Pensacola Computer Help Technoblog

There is a virus/malware computer scam going around that we have seen already on a number of computers here in Pensacola, FL called the FBI MoneyPak Rasomware aka the Reveton Trojan. This little nasty locks up your computer and programs and tells you that you are guilty of either download illegal copywrited material or porn and that you could be fined and or go to jail. It then tells you that your computer is locked until you follow the instructions and pay $100 or $200 dollars via MoneyPak. The page that is show with the warning may also have the ability to activate your webcam which scares people even more into thinking this is legit – it is NOT legit!!!

The warning also tells you your ISP, which is easy enough to do from any webpage, which is what the warning actually is.

Thankfully, the guys over at bleepingcomputer.com have a guide to help remove this particular nasty – http://www.bleepingcomputer.com/virus-removal/remove-fbi-monkeypak-ransomware  - just be careful in doing so as using any of these tools can cause issues if not used properly. If you have any questions, or prefer to have someone else help you remove this, head over to http://pensacolacomputers.com and give us a call.

Unfortunately, in my job I see a lot of computers that have gotten a virus or malware and need to be fixed (and not just PC’s but Mac’s as well lately). While some infections are due to lack of adequate protection – up-to-date antivirus and antimalware/antispyware software, others are due to people falling prey to social engineered malware (fake links on facebook etc), or people accidentally clicking on things, or one of the ones I really dislike – a virus coming in through one of the mass forwarded emails.

It is a misconception that just because you have antivirus/antimalware software that it will protect you 100% – even the best software is hard pressed to protect a computer when someone allows something to come in by clicking ok, yes, or installing questionable software or downloading questionable files (yes, all of the people using limewire, frostwire, or torrent software – you all are at risk every time you download a shared file!). Many times a virus or malware will get onto a computer because someone has installed some ‘toolbar’, ‘searchbar’, screen-saver, coupon printer, rebate searcher, or other such program like those worthless ‘speed up my computer’ programs that are either badly written or are actually malicious and downloads other bad software behind the scenes. **Special note: Almost ALL of the speed up my PC programs are basically worthless and can often do much more damage to your computer than good. Anything that messes with the Windows Registry can damage your Windows installation if it remove the wrong things, and many of them do that!

So what can you do to better protect yourself and your computer from these nasties? Here is a short list of things that I always recommend following to eliminate the most common ways that a computer can get a virus, malware or spyware.

1. Never click on links from social networks such as facebook, or links in emails – regardless of what a link says it is, it can easily be made to hide something else. What you can do is right click on the link, select ‘copy shortcut’ then paste that into the address bar of your browser to see what it really is (or if you have the status bar in your browser enabled, you can often see it there) – if you don’t recognize the link or it looks suspicious – DON’T GO THERE!

2. Never open email attachments unless you specifically know that the specific person who sent you that specific email was sending you that specific attachement – too often people will get an email from a friend or family member that has an attachment and that attachment is a virus that a virus on their computer sent without them even knowing about it. If you don’t know what it is, and weren’t expecting it – DON’T OPEN IT!

3. Don’t download songs, software, videos etc from file sharing networks – when you use software such as Limewire, Frostwire, Vuze, or other torrent or file sharing software to download things you always take a big risk because you have no way of knowing where exactly the files are coming from, or if they have been altered – even a song can hide a virus or malware within it and it won’t activate until you play it. Also the majority of software ‘cracks’ or ‘activators’ have malicious viruses in them. Not to mention that downloading copywrited material is also illegal

4: Keep your antivirus and antimalware/antispyware software as well as your operating system software up to date! It is always important to update your system regularly as the software updates often carry fixes for security issues that have been found and without them you are much more vulnerable. Also update your OS to the latest version (yes, if you are still running Windows XP you might have to get a new computer, but XP is 11 years old and was never designed to handle today’s internet).

5: Beware programs like coupon printers, rebate searches, search toolbars, browser add-on’s, screen savers, and especially the fix all or speed up pc programs. Many times these programs are either malicous themselves or are so poorly coded that they make it much easier for bad things to get onto your computer – IF IT ISN’T FROM A TRUSTED SOURCE – DON’T INSTALL IT!

If your computer does get a virus, try to remove it with your antivirus/antimalware/antispyware software, or you can try to do a Windows system restore to a time before you got the virus (as opposed to a full computer factory restore which will wipe all your data).

Got a virus or malware and not sure what to do? If you run into something particularly nasty or need some advice on how to get rid of something, or just need great computer service or computer repair, visit http://pensacolacomputers.com and give us a call.

