#869440 - 02/20/13 01:58 PM
Ukash virus
|
Settled Boomer
Registered: 09/26/03
Posts: 781
Loc: Hampshire, UK
|
We have just been done over by something which I now know is called (on this side of the pond) the Ukash Virus or Ukash scam. It manifested itself as an alleged Adobe update,which we declined, but the virus came in anyway. Apparently, it doesn't matter if you click Yes or No - it still infects the computer. It says that we have been downloading something illegal, and are liable for a huge fine, or prison. It generously offers, if we pay £100, to get us out of this predicament. The message purports to come from Cardiff Police, but the money has to be sent to London.Our laptop is now being cleaned up in the local shop, but what can be done to stop it happening again? Norton is an absolute waste of space - the virus just came straight through it.
petert
|
Top
|
|
|
|
#869442 - 02/20/13 02:02 PM
Re: Ukash virus
[Re: petert]
|
True Blue Boomer
Registered: 07/10/05
Posts: 23997
Loc: UK
|
My computer tech was telling me about this very same virus only yesterday. Do you run the realtime Pro version of Malwarebytes, or SuperAntiSpyware? Both of these catch a LOT of nasties before they can get through. They run in conjunction with anti-virus software.
_________________________
"Bleat, Watson -- unmitigated bleat!" ~ Sherlock Holmes
|
Top
|
|
|
|
#869447 - 02/20/13 02:17 PM
Re: Ukash virus
[Re: petert]
|
Hints & Glitches forum Moderator
Adept Boomer
Registered: 06/03/05
Posts: 13123
Loc: In Missouri near St. Louis
|
You were "gotten" by this very nasty "ransomware." It morphs from country to country to make it look like something from the officials in a specific location. I have removed it from two computers belonging to friends. The virus goes by several names, but at the center it's called the Revetron virus. This is a very good article from PC Magazine that just came out recently. Although they indicate a strong relationship with on-line porn, that's just not the case. Both the infections I removed had nothing to do with porn or anything like it. Ransomeware Article at PC Magazine
_________________________
In my PC corner for the winter, gaming, knitting and reading.
|
Top
|
|
|
|
#869485 - 02/20/13 03:41 PM
Re: Ukash virus
[Re: petert]
|
Settled Boomer
Registered: 09/26/03
Posts: 781
Loc: Hampshire, UK
|
Rushes: no, I don't use either of the programs you mention. When we bought the laptop which subsequently had the Ukash problem, my wife was right royally conned by the salesman at Currys/PCWorld. He gave her some drivel about banks refusing to pay up if villains accessed our online bank account,if we did not run a 'paidfor' anti-virus, and told her that Avast was useless under those terms. So we paid about £60 for this pile of useless cr*p called Norton.I did actually go back on the next day and had a go at the salesman, who was all slimy contrition, saying that they were taught this during their training. Anyway, perhaps I should try malware bytes. I did try Microsoft Security Essentials, on my PC, but that slowed it down to an abysmal crawl - it would take about 20 minutes to connect to the internet - so I got rid of it.
petert
|
Top
|
|
|
|
#869492 - 02/20/13 04:21 PM
Re: Ukash virus
[Re: petert]
|
True Blue Boomer
Registered: 07/10/05
Posts: 23997
Loc: UK
|
Here's a link to Malwarebytes: http://www.malwarebytes.org/The realtime version isn't free, but apparently you do get a short trial of it to see how you like it before paying up. The free version isn't realtime and only runs scans if you think you have an issue, or just to use as a weekly/daily health check. I find Microsoft Security Essentials super-light on my PC's resources, which is strange when you say you had problems with it. I had McAfee before that, and THAT monster slowed my poor PC down to a stagger.
_________________________
"Bleat, Watson -- unmitigated bleat!" ~ Sherlock Holmes
|
Top
|
|
|
|
#869494 - 02/20/13 04:24 PM
Re: Ukash virus
[Re: petert]
|
Hints & Glitches forum Moderator
Adept Boomer
Registered: 06/03/05
Posts: 13123
Loc: In Missouri near St. Louis
|
The salesman LIED to you! Microsoft Security Essentials should never cause PC slowdowns. I have it on two computer here at home and at least a dozen computers that I work on with no slow-downs at all. Not sure what was wrong there. Malwarebytes is something to run WITH an anti-virus program, not by itself. You can get the free version which is very useful in running scans and getting rid of stuff that is already on your computer. Malwarebytes Pro (roughly $25 US) runs in real time as Rushes said and will stop most nasties. Whenever I see it on sale for $10 or $12, I always buy 2 or 3 copies. You can just download it from their website and then pay with a credit card. They send you an ID and a key code. Malwarebytes
_________________________
In my PC corner for the winter, gaming, knitting and reading.
|
Top
|
|
|
|
#869550 - 02/20/13 09:42 PM
Re: Ukash virus
[Re: petert]
|
Hints & Glitches forum Moderator
Adept Boomer
Registered: 06/03/05
Posts: 13123
Loc: In Missouri near St. Louis
|
In both cases when I've removed the FBI ransomware, luckily I was able to boot into safe mode. I used the Emisoft recommended at Bleepingcomputer and it did the trick for one computer and a Malwarebytes scan got it on the other computer. Both of these were infections in the last 2 weeks. There is another download from Kaspersky that you put on a flash drive and it runs at boot before you get into the OS. It is geared to infected boot loaders where the infection respawns every time you boot. This particular virus didn't infect the boot loader though. Remove FBI Ransomeware
_________________________
In my PC corner for the winter, gaming, knitting and reading.
|
Top
|
|
|
|
#869622 - 02/21/13 08:56 AM
Re: Ukash virus
[Re: Draclvr]
|
Addicted Boomer
Registered: 01/14/10
Posts: 3293
Loc: Rivellon
|
I've never had to try it, so I can't say if it works, but Malwarebytes has a tool you can download called Chameleon which is supposed to get it running if it's blocked by malicious programs.
They also have Anti-Rootkit. They are both free to download.
Gil.
_________________________
"Best not to think about it. I don't want to fall to bits 'cos of excess existential thought."
|
Top
|
|
|
|
#869623 - 02/21/13 08:58 AM
Re: Ukash virus/Adobe
[Re: monbron]
|
Addicted Boomer
Registered: 01/14/10
Posts: 3293
Loc: Rivellon
|
Adobe Flash is probably set to ask if you want to download updates, monbron. Mine is. In that case, you will get that popup.
Gil.
_________________________
"Best not to think about it. I don't want to fall to bits 'cos of excess existential thought."
|
Top
|
|
|
|
#869647 - 02/21/13 10:26 AM
Re: Ukash virus/Adobe
[Re: petert]
|
Hints & Glitches forum Moderator
Adept Boomer
Registered: 06/03/05
Posts: 13123
Loc: In Missouri near St. Louis
|
And you should ALWAYS install Adobe Flash updates as they are often security updates. The are awful about including what is called "foistware" with the downloads, so make sure you uncheck the McAfee safe search or whatever they want to put on your computer.
Thanks, Gil. I will have to check those out - I've read about them, but never downloaded them. The way things are going lately, I'm going to need them one of these days!
_________________________
In my PC corner for the winter, gaming, knitting and reading.
|
Top
|
|
|
|
#869665 - 02/21/13 11:39 AM
Re: Ukash virus/Adobe
[Re: Draclvr]
|
Addicted Boomer
Registered: 01/14/10
Posts: 3293
Loc: Rivellon
|
And you should ALWAYS install Adobe Flash updates as they are often security updates. The are awful about including what is called "foistware" with the downloads, so make sure you uncheck the McAfee safe search or whatever they want to put on your computer.
These days they want to install Chrome, as I recall. Google has its tentacles in everything, as you'll notice if you have Ghostery. Gil.
_________________________
"Best not to think about it. I don't want to fall to bits 'cos of excess existential thought."
|
Top
|
|
|
|
#869670 - 02/21/13 11:50 AM
Re: Ukash virus/Adobe
[Re: petert]
|
Hints & Glitches forum Moderator
Adept Boomer
Registered: 06/03/05
Posts: 13123
Loc: In Missouri near St. Louis
|
I use "do not track" from Abine in my Firefox and I see the same thing there - nine-tenths of the trackers are Google related.
_________________________
In my PC corner for the winter, gaming, knitting and reading.
|
Top
|
|
|
|
|
|