Technology KnowledgeBase

"Your computer is infected" (Fake!!) Virus Pop-Up Alerts, Malware and Adware (Windows Computers)

NEVER attempt to install any product on your district computer to stop viruses or other malware (or to make your system run faster).

Please refer to KB Article 707 on how to remove Adware/Malware from my Mac?

Window Users

Malware, Adware and Virus attacks are becoming more commonplace on Mac computers in the district. Remember that even when computers go home with staff, they are are still district devices and should NOT be used by family or friends. Increasing the number of users will only increase the likelihood that someone will make a bad decision that will result in the computer becoming infected or that data (personal and professional) will be compromised.

Malware and Adware

Malware and adware can effectively lock up browsers and significantly compromise computer performance. Malware and Adware most commonly present in a pop up window while using a browser offering to "speed up your system performance" or "enhance your shopping experience". We believe in some cases malware and adware are downloading after staff do an image search in Google or another search engine, and then click on an image that has the malware/adware attached to it. In these cases there is not any further action that staff need to take for the malware/adware to install - no messages to click or misleading warnings.
 
Please be cautious about any websites you visit or images you click on, especially when offsite as security on non-district networks is not as robust as when in-district. Malware/adware will often present itself as a "helper" application to make your browser or shopping experiences more "user friendly". They will then set (hijack) your browser home page to a new website and/or change your search engine to something other than Google for all your browsers.  If you think your computer has been subjected to malware or adware, please create a ticket at http://helpdesk.nsd.org.

The most common malware/adware apps we are currently seeing: 

install.mac          Genieo                Kuklorest            Manrolling

Epolife               Javeview             feelbegin             totitech

Jakecares          Montaeobox         Openteks             somoto

 

Pop-Ups and fake "infection" warnings

Any pop-ups that appear on your computer warning that you are infected with a virus, that the computer is at risk, or that the computer is running slowly and needs to be "optimized" are more than likely a scam. The pop-up window should be closed without clicking on anything in the window. Technology does it's best to block these pop-up and malware attacks, but it is a very difficult challenge.

Some common pop-ups are shown below:

This pop-up mimics Norton Anti-Virus, which is not installed on district Mac computers. DO NOT call the phone number. Close the pop-up window(s). If the window will not close or your browser hangs, force quit the browser  - press Option-Command-Escape to bring up the Force Quit window -  and then restart the browser. 

 

The pop up below is another common one. If you are on a Mac, simply click on the red dot in the upper left corner of the window to close the pop-up window. 

 

When the pop-up below appears, adware warns the user that the computer is not protected. The main screen displayed is a spoof of the Window Security Center. It then pretends to scan the system for malware. If users do not immediately take the bait and buy the paid version of the fake antivirus, the malicious code will sporadically display a message reminding the user that the computer is infected. In warning messages, and after the fake scan, a link is provided to download the fake antivirus software. DO NOT click on the link.

 

It would be wise to clear the cache of your web browser after malicious pop-ups appear. 

Some attacks have become clever enough to install malicious software once their website is loaded without requiring that you click on anything on the website, or requiring admin authentication. In that case, pop-ups may appear that you are unable to bypass, even after force quitting the browser. In that case, please call Tech Support at x6688 or create a work ticket at http://helpdesk.nsd.org and we will remove the malicious software for you.



Attached Files
There are no attachments for this article.
MENU