Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Information about Windows Defender malicious


  • This topic is locked This topic is locked
3 replies to this topic

#1 thanhvanchi

thanhvanchi

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:24 PM

Posted 07 December 2016 - 03:10 AM

Hello everybody.
I have to know about installation and computer repair, but I have yet to master the tools of computer antivirus catfish in internet.
After helping my friend fix her computer (thank you nasdaq), she left it on all night for two nights and got a Windows Defender pop-up. Instead of calling me, she contacted the 1-888 number and allowed remote access to who she thought was a Microsoft rep. Thank god she didn't close out any windows after her session with this guy. He looked through EVERYTHING! Memory Info., Scheduled Tasks, Disk Drive, Operating System, Recent Events, CPU, Process, cmd.exe (commands) etc...then wanted to charge her money to fix the said problems. Showed her what looks to be a bogus Event Log and wanted her to contact Sisco, he was going to connect her via online but she declined for a second opinion (me/us). I have phone screen shots of the all he did/looked at, if you need them.
 
Let me know if you need a Farbar done, not doing anything without the go ahead.
 
Thank's a lot!

Edited by thanhvanchi, 07 December 2016 - 03:13 AM.


BC AdBot (Login to Remove)

 


#2 garioch7

garioch7

    RCMP Veteran


  • Malware Response Instructor
  • 3,798 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Port Hood, Nova Scotia, Canada
  • Local time:07:24 AM

Posted 09 December 2016 - 07:34 AM

thanhvanchi:

:welcome: to the Bleeping Computer Virus, Trojans, Spyware, and Malware Removal Logs Forum. My name is Phil and I would like to address you by your first name, if that is alright with you since we will be working together.

I will be assisting you with your computer issues. I will endeavor to respond within a reasonable time, normally 48 hours after your last post.

I do need to examine the FRST logs from the affected computer.

:step1: Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system, download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right-click FRST then click "Run as administrator" (XP users: click run after receipt of Windows Security Warning - Open File).
  • When the tool opens, click Yes to disclaimer.
  • Press the Scan button.
  • When finished, it will produce a log called FRST.txt in the same directory the tool was run from.
  • Please copy and paste the log in your next reply.

Note 2: When FRST is run, it also generates another log (Addition.txt - also located in the same directory the tool was run from). Please also copy and paste that, along with the FRST.txt, into your next reply.

Once I receive the FRST logs, I will need some time to review them. That could take a day or two.

.

:step2: Please provide me with details of any unusual computer symptoms that your friend is experiencing. That information will be valuable to diagnose possible issues/infections.

.

PLEASE DO NOT RUN ANY ADDITIONAL SCANS OR ANTI-MALWARE REMOVAL TOOLS UNTIL YOU HAVE RECEIVED A RESPONSE FROM ME.
Doing so would complicate the situation and it would cause further delays in resolving your issues. It could also potentially result in harm to your computer because my "fix" will be based on the FRST scan logs you have already submitted.

Thank you and have a great day.

Regards,
-Phil


Graduate of the Bleeping Computer Malware Removal Study Hall


#3 garioch7

garioch7

    RCMP Veteran


  • Malware Response Instructor
  • 3,798 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Port Hood, Nova Scotia, Canada
  • Local time:07:24 AM

Posted 12 December 2016 - 01:07 PM

thanhvanchi:

 

Are you still there?  Do you still require assistance?  It has been three days since I last posted to you.

 
According to Forum policy, topics must be concluded after five days of non-response from the Topic Starter.
 
If I have not heard from you in another two days, I will conclude your topic.  You can always reopen it by sending a Personal Message to a Moderator.
 
Thank you and have a great day.
 
Regards,
-Phil

Graduate of the Bleeping Computer Malware Removal Study Hall


#4 garioch7

garioch7

    RCMP Veteran


  • Malware Response Instructor
  • 3,798 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Port Hood, Nova Scotia, Canada
  • Local time:07:24 AM

Posted 14 December 2016 - 01:03 PM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

Graduate of the Bleeping Computer Malware Removal Study Hall





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users