• All Community
    • All Community
    • Forums
    • Ideas
    • Blogs
Advanced

Not what you are looking for? Ask the experts!

This forum thread needs a solution.
Kudos0

OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?

 WIN XP, SP2/ I.E. 6x  outlook exp. 6 NISS 2009

 

Hello - this a.m. booted up my computer (turn it off during the nite when i finish)  did a manualupdate then  quick scan - all o.k. ...while at a web page suddenly saw a 'microsoft' popup stating i have many trojan infections with lots of  'red' shields showing ...i was so startled that i didn't take the time to read anything or see if there were 'instructions - i just immediately did a shutdown/-( i did not click on anything within that popup..not even to 'close it out'')

                    rebooted did a full scan - nothing showing as problems so i  restarted computer and here i am ... are there 'fake' popups appearing to be from microsoft but not actually from the company?   and if there was an infection/trojans, etc. wouldn't the identifying company be Norton instead of Microsoft ?

                this is the first time i've ever experienced anything like this .... thanks in advance - Edythe

Message Edited by EDYTHE on 09-12-2009 08:53 AM

Replies

Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?

 WIN XP, SP2/ I.E. 6x  outlook exp. 6 NISS 2009

 

Hello - this a.m. booted up my computer (turn it off during the nite when i finish)  did a manualupdate then  quick scan - all o.k. ...while at a web page suddenly saw a 'microsoft' popup stating i have many trojan infections with lots of  'red' shields showing ...i was so startled that i didn't take the time to read anything or see if there were 'instructions - i just immediately did a shutdown/-( i did not click on anything within that popup..not even to 'close it out'')

                    rebooted did a full scan - nothing showing as problems so i  restarted computer and here i am ... are there 'fake' popups appearing to be from microsoft but not actually from the company?   and if there was an infection/trojans, etc. wouldn't the identifying company be Norton instead of Microsoft ?

                this is the first time i've ever experienced anything like this .... thanks in advance - Edythe

Message Edited by EDYTHE on 09-12-2009 08:53 AM
Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?

Hi Edythe,

That pop-up sounds a lot like a potentially malicious pop-up, which, when you click on it, will install malware on your computer or attempt to hijack your browser and take you to a website which will try to convince you to buy some rogue antivirus software (malware in disguise).

Do you remember which webpage/what kind of webpage it was (please do NOT put the URL over here even if you know it, since links leading to potentially dangerous websites are forbidden over here for obvious reasons)?

You did very well not to click on the pop-up you encountered.

You may also want to check out this excellent thread on scareware, malicious pop-ups and how to react correctly to them:

http://community.norton.com/norton/board/message?board.id=nis_feedback&thread.id=70586

If you ran a full scan with NIS 2009 with clean results, then you should be fine. If you still feel uneasy, you can download and install Malware Bytes (only the free version! Another real-time program on your machine can cause conflicts and make your computer vulnerable) from here.

I would like to add that no serious security software company would advertise their products in the shape of aggressive pop-ups. 

Message Edited by Yaso_Kuuhl on 09-12-2009 03:04 PM
Your Norton Ladybug.
Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?


Yaso_Kuuhl wrote:

Hi Edythe,

That pop-up sounds a lot like a potentially malicious pop-up, which, when you click on it, will install malware on your computer or attempt to hijack your browser and take you to a website which will try to convince you to buy some rogue antivirus software (malware in disguise). fortunately i read these boards and remember seeing something about this, so i ''knew' not to click on 'anything' , even the 'x' to close- out the warning !!!

Do you remember which webpage/what kind of webpage it was (please do NOT put the URL over here even if you know it, since links leading to potentially dangerous websites are forbidden over here for obvious reasons)? oh of course not - i think i was at a newspaper site - i also cleared my history/etc...don't fully remember but pretty sure it was a 'newspaper' site i frequently visit

You did very well not to click on the pop-up you encountered.  It was definitly showing itself as ''Microsoft''  with many red shields lined up side by side,including the number of 'trojans' infected - many many  really startled me !

You may also want to check out this excellent thread on scareware, malicious pop-ups and how to react correctly to them:  yes yes yes will read this !  thanks so much ...maybe this link is what i previously read and 'why' i knew what NOT to do !

http://community.norton.com/norton/board/message?board.id=nis_feedback&thread.id=70586

If you ran a full scan with NIS 2009 with clean results, then you should be fine. o.k. and so far so good as i type here  If you still feel uneasy, you can download and install Malware Bytes (only the free version! Another real-time program on your machine can cause conflicts and make your computer vulnerable) from here.  are you saying if i download the Malware Bytes program that 'it' is a real-time and could cause problems even while 'helping? and that if i'm o.k. , don't proceed with the download?    thanks sooo much for your input !!!


Message Edited by Yaso_Kuuhl on 09-12-2009 03:00 PM
Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?


EDYTHE wrote:

 are you saying if i download the Malware Bytes program that 'it' is a real-time and could cause problems even while 'helping? and that if i'm o.k. , don't proceed with the download?    thanks sooo much for your input !!!


Hi Edythe,

No, you misunderstood me ;-) I was trying to say: if you decide to download and install Malware Bytes, please install the free version. The free version is NOT a real-time program; it is an on-demand scanner. This simply means that it will only scan when you activate it; otherwise, it does not run. Now NIS 2009 runs all the time (unless you deactivate it - which, obviously, is not at all recommended). 

If you had the full i.e. NOT free version of Malware Bytes, or any other security program which runs in real-time mode, in combination with NIS 2009 in your computer, then you would encounter conflicts, and your machine would be more vulnerable to attacks. 

I hope this explanation helped :-)

As for the pop-up with red shields telling you that your computer has got trojans - this sounds like a typical scareware pop-up to me which would try to install something nasty on your machine if you clicked it. As I said before, no professional security software company in their right mind would advertise their products in such an invasive manner. 

Also, since your NIS 2009 scan came up clean, I don't think it is necessary to download Malware Bytes - only do so if you are still feeling uneasy. I think that you should be just fine since you avoided interacting with that pop-up and reacted very promptly :-)

Message Edited by Yaso_Kuuhl on 09-12-2009 03:23 PM
Your Norton Ladybug.
Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?


Yaso_Kuuhl wrote:

EDYTHE wrote:

 are you saying if i download the Malware Bytes program that 'it' is a real-time and could cause problems even while 'helping? and that if i'm o.k. , don't proceed with the download?    thanks sooo much for your input !!!


Hi Edythe,

No, you misunderstood me ;-) I was trying to say: if you decide to download and install Malware Bytes, please install the free version. The free version is NOT a real-time program; it is an on-demand scanner. This simply means that it will only scan when you activate it; otherwise, it does not run. Now NIS 2009 runs all the time (unless you deactivate it - which, obviously, is not at all recommended). 

If you had the full i.e. NOT free version of Malware Bytes, or any other security program which runs in real-time mode, in combination with NIS 2009 in your computer, then you would encounter conflicts, and your machine would be more vulnerable to attacks. 

I hope this explanation helped :-)    oh yes now i get it - since all is o.k. for now do you think i should still go ahead with the 'free' version or just let it go ?   did read the post you sent and yes that was the one i had previously (thankfully) read way before this happened to me this morning !!!   i have NISS set to all protections recommended.. only thing i changed per a post on this board  i read was having ::  (is this o.k.?) many thanks !!!

  • Limit Data Extration: Off
  • Advanced Heuristic Protection: Automatic
  • Early Load: On
  •  


Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?

Everything sounds fine to me, Edythe. Don't worry :-) You did the right thing and avoided that pop-up like the plague :-D Though I recommend simply shutting down the browser via Task Manager rather than shutting down your computer so suddenly. 

What I did when I encountered a similar pop-up like yours some time ago was call up Task Manager via ctrl+alt+ delete, and in the box which appeared (under "Applications"), end the browser by clicking on "End Task". I also physically disconnected from the internet by pulling out the internet cable. You can read more in the link I included in my first reply to your questions. 

I fully understand your reaction to your pop-up; that is why such pop-ups are called scareware, they aim to scare the person into stepping into the trap - which you didn't do :-)

Message Edited by Yaso_Kuuhl on 09-12-2009 03:33 PM
Your Norton Ladybug.
Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?


Yaso_Kuuhl wrote:

Everything sounds fine to me, Edythe. Don't worry :-) that's a relief ! You did the right thing and avoided that pop-up like the plague :-D Though I recommend simply shutting down the browser via Task Manager rather than shutting down your computer so suddenly. o.k. didn't know that was sufficient

What I did when I encountered a similar pop-up like yours some time ago was call up Task Manager via ctrl+alt+ delete, and in the box which appeared (under "Applications"), end the browser by clicking on "End Task".  o.k.I also physically disconnected from the internet by pulling out the internet cable.  You can read more in the link I included in my first reply to your questions.  opps didn't read that 'link' ...just the one with info about the popup and what to do -sorry ..

I fully understand your reaction to your pop-up; that is why such pop-ups are called scareware, they aim to scare the person into stepping into the trap - which you didn't do :-)  i'm a tough old-bird !  LOL  will now go and read your link on how to 'pull' the computer cable - not sure how to do that ..thanks again !!

Message Edited by Yaso_Kuuhl on 09-12-2009 03:33 PM
Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?


EDYTHE wrote:
You can read more in the link I included in my first reply to your questions.  opps didn't read that 'link' ...just the one with info about the popup and what to do -sorry ..

Yes, that's the same link ;-) I am indicating it over here again:

http://community.norton.com/norton/board/message?board.id=nis_feedback&thread.id=70586

Always glad to help if I have the info available ;-D

Message Edited by Yaso_Kuuhl on 09-12-2009 03:41 PM
Your Norton Ladybug.
Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?


Yaso_Kuuhl wrote:

EDYTHE wrote:
You can read more in the link I included in my first reply to your questions.  opps didn't read that 'link' ...just the one with info about the popup and what to do -sorry ..

Yes, that's the same link ;-) I am indicating it over here again:

http://community.norton.com/norton/board/message?board.id=nis_feedback&thread.id=70586

Always glad to help if I have the info available ;-D  I'm sorry for being so 'dense' but i looked at the link and couldn't find out how to 'pull the computer' ???  you mean 'physically' pullinga cable from something - on the back of my tower connection?   thanks ! 

Message Edited by Yaso_Kuuhl on 09-12-2009 03:41 PM
Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?


EDYTHE wrote:
 I'm sorry for being so 'dense' but i looked at the link and couldn't find out how to 'pull the computer' ???  you mean 'physically' pullinga cable from something - on the back of my tower connection?   thanks ! 

You are not being at all dense, Edythe, we all learn by asking ;-))) Yes, I pulled the internet cable out of the internet port - had to scramble underneath the table for that and banged my head, but I felt it was worth it for the sake of computer security, and, by extension, my own security ;-D If you go to the link again and read delphinium's post, you'll see that delph says:

I have found that the best way to stop something is to pull the connection to the internet first. 

That means: disconnect physically from the internet by pulling out the cable ;-D

Message Edited by Yaso_Kuuhl on 09-12-2009 04:46 PM
Your Norton Ladybug.
Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?


Yaso_Kuuhl wrote:

I have found that the best way to stop something is to pull the connection to the internet first. 


Zone Alarm use to have a button to immediately block all internet activity. I haven't used ZA in some time, but I assume it still does. It would be nice if NIS were to add something similar.

Message Edited by Brubaker on 09-12-2009 10:18 AM
Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?

Zone Alarm use to have a button to immediately block all internet activity. I haven't used ZA in some time, but I assume it still does. It would be nice if NIS were to add something similar.

Message Edited by Brubaker on 09-12-2009 10:18 AM

Or if you use Firefox, you can install NoScript :-)

Your Norton Ladybug.
Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?


Yaso_Kuuhl wrote:

EDYTHE wrote:
 I'm sorry for being so 'dense' but i looked at the link and couldn't find out how to 'pull the computer' ???  you mean 'physically' pullinga cable from something - on the back of my tower connection?   thanks ! 

You are not being at all dense, Edythe, you learn by asking ;-))) Yes, I pulled the internet cable out of the internet port - had to scramble underneath the table for that and banged my head, but I felt it was worth it for the sake of computer security, and, by extension, my own security ;-D If you go to the link again and read delphinium's post, you'll see that delph says:

I have found that the best way to stop something is to pull the connection to the internet first. 

That means: disconnect physically from the internet by pulling out the cable ;-D O.K. now you will really laugh ..haven't a clue how to find 'where' the internet cable plugs into my tower !!!  and 'if' i find it, at what point do i yank it out and how long do i leave it disconnected?   Edythe (thanks!)

Message Edited by Yaso_Kuuhl on 09-12-2009 04:08 PM
Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?


EDYTHE wrote:

That means: disconnect physically from the internet by pulling out the cable ;-D O.K. now you will really laugh ..haven't a clue how to find 'where' the internet cable plugs into my tower !!!  and 'if' i find it, at what point do i yank it out and how long do i leave it disconnected?   Edythe (thanks!)



I simply disconnected my Ethernet wire right after seeing the pop-up, and once I had closed the browser via Task Manager and run a full scan with Norton, I plugged the cable back in again. However, the most important thing is that you shut down your browser. The internet cable connects your computer to the phone lines/Ethernet port. The port on your computer should be located at the back of your tower. As I said before - shutting down your browser immediately is the crucial action to take when you encounter such a pop-up.

PS: Kindly only mark the thread solved once ALL your questions have been answered ;-))

Message Edited by Yaso_Kuuhl on 09-12-2009 05:45 PM
Your Norton Ladybug.
Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?

I do not wish to step on anyone's toes here but maybe "pulling" the internet cable or "yanking" it are not the correct terms to use with someone who is learning.

Possibly "remove" would be a better term. Yanking or simply pulling might break off the tab on the Ethernet connection.

If there is a router involved then removing the Ethernet cable from that might be the easiest way as most are sitting on the desktop and you would not have to move the tower. ( unless it's a dial up phone line but there is still a tab involved)

Remember you have to squeeze the tab on the connector to remove it correct?

Like I said I'm not trying to interfere in any way, only trying to help. The advice on this forum has helped me tremendously.

Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?


chatham wrote:

Possibly "remove" would be a better term. Yanking or simply pulling might break off the tab on the Ethernet connection.


Hi chatham,

Thanks for pointing that out to me ;-))))))) Obviously, I didn't mean "pulling" or "yanking" out the cable literally; as you said, I was thinking of "removing" the wire in the sense of pressing that plastic tab and then drawing out the wire (that tab which clicks and "locks" the head of the wire when pushing it into the port)  ;-))))) 

Your Norton Ladybug.
Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?


Brubaker wrote:

Zone Alarm use to have a button to immediately block all internet activity. I haven't used ZA in some time, but I assume it still does. It would be nice if NIS were to add something similar.


NIS does have such a feature but unfortunately in NIS 2009 the button is buried in the settings tabs and cannot be quickly accessed, and cannot be accessed at all from a limited user account.   It is supposed to be more accessible in NIS 2010, but I have not installed the new version yet so I can't verify this.

Kudos0

Re: OH MY GOSH !!! REC'D 'VIRUS/TROJAN' WARNINGS -ARE THEY 'REAL' ?


SendOfJive wrote:

NIS does have such a feature but unfortunately in NIS 2009 the button is buried in the settings tabs and cannot be quickly accessed, and cannot be accessed at all from a limited user account.   It is supposed to be more accessible in NIS 2010, but I have not installed the new version yet so I can't verify this.


Interesting point. Thanks. I had not seen it in NIS 2009 but I just checked in NIS 2010. It takes three clicks to "Block All Network Traffic." That's not bad. I haven't tested it yet but I assume that it does just what it says.

This thread is closed from further comment. Please visit the forum to start a new thread.