Hi Guys
I’m hoping you can help me (if this post appears twice forgive me)
Last night at about 9:30 I got a pop up balloon from the taskbar in the lower left hand side of my computer telling me that my computer was infected and to click on the balloon to be taken to a site to install updated spy ware. My Windows Defender (Beta2) was running at the time (start time 9pm) so I wasn’t directed anywhere. I also did a full system Norton scan. Both programmes ran until well after 12 and both told me the computer was clean.
I checked the software explorer on Defender and looked at programmes which were on autostart which were unclassified. I identified two which had been installed that evening and removed them.
I then did a search for the files and deleted them at source. I tried to download Spybot last night but during the download when one of the files tried to access the internet I became completely paranoid and disconnected the computer from the internet entirely and went to bed. I didn’t get much sleep dreaming of having my bank balances cleared out and my credit cards maxed.
I opened the computer this morning and looked at Defender again, only to find the file “winstal” once again in the autostart along with two other unidenfied files. I again disabled them and looked for them through the explorer. I deleted “winstal” at source on the c/drive. And did a search once again for it only to find it in a folder called Prefetch. All files in this folder has a modified date of either last night or this morning when I opened my computer again. I then connected to the internet again - a virus scan of “contactcoll” came up in Norton and Prefetch is shown on the Windows Task Manager as running. Norton dealt with the virus and I ended the Prefetch task. However, it keeps coming back on and I keep ending it, but I want to get this message up to see if this is a legitimate programme.
If I have run Defender and Norton and both tell me everything is ok, but this unidentified application keeps running - am I safe or not. Do I want to take the chance of logging onto banking etc. - at the moment I’m stressed (apols if this post is all over the place).
I did a system restore back to the 15th, but the Prefetch folder is still there with the dates of last night and today.
Can anyone advise. Thanks
I’m hoping you can help me (if this post appears twice forgive me)
Last night at about 9:30 I got a pop up balloon from the taskbar in the lower left hand side of my computer telling me that my computer was infected and to click on the balloon to be taken to a site to install updated spy ware. My Windows Defender (Beta2) was running at the time (start time 9pm) so I wasn’t directed anywhere. I also did a full system Norton scan. Both programmes ran until well after 12 and both told me the computer was clean.
I checked the software explorer on Defender and looked at programmes which were on autostart which were unclassified. I identified two which had been installed that evening and removed them.
I then did a search for the files and deleted them at source. I tried to download Spybot last night but during the download when one of the files tried to access the internet I became completely paranoid and disconnected the computer from the internet entirely and went to bed. I didn’t get much sleep dreaming of having my bank balances cleared out and my credit cards maxed.
I opened the computer this morning and looked at Defender again, only to find the file “winstal” once again in the autostart along with two other unidenfied files. I again disabled them and looked for them through the explorer. I deleted “winstal” at source on the c/drive. And did a search once again for it only to find it in a folder called Prefetch. All files in this folder has a modified date of either last night or this morning when I opened my computer again. I then connected to the internet again - a virus scan of “contactcoll” came up in Norton and Prefetch is shown on the Windows Task Manager as running. Norton dealt with the virus and I ended the Prefetch task. However, it keeps coming back on and I keep ending it, but I want to get this message up to see if this is a legitimate programme.
If I have run Defender and Norton and both tell me everything is ok, but this unidentified application keeps running - am I safe or not. Do I want to take the chance of logging onto banking etc. - at the moment I’m stressed (apols if this post is all over the place).
I did a system restore back to the 15th, but the Prefetch folder is still there with the dates of last night and today.
Can anyone advise. Thanks