Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.



  • Please log in to reply
2 replies to this topic

#1 Jeffers613


  • Members
  • 21 posts
  • Local time:04:46 PM

Posted 09 February 2017 - 05:05 AM

I was recently hacked for ransomware and my computer was   completely blocked. Message went on ad nauseam!


I turned computer off using power button and left it shut down for 2 days.


On restarting the computer was unblocked and usable.


I have done a Malawarebytes scan and MS  Security Essentials scan - both clear.


Nevertheless, is it possible that the hackers might still have access to my passwords and  bank etc details/


If this is possible what further checks can I do?


Lastly, as neither MWB nor MS have prevented this hacking, is there anything else I can download (free or pay) that will prevent this happening again>?

BC AdBot (Login to Remove)


#2 Guest_AES-NI_*


  • Guests

Posted 09 February 2017 - 05:38 AM

u company a medecine?

im not recomendate use its fake AV  "Malawarebytes  and MS  Security Essential" its av easy bypased.

Dr.web or KAV or Symantec Endpoint for scan system i recomendate..

or use PChunter + Process HAcker + procMon +TcpView to check manually (me recomendate)


Edited by AES-NI, 09 February 2017 - 05:55 AM.

#3 quietman7


    Bleepin' Janitor

  • Global Moderator
  • 51,927 posts
  • Gender:Male
  • Location:Virginia, USA

Posted 09 February 2017 - 07:54 AM

It is a common scam.

Tech Support Scamming through unsolicited phone calls, browser pop-ups and emails from "so-called Support Techs" advising "your computer is infected with malware", “All Your Files Are Encrypted" and other fake "alert messages" has become an increasing common scam tactic over the past several years. The scams may involve web pages with screenshots of fake Microsoft (Windows) Support messages, fake reports of suspicious activity, fake warnings of malware found on your computer, fake ransomware and fake BSODs all of which include a tech support phone number to call in order to fix the problem. If you call the phone number (or they called you), scammers will talk their victims into allowing them remote control access of the computer so they can install a Remote Access Trojan in order to steal passwords and other sensitive personal information which could then be used to access bank accounts or steal a person's identity.

These are a few examples.The scammer may claim to be affiliated with Microsoft or Windows Support. However, there have been reports of scammers claiming to be affiliated with major computer manufacturers such as Hewlett Packard, Lenovo and Dell, familiar security vendors like Symantec, Panda, McAfee, etc. and even popular ISPs.

Microsoft does not contact users via web page messages, phone or email and instruct them to call tech support to fix your computer.Not answering any questions and hanging up the telephone is the best way to deal with phone scammers...then report them to the appropriate authorities.

If you are dealing with browser pop-up scams, closing the web browser and then relaunching it usually eliminates the bogus warning message and is the best way to deal with these scams. If the browser freezes or hangs, you may have to close it with Windows Task Manager by selecting End Task.

Scammers and cyber-criminals are very innovated...see Tech Support Scams use new Tricks to Hold Browsers Hostage. They are always developing creative and more sophisticated techniques to scare their victims into providing personal information or stealing their money for financial gain. The criminals can target specific browsers like Microsoft Edge, Google Chrome, specific devices like Apple and even your iPhone or iPad.Some scam sites may lock up the browser, load the page in full-screen mode or spawn an infinite loop of repeating fake alert dialog boxes that prevent the victim from closing it or navigating away. Despite years of warnings by experts not to click on anything, such behavior requires victims to click OK or similar prompt on the fake alert message if using Dialog Loop Protection supported browsers like Microsoft Edge in order to escape or close the page. Google Chrome has a feature to "Prevent this page from displaying additional dialogs". Some Tech Support scams have similar alerts while others are simply made up and clicking OK can produce the opposite effect. If you are dealing with this type of scam, click the OK button at the bottom of the alert and you should then see a box that says "Do not allow this site to create new pages". Check that box and close the window.

For more information about how these scams work and resources to protect yourself, please read Beware of Phony Emails & Tech Support Scams...there are suggestions near the bottom for dealing with scams and a list of security scanning tools to use in case the usual methods do not resolve the problem or you allowed remote access into your computer.

If you need individual assistance with a malware infection, you should follow the instructions in the Malware Removal and Log Section Preparation Guide. When you have done that, start a new topic and post your logs in the Virus, Trojan, Spyware, and Malware Removal Logs forum, NOT here, for assistance by the Malware Response Team.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users