I've had a lot of success with this website in the past (twice from Syler, who is awesome) so
I thought I would come to you with this problem. This time it is my wife's computer. (After
my last problem, I have primarily been using either firefox with script & ad blockers, or a
linux machine. No more problems!) At about 1PM today, she entered her yahoo email account and
opened an email from a known individual. There was no link or anything in the email, just
expected text. An antivirus popup soon appeared and said she was not protected and did she
want to buy this new antivirus protection. It was for "http://antivircat.com".
remember if she clicked on "No" or the x in the corner. She did not close it with the
TaskBar. There is now a green shield icon in the lower right corner for antivircat. It
consistently provides a balloon saying she is infected, would she like to activate or remain
unprotected, etc. The only website that opens is the antivircat.com scam website. She has
AVG, which won't open. She has Malwarebytes Antimalware on the desktop, but that won't open.
Even Snood and Word files won't open. Every time we try opening a file, we get messages that
specific (but usually different) files are corrupted (usually *.exe files for the program).
We also cannot get into task manager. A box will sometimes show up in the lower right corner,
(not sure if it is AVG symbol or not...) saying:
Your computer is being attacked by an internet virus. It could be a password-stealing attack,
a trojan-dropper, or similar.
Attack from: 18.104.22.168, port 4210
Attacked port: 25722
(although the numbers are different each time it appears)
I used my computer to put HijackThis and DDS on a flash drive and plugged it into her
computer. I moved the files to her desktop, but they won't open (same message: Application
cannot be executed. The file *.exe is infected. Do you want to activate your antivirus
software now?) I tried to open them from the flash drive, same message. I renamed them on
the flash drive, saved to desktop, still won't open.
In addition, when restarting the computer from stand-by or hibernation, Internet Explorer will
start, with a different website appearing, but not opening (porno.org, adult.com were two).
She has Vista and uses Internet Explorer. I believe she has the original CDs/DVDs that came
with the laptop, and I have student disk with Windows 7 that I loaded onto a different laptop.
What can she do, considering the laptop is essentially disabled?
Thank you for reading.