While working on the computer tonight - all of a sudden my computer kept popping up these warning messages and I just wanted to let everyone know about them and how to fix them if this ever happens to you.
Ever heard of Lsas.Blaster.Keyloger?
Lsas.Blaster.Keyloger is fake alert which is secretly installed by
trojan. It is a part of rogue application. A rogue software application
designed to trick users into buying a fake product by using scare
tactics. It will bombard you with pop ups in
order to try and scam you out of money. This infection can come into
after fake video codec installation that usually comes with malware.
To read more about it and see what it looks like - I found these two great links http://www.spywareremovalblog.com/remove-lsasblasterkeyloger/ and the other one is http://www.spywareremovalblog.com/remove-lsasblasterkeyloger/ with these two links you will see what the warning looks like and how what you can do to get things back to normal.
Now I want to tell you some things that I also feel is important to have on your computer and I really think that because I had them it made my life easier. I would recommend that everyone get these downloaded and use them for your maintenance.
1. Good Anti-virus (I use Avast) but was told about another one tonight called Panda Cloud (Thanks Dave) All Free.
2. Crap Cleaner and it does just that - cleans the crap http://download.cnet.com/CCleaner/3000-2144_4-10547048.html This is a free download - so no excuse to not to have it.
3. Malwarebytes - I had a programmer recommend this years ago and this is what found and got rid of my nightmare tonight http://www.malwarebytes.org/ Also FREE.
4. Ad-aware - also another FREE download and when scanning tonight it found one also http://www.lavasoft.com/products/ad_aware_free.php
5. Spybot - Another FREE one that is great to have and here is the link http://download.cnet.com/Spybot-Search-amp-Destroy/3000-8022_4-10122137.html
Most of you know I practically live on this computer and I use all of these programs and am guessing that this trojan came in as an attachment on an email. So no matter how safe you try to be, it does happen. I highly recommend that you get all of these downloaded and use them - scanning with each does not take long and will save you alot of headaches.
AND one little tip I have found out - if your computer starts doing strange things and you are thinking to yourself wonder why it did that? I stop right then and run Crap Cleaner - most of the time cleaning your cookies and temp internet files will clear things up for you - I clean my crap 3-4 times a day lololol
Well good luck everyone and hope that this save all of you some headaches in the future.
Oh, one more thing - this trojan blocked all these programs on me and could not run any of them - so had to shut the computer down and run them in the safe mode and for you that have no clue how to do that - you turn off your computer, start it back up, and click on F8 right away and keep clicking and then you will see where you can open in the SAFE mode - just in case you forgot or in a panic state like I was lolololol and then couldn't remember lolololol
So true Nancy. Great post!!!! Keep them coming. Also visit me at http://krishanks.blogspot.com
ReplyDeleteVery good information on keeping abreast of the nasties that come through our system. And your welcome Nancy. Anytime you have any problems with any nasties,just hollar. I am glad to see those programs actually work like they say. They helped me get rid of 8 bad trojans last week. So, my thumbs go up for these great programs and to you Nancy for helping the OMG members to be aware of the nasties, and the programs that help get them gone. Thanks YOU ROCK!!!
ReplyDeleteHello, congratulations on extensive information, however I advise the comodo internet security firewall as well as being a firewall capable, comes with an antivirus, AntiPopup protects your registry and alert to any amendment thereto, attempt to install software that runs on background, is boring in the beginning because we have to allow almost all operations that the computer does, but then it is letting go, nothing is infallible because when a door has is because it can be opened, but very difficult any attack, has me served to alert their sites as a malicious script added to the pages of personal ads or commercial, is free and can download and try clicking on the following Linck: http://personalfirewall.comodo.com/free-download.html
ReplyDeleteI woke up to not being able to open anything on my computer. I couldn't even shut it off, but after panic and calling my son over, we shut the power off. When we turned it back on, a trial version of Avira that I'm using for the month did the trick!!!
ReplyDeleteI also have many of the programs you mentioned, including the Malwarebytes. You didn't mention rkill. I'm sending you the info of where to get it and how to use it with the Malwarebytes. The combination of the two usually does the trick, but this one last night musta been a humdinger!!! I ran rkill, then ran Malwarebytes while sleeping, and I told you what I woke up to!
Anyway, I am now definately sold on Avira Premium!!! I've used the free version for about 4 years, but sometimes I forget to run it.
Glad all is working right for you now...and me too.....lol PRAISE GOD!!!
Donna
I forgot to post this:
ReplyDelete1. Print out these instructions as we may need to close every window that is open later in the fix.
2. Before we can do anything we must first end the processes that belong to Antivirus System Pro so that it does not interfere with the cleaning procedure. To do this, download the following file to your desktop.
rkill.com Download Link
3. Once it is downloaded, double-click on the rkill.com in order to automatically attempt to stop any processes associated with Antivirus System Pro and other Rogue programs. Please be patient while the programs looks for various programs and closes them. When it has finished, the black window will automatically close. While rkill is running, if you get a message stating that rkill, or another executable, is an infection, ignore it, and let rkill.com finish. This is just the infection trying to stop rkill from disabling it. Please note, you may have to attempt to run rkill quite a few times before the malware process is terminated.
Do not reboot your computer after running rkill as the malware programs will start again.
4. Now you should download Malwarebytes' Anti-Malware, or MBAM, from the following location and save it to your desktop: http://www.malwarebytes.org/
5. Download, install, update and scan with each of the two programs below to check for/remove Malware/spyware.
If necessary, do all the above work in Safe Mode with Networking.
To get into Safe Mode with Networking, tap F8 right at Power On / Startup, and use UP arrow key to get to Safe Mode with Networking from list of options, then hit ENTER.
Read all info below before starting:
http://www.malwarebytes.org/mbam.php
Malwarebytes is as the name says, a Malware Remover!
Download the Free Version from the link above.
Download, install, update and scan once a night.
Thanks everyone for the nice comments and the added info - great stuff here people and I really appreciate all the extra prevention methods mention - thank you, thank you, thank you
ReplyDeleteHi Nancy,
ReplyDeleteI like your post. I just want to let you know.
You need to be careful you do not want to many
programs for the same thing, they will conflict with each other opening a whole new problem.
I get computers in for repair all the time because people put to many antivirus and malware programs on their system.
Just a word of caution
Your friend,
Ken
Thanks Ken - nice to know and will be careful
ReplyDelete