Fake Ransomware Attack

[DreadLox]

I just got a scary ransomware message. The whole "Don't Try to Turn Off Your Computer" etc.

I've seen these kinds of messages before and have ignored them. Today, I turned off the computer and rebooted. The message was still there. So, I went to Task Manager and killed the browser threads, and that got rid of the messages. After I got control back, I ran two computer scans, including the Windows Defender offline scan. Everything seems clean and good to go.

Does anyone have any other suggestions? Wipe the disk and reload the OS? Relax? Toss the computer and get something else?

 

[entropy13]

Dude, just send me a kidney, or preferably both, and everything will be fine.

.

In all seriousness, that sucks. Sounds like you were thorough, but the fact that WD didn't find anything at all is a bit concerning. To confirm, did you run a boot sector/rootkit scan with the Windows Defender offline scan?

 

[DreadLox]

Dude, just send me a kidney, or preferably both, and everything will be fine.

.

In all seriousness, that sucks. Sounds like you were thorough, but the fact that WD didn't find anything at all is a bit concerning. To confirm, did you run a boot sector/rootkit scan with the Windows Defender offline scan?

I ran the offline scan. Don't know what is involved with that.

 

[CrittendenWildcat]

Your browser session was hijacked, most likely. Close the browser using Task Manager, and don't restore tabs closed "unexpectedly" if prompted when you re-open the browser.

Malwarebytes is good to download and use for second scan if you need more peace of mind.

 

[LineSkiCat14]

You shouldn't need to throw away your computer or even wipe it. Take a screenshot of the virus message (even a picture with your phone) and you could either paste it here for people to see, send it to a friend, or even just google search the wording to find out a bit more of what it is.

Yeah run Malware Bytes, update your OS, browsers and windows defender definitions to be safe, clear out browser cache and appdata on your local profile, look for any new files created during this time and evaluate, and maybe the most important one.. avoid sketchy xxx rated sites you perv.

 

[Blue Bleeding Marine]

Staying off of porn sites will probably also help in the future

 

[DreadLox]

Staying off of porn sites will probably also help in the future

I was going to a credit card site. I think I mis-typed the address and it was lying in wait.

I found the virus but the attempt to remove it bollixed the computer. Pfft. Gone.

So, wipe and clean the disk and re-install Windows.

I was going to the credit card company to confirm a new card when the ransomware demand was made. If they had waited, they could have got my credit card details. Not much comfort in that but it's funny.