Microsoft has just released Security Essentials 2.0 (MSE 2.0), which includes a number of enhanced features. In this latest version there is a updated and reportedly much better hueristic scanning engine for viruses and malware (heuristics look for virus/malware like behavior on your computer). Also included is improved integration with Windows Firewall, and new network traffic inspection.  The firewall enhancements are only available to those running Vista or Windows 7 as Windows XP does not have the needed platform to run (if you are still on XP, it is really time to seriously consider upgrading as XP is now 10 years old and was never designed for today’s internet or programs).

Microsoft Security Essentials integrates with Internet Explorer to protect your machine from Web threats like malicous scripts. With the increasing number of viruses and malware spreading to all computers from social networking sites like Facebook, and the constant email bombardment, it is imperative to make sure that you have active and updated anti-virus and antispyware/antimalware software on our computer  (yes, even Macs and Linux machines are now getting infected with viruses and malware).

The best part of Microsoft Security Essentials is that it is free for home users as well as being free for small businesses with 10 PC’s or fewer. While only time will tell how effetive this latest version is, I would certainly recommend using it in place of software like Nortons or Mcaffee (both of which are often first targets for virus and malware writers).

You can download Microsoft Security Essentials free directly from Microsoft here: http://www.microsoft.com/security_essentials/
*Note: Microsoft Security Essentials, like most antivirus software cannot be installed with other antivirus software as well as some other security software, so make sure to remove other security software before installing it.

For links to other free security software or help with Malware, Spyware and Virus removal, visit Pensacola Computers Tech Support page

Security software manufacturer BitDefender today released some very interesting statistics which it has garnered from its Facebook Safego app which allows users to check their vulnerability to malware that they are exposed to via Facebook. The scary results show that 20 percent of Facebook users are exposed to malicous posts in their ‘news feeds’. These users are at risk just by clicking on one of these posts which have been highjacked maliciously. The scary part, is that the sampling that was gotten in these statistics come from people who were at least security conscious enough to install this app in the first place which means that these numbers could in fact be much higher in reality.

A breakdown of how these malicious malware items can get into your computer:

• over 60 percent of attacks come from notifications from malicous third party apps: those apps that you install without usually reading or understanding exactly what they do.
• In the subset of apps, 21.5 percent of the total malware found came from Facebook apps come from those apps that people think can get around common Facebook functions, ie: seeing who has viewed your profile, or seeing who has unfriended you.
• 15.4 percent use things like offering free items in Farmville or other popular games
• 11.2 percent offer Facebook enhancements like dislike buttons or backgrounds
• 7.1 percent tempt users with offers of new versions of popular games like WOW
• 5.4 percent want to give you a free cell phone
• 1.3 percent sucker people by offering a way to watch new movies online for free
• An additional 16 percent of the malware is spread through links to watch videos like the one where an anaconda coughs up a hippo (yeah that would be cool to watch, but seriously)

For those who think they are safe because they have a Mac, guess again, you are actually probably more at risk on Facebook through viruses like the latest Koobface variant that is multi-platform due to most Mac users not having adequate anti-virus/anti-malware software (and the inherent flaws already known in Mac security).

Remember, just because a post ‘appears’ to come from a friend, doesn’t mean it does – many people get their accounts hijacked every day, either through malware on their own systems, or just plain easy to guess passwords. Always be carefull clicking links, never EVER download software that comes through a link on Facebook, and be very careful installing any Facebook app.

If you are interested in the Safego app from BitDefender, you can find it here: Safego Facebook App

If you are in Pensacola and worried about virus/malware infection or think you have gotten a Computer virus or have Malware on your computer, visit Pensacola Computers at http://pensacolacomputers.com and check out the Tech Support page there for links to the best free and paid for Antivirus and Antimalware software.

So many people come to me with problems on their computers, from viruses, to lurking malware that steals their passwords and slows down their systems. The funny thing is that many of these same people also tell me that they only use their computer for general web surfing, email, and …….. Facebook. Of course Facebook has become the most popular social networking site on the internet in the past year, but with this popularity comes problems – wherever there are lots of people, their arise opportunities for nefarious types and criminal activity. Unfortunately, Facebook provides these people with the perfect platform to spread their Trojans, Keyloggers, fake antivirus scareware, and general malware crap that will make your PC very sick.

But how do they do it? Well, they take advantage of people by using their friends to help spread their nasty things. All it takes is one friend getting their account hacked (either by using a simple password, or by getting a virus/malware infection themselves), and then the nasties usually get sent out as links to all this persons friends and family. Of course when you get a link from Aunt Martha that says to check out the latest Family video, or from your best friend telling you that you just HAVE to check out this sale they found, you of course trust it, and click on it and BAM! All of a sudden you have pop-ups, or something is telling you your computer is infected, or you suddenly go to search for something and end up on some site that has nothing to do with what you typed in.

