FBI's failure to provide public records related to the creation of a fake news story used to plant surveillance software on a suspect's computer. AP joined with the Reporters Committee for Freedom of the Press to file the lawsuit in U.S. District Court for the District of Columbia.

"The FBI both misappropriated the trusted name of The Associated Press and created a situation where our credibility could have been undermined on a large scale," AP General Counsel Karen Kaiser said in a 2014 letter to then-Attorney General Eric Holder.

"It is improper and inconsistent with a free press for government personnel to masquerade as The Associated Press or any other news organization," Kaiser wrote. "The FBI may have intended this false story as a trap for only one person. However, the individual could easily have reposted this story to social networks, distributing to thousands of people, under our name, what was essentially a piece of government disinformation."

AP's records request also seeks an accounting of how many times since 2000 the FBI has impersonated media organizations to deliver malicious software.