microsoft security essentials alert

Randy Reeves · From: LaCrosse, Wisconsin, USA

when I fired up my desk top computer yesterday I saw this large window on my screen. below the heading in red was a large X and the words " Potential Threat Details".
below that under detected items was " x unknown Win32/Trojan".
the alert level in the next column marked "severe".
there are three boxes at the bottom marked " clean computer", "apply actions" , "close".
I clicked clean computer and a green line raced in a box. then nothing. when I clicked apply actions a new window opened showing a list of virus removers. a few had "install" next to them.
I clicked the " close" box and nothing happens. the small x in the upper right of the large window does nothing when I click it.
I am unable to open any other thing on the comuter. can't get on line. can't open windows update. I can open the computer control panel.
Q: did I stumble on an infected web site and got attacked?
Q: is the microsoft security alert box a real thing or just part of the infecion?
Q: I am suspect of the lst of virus removers; if I click on one marked install will I be openoing the door of the trojan horse?
never experienced anything like this. before. sure could use some advice.
I haven't done much different from my normal computer browsing and uses. I did upgrade/renew my Norton the day before. Norton sent an alert saying my subscription was about to end. I believe I loaded Norton 360, if memory serves me.
what should and can I do now?

Wiz Feinberg · From: Mid-Michigan, USA

Randy;
If you have a valid working installation of Norton 360, what on Earth are you doing running Microsoft Security Essentials (MSE)? That's like owning a a well-tuned Rolls Royce, but driving around in a Volkswagen.

Try rebooting into Safe Mode With Networking (tap F8 as the PC restarts). If you can log in to an Administrator level account in Safe Mode, uninstall MSE via Control Panel > Add/Remove Programs. Then update definitions and scan for malware with Norton.

Are you certain the alert is from Microsoft Security Essentials? Did you install MSE? Be aware, that it might be a fake anti-virus program that mimics the appearance or name of Microsoft Security Essentials (not identical though). If you did not knowingly install MSE, you may have just acquired a rogue security program, due to a disabled firewall, or an unpatched browser exploit (e.g: vulnerable version of Sun/Oracle Java, Adobe Flash or Reader, Apple QuickTime, iTunes or Safari, Internet Exploder, etc).

If you are able to run programs in Safe Mode With Networking, take advantage of this window of opportunity to download Malwarebytes Anti-Malware. If you prefer, you can learn how to use the program, including some insider tricks, then download it from a link on my Malwarebytes Anti-Malware web page.

After downloading MBAM, allow the options to check for updates, then scan the computer. MBAM is specifically written to detect and remove rogue security programs. My page describes how to proceed with malware removal.
_________________
"Wiz" Feinberg, Moderator SGF Computers Forum
Security Consultant
Twitter: @Wizcrafts
Main web pages: Wiztunes Steel Guitar website | Wiz's Security Blog | My Webmaster Services | Wiz's Security Blog

Randy Reeves · From: LaCrosse, Wisconsin, USA

thanks for all the information, Wiz. I am grateful and now informed.
re:MSE and why am I running it? short answer, don't know. lame answer, " I guess it came with the computer and all was well until now.
this security alert could very well be a fake. I had a feeling, and a friend mentioned the very same as you.
I will take a thorough read at you site. if I cannot accomplish things I will take it to a local
"mini wiz".

Wiz Feinberg · From: Mid-Michigan, USA

See if you can run a scan with Norton 360. Then, try installing MBAM, as I described. If you can scan with these tools, you may be able to save some big money.

PS: I am looking into an online remote troubleshooting system. It will allow me to take control of your set. I would control the horizontal. I would control the vertical .....

Seriously, if it comes down to taking it to a shop, contact me first about pricing.
_________________
"Wiz" Feinberg, Moderator SGF Computers Forum
Security Consultant
Twitter: @Wizcrafts
Main web pages: Wiztunes Steel Guitar website | Wiz's Security Blog | My Webmaster Services | Wiz's Security Blog

Robert Mayo · From: Georgia, USA

I use Kapersky internet and computer security, has a built in virtual keypad as well, I run a small online guitar site (store)and get pics,emails ,bank transfers from all over the world, has not failed me yet.I learned a longgggg time ago NEVER scan or download ANY security alert. Shut down immediately these are usually scams and once opened they render your computer useless.
_________________
Greg's Guitars at http://www.gregsguitars.net or
http://www.gbase.com/stores/gregs-guitars/inventory
greg@gregsguitars.net

Randy Reeves · From: LaCrosse, Wisconsin, USA

I will probably take you up on the long distance computer connection. I won't have time to work on the problem for the next few days. by sunday I will. the house painting will be done.
I need time to digest the information on your site.
thanks for all the replies.

HowardR · From: N.Y.C.-Fire Island-Asheville

HowardR · From: N.Y.C.-Fire Island-Asheville

Ok....I just updated MBAM(last update was 04/10) & initiated a full can....already I see viruses....so I'll remove them...

How do I set MBAM to automatically update?

Randy Reeves · From: LaCrosse, Wisconsin, USA

Howard R. , wow. the same virus attack ! it sure is annoying and potentially fatal.
Wiz helped me out. I now have malware assistance.
to remove that attack I had to work in safe mode. using norton and malware I am all good now.
to fully understand the ins and outs of malware go to Wiz's web site.
glad you did not fall for the attack. the page sure looked real; hey?

Wiz Feinberg · From: Mid-Michigan, USA

Forum Index > Computers		Next oldest topic :: Next newest topic

All times are GMT - 8 Hours	Jump to: