Post by Cowboy Camper on Feb 13, 2011 0:14:45 GMT -6
Folks, this is a rouge program and it's a Bad one. It looks like something authentic from Windows as it emulates the Windows Security Badge, but it's a Worm or Trojan or whatever you want to label it. The reports of security threats are Bogus, and this malware will try to scam you into buying a fake program for something like 60 bucks. Then... Lord only knows the damage that can be seen after you fall for that.
DON"T Fall For It!!! This Virus (as work called it) happened in my office last August, and this bugger just got me at home last Tuesday. I knew it was fake 'cause I had seen it before, but it sure looks like a Genuine Windows Alert. If you check out the link I will provide, you'll even see a Screen Shot of this malware in action.
Remove this Beast/Spyware Protection 2010
You may wish to Download the "Malware Bytes Anti-Malware" program suggested preemptively and also the "Process Explorer" that is also instructed. Folks, when this hit me at home it killed out my Firefox Browser and rendered it useless. (along with Many other normal PC usage operations....) Amazingly, Internet Explorer was still working so I had it available to Download the recommended Fix Tools.
Check it out, and feel free to ask if you have any questions on some of the Specifics. The main Memorable Specific I can tell you about is that you have to Act Fast to get the "Process Explorer" to launch upon a PC restart, as the rogue program acts fast from the Notification Area (by the clock) and if it starts first, Process Explorer will likely not be allowed to even start.
Another Specific I can tell in advance is that you may have to manually type in the "C:\Documents and Settings\username\Application Data" command string from the Run Command Dialog Box in order to Manually Delete the "Defender" malware program.
Least wise, I had to that night while getting this here PC Fixed. If you are comfortable digging into the Hard Drive manually by clicking and opening files and folders, here is the Command Train to follow.
Double Click/ Open "My Computer" > Local Disk (C:) > Documents and Settings > Main Username (Administrator, unless custom defined) > Application Data.
Beware!!! If you are NOT comfortable in knowing and understanding that Command Train, Type it in Manually. If you click and Open the wrong folder or file, it can be rather easy to Delete an incorrect item and possibly render your PC inoperable. However, once you get to the Application Data folder you will easily see the Offending (and Fake) Security badge/Icon that is the Spyware Protection 2010.exe file that you need to hit DELETE on. Once that's gone, restart the PC and enjoy a properly running machine once again.
I'm also going to Share that link at Face Book.
DON"T Fall For It!!! This Virus (as work called it) happened in my office last August, and this bugger just got me at home last Tuesday. I knew it was fake 'cause I had seen it before, but it sure looks like a Genuine Windows Alert. If you check out the link I will provide, you'll even see a Screen Shot of this malware in action.
Remove this Beast/Spyware Protection 2010
You may wish to Download the "Malware Bytes Anti-Malware" program suggested preemptively and also the "Process Explorer" that is also instructed. Folks, when this hit me at home it killed out my Firefox Browser and rendered it useless. (along with Many other normal PC usage operations....) Amazingly, Internet Explorer was still working so I had it available to Download the recommended Fix Tools.
Check it out, and feel free to ask if you have any questions on some of the Specifics. The main Memorable Specific I can tell you about is that you have to Act Fast to get the "Process Explorer" to launch upon a PC restart, as the rogue program acts fast from the Notification Area (by the clock) and if it starts first, Process Explorer will likely not be allowed to even start.
Another Specific I can tell in advance is that you may have to manually type in the "C:\Documents and Settings\username\Application Data" command string from the Run Command Dialog Box in order to Manually Delete the "Defender" malware program.
Least wise, I had to that night while getting this here PC Fixed. If you are comfortable digging into the Hard Drive manually by clicking and opening files and folders, here is the Command Train to follow.
Double Click/ Open "My Computer" > Local Disk (C:) > Documents and Settings > Main Username (Administrator, unless custom defined) > Application Data.
Beware!!! If you are NOT comfortable in knowing and understanding that Command Train, Type it in Manually. If you click and Open the wrong folder or file, it can be rather easy to Delete an incorrect item and possibly render your PC inoperable. However, once you get to the Application Data folder you will easily see the Offending (and Fake) Security badge/Icon that is the Spyware Protection 2010.exe file that you need to hit DELETE on. Once that's gone, restart the PC and enjoy a properly running machine once again.
I'm also going to Share that link at Face Book.