So what do you do? The best thing to do is to NEVER click on the links in the first place, at least not from Facebook. If by chance you have clicked on one of these bad links and your computer gets infected, first step is to try a system restore (this is often the best chance to stop the virus/malware before it gets out of control). If system restore appears to work, just remember to update your anti-virus and anti-malware software and do full scans to get rid of any traces. If system restore doesn’t appear to work, you should then try going into safe-mode (press F8 key repeatedly at start-up), and then update and run your anti-virus/anti-spyware programs.

Sometimes, infections can get pretty nasty – especially if they have been allowed to invite their friends to your computer over a period of time. When this happens, and you can no longer get on the internet, or even get to your desktop, you may need more advanced help. Visit Pensacola Computers for immediate computer service (yes, it’s a shameless plug, but it’s my blog and I really can help when your computer is FUBAR’d)

Most people who have watched TV or listened to the radio have heard the ads touting the amazing incredible website that will help fix everything wrong with your computer and help your slow system to immediately speed up and run like it was brand new – well all I can say, is beware! I have had the unfortunate users of such software come to me with computers that wouldn’t boot to Windows, or that were freezing up and crashing all the time after using this software. While it is certainly true that spyware/malware/viruses can slow down your system, and removing them will certainly help the performance, using these ‘fix all’ software solutions can often cause more problems than they fix – as a matter of fact, the free ‘diagnosis’ they offer has nothing to do with finding spyware, malware, or viruses.

One thing I find very interesting is the disclaimer in the Terms of Service on doublemyspeed.com: “ANY MATERIAL DOWNLOADED OR OTHERWISE OBTAINED THROUGH THE USE OF THE WEBSITES IS DONE AT YOUR SOLE RISK AND YOU WILL BE SOLELY RESPONSIBLE FOR ANY DAMAGE TO YOUR COMPUTER SYSTEM OR LOSS OF DATA THAT RESULTS FROM THE DOWNLOAD OF ANY SUCH MATERIAL” In other words, if you use their software and it hoses your system, too bad, they did warn you after all. The other bit I find interesting is this part: “CyberDefender EXPRESSLY DISCLAIMS ALL WARRANTIES OF ANY KIND, WHETHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT OF PROPRIETARY RIGHTS. WITHOUT LIMITATION, CYBERDEFENDER AND THE PROTECTED PARTIES MAKE NO WARRANTY THAT THE WEBSITES OR ANY SOFTWARE DISTRIBUTED THEREFROM WILL MEET YOUR REQUIREMENTS, THAT THEY WILL BE UNINTERRUPTED, TIMELY, SECURE, OR ERROR-FREE, THAT THE RESULTS OBTAINED FROM THE USE OF THE WEBSITES WILL BE ACCURATE OR RELIABLE” – so basically, they won’t provide any kind of warranty for their product, and they certainly don’t claim that their software or results it gives you will be secure, error free, accurate, or reliable. So then tell me, why in the world would I ever spend money on their product????

One of the worst things is their Registry Cleaner which can definitely cause irrepairable damage to your system if it removes the wrong things from the registry. Granted, back in the days of Windows 95/98, a lot of registry errors could have a significant performance impact on your system, however in today’s world of high RAM and multi-core processors, registry errors of the kind that this software usually fixes have a negligible impact on most systems, and the risk of the software removing a critical registry entry is too great to justify the results.

The truth is, many machines just need a simple cleanup of malware/spyware, and some tweaking of startup programs to run better. Then of course there is the fact that your old Windows XP machine with 256MB of RAM will NEVER be able to keep up on the internet of today due to the much increased demands. Remember, Windows XP is about 10 years old, and when it was released the internet was pretty much all text based. Today the internet is multi-media rich with all kinds of add-ons running – Java, Toolbars, Browser helpers, etc. and older computers just don’t have the hardware or software to keep up.

Basically what this website does is con you into running a pretty much worthless registry scanner that will of course show massive errors on your system (which in reality may or may not be errors, and even if they are errors they have a negligible impact on your systems performance if any impact at all) – then if you decide you want to fix these inconsequential errors, you will be taken to a website where they want you to spend $39.98 for a basicaly worthless product, then they want you to buy their CyberDefender antimalware/antivirus software for $29.95, and then of course ad $14.97 for a cd with a copy of your software (you can burn your own CD for about 25 cents). All in all, it is just another company trying to make a quick profit off of anyone who believes their overhyped ads. My opinion: the software is a total waste of money, and you take a risk of totally messing up your machine by using it – not to mention, trying to exit out of the ‘free scan’ software just leads to pop-ups and opens their web page, and you have to confirm multiple times just to uninstall the software! Stay away from this product!!

Of course, this is just my opinion, take it for what it’s worth, but there is no way I would ever recommend this software to anyone – EVER!

For links to Free Software such as Malwarebytes, Spybot S&D, and AVG Free that can help you keep your computer malware and virus free and keep it running faster, visit the Tech Support page at PensacolaComputers.com