moderated Spyware


John Doering
 

Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware.  It stated the spyware was now stealing my credit card numbers, passwords, and the rest.  It also stated this verbally in a female voice with what sounded like a British accent.  It demanded that I call Microsoft at an 800 number it provided.  It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success.  I then shut down my system, but when I powered back up the pop up came up again.  This time though, I was able to close the window.  I ran a  virus scan with Windows Defender and there were threats found.  I entered on the take action link and let it run its course.  I then ran MRT.exe which found nothing.  Then I shut down the system and have not started it since.  Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected. 

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

 

Thankyou,

 

 

John Doering

Administrative Pricing Specialist 

 
p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.


Richard Turner <richardturner42@...>
 

John,
If you know the 800 number, you could Google it from your work computer to find out if it is for real, which I highly doubt.
But, I'd call Microsoft accessibility: 800-936-5900 from before turning on the computer. Ideally, from a speaker phone so when you turn it on, if the pop-up comes up they can hear it. 
HTH,
Richard



“The secret is not to make your music louder, but to make the world quieter.” 

- Mitch Albom from The Magic Strings of Frankie Presto, page 1


On Apr 3, 2018, at 5:07 AM, John Doering <john.doering@...> wrote:

Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware.  It stated the spyware was now stealing my credit card numbers, passwords, and the rest.  It also stated this verbally in a female voice with what sounded like a British accent.  It demanded that I call Microsoft at an 800 number it provided.  It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success.  I then shut down my system, but when I powered back up the pop up came up again.  This time though, I was able to close the window.  I ran a  virus scan with Windows Defender and there were threats found.  I entered on the take action link and let it run its course.  I then ran MRT.exe which found nothing.  Then I shut down the system and have not started it since.  Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected. 

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

 

Thankyou,

 

 

John Doering

Administrative Pricing Specialist 

 
p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.


Jessica D <jldail13@...>
 

Hi,
What was the 800 number? 
The number to Microsoft accessibility is 800-936-5900.
If it wasn't that, its a scam. 
You should still call the number I provided above, to report it, and get help fixing it. 


On Apr 3, 2018, at 8:07 AM, John Doering <john.doering@...> wrote:

Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware.  It stated the spyware was now stealing my credit card numbers, passwords, and the rest.  It also stated this verbally in a female voice with what sounded like a British accent.  It demanded that I call Microsoft at an 800 number it provided.  It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success.  I then shut down my system, but when I powered back up the pop up came up again.  This time though, I was able to close the window.  I ran a  virus scan with Windows Defender and there were threats found.  I entered on the take action link and let it run its course.  I then ran MRT.exe which found nothing.  Then I shut down the system and have not started it since.  Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected. 

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

 

Thankyou,

 

 

John Doering

Administrative Pricing Specialist 

 
p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.


paul lemm
 

Hi,

 

I would say definitely a scam, anything that asks you to call somewhere is a scam, if Microsoft detected  something using Microsoft defender it would have just disabled the threat , since there’s nothing extra which could be gained by calling Microsoft . as someone else suggested  though make a note of the number they ask you to call, do not call it as you could get lumbered with a call which costs tons of money to call, but instead put the number into google search and see what search results you get, it will probably come up as a scam number, but again do not call the number given if you do need to call Microsoft use the official number for Microsoft accessibility.

 

Paul

 

From: main@jfw.groups.io [mailto:main@jfw.groups.io] On Behalf Of John Doering
Sent: 03 April 2018 13:07
To: main@jfw.groups.io
Subject: Spyware

 

Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware.  It stated the spyware was now stealing my credit card numbers, passwords, and the rest.  It also stated this verbally in a female voice with what sounded like a British accent.  It demanded that I call Microsoft at an 800 number it provided.  It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success.  I then shut down my system, but when I powered back up the pop up came up again.  This time though, I was able to close the window.  I ran a  virus scan with Windows Defender and there were threats found.  I entered on the take action link and let it run its course.  I then ran MRT.exe which found nothing.  Then I shut down the system and have not started it since.  Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected. 

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

 

Thankyou,

 

 

John Doering

Administrative Pricing Specialist 

 

p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.


John Doering
 

Richard, Jessica, and Paul:

Thank you all for the advice.  If it comes up again, I will definitely call Microsoft accessibility.   Is there any charge for calling them?

 

Regards,

 

 

 

John Doering

Administrative Pricing Specialist 

 
p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.

From: Richard Turner [mailto:richardturner42@...]
Sent: Tuesday, April 03, 2018 7:25 AM
To: main@jfw.groups.io
Subject: Re: Spyware

 

John,

If you know the 800 number, you could Google it from your work computer to find out if it is for real, which I highly doubt.

But, I'd call Microsoft accessibility: 800-936-5900 from before turning on the computer. Ideally, from a speaker phone so when you turn it on, if the pop-up comes up they can hear it. 

HTH,

Richard

 

 

 

“The secret is not to make your music louder, but to make the world quieter.” 

- Mitch Albom from The Magic Strings of Frankie Presto, page 1


On Apr 3, 2018, at 5:07 AM, John Doering <john.doering@...> wrote:

Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware.  It stated the spyware was now stealing my credit card numbers, passwords, and the rest.  It also stated this verbally in a female voice with what sounded like a British accent.  It demanded that I call Microsoft at an 800 number it provided.  It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success.  I then shut down my system, but when I powered back up the pop up came up again.  This time though, I was able to close the window.  I ran a  virus scan with Windows Defender and there were threats found.  I entered on the take action link and let it run its course.  I then ran MRT.exe which found nothing.  Then I shut down the system and have not started it since.  Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected. 

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

 

Thankyou,

 

 

John Doering

Administrative Pricing Specialist 

 

p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.


paul lemm
 

Hi,

 

Not sure about costs to call Microsoft , as I’ve never called them before. But another thing you might want to try even if the message isn’t there afterwards is install malware bytes, I use a pretty good anti-virus but malare bytes  picks up stuff that antivirus won’t find. There’s a free and premium version, I use the free one and that works fine for me. hope you get it all sorted.

 

 

Paul

 

 

From: main@jfw.groups.io [mailto:main@jfw.groups.io] On Behalf Of John Doering
Sent: 03 April 2018 13:43
To: main@jfw.groups.io
Subject: Re: Spyware

 

Richard, Jessica, and Paul:

Thank you all for the advice.  If it comes up again, I will definitely call Microsoft accessibility.   Is there any charge for calling them?

 

Regards,

 

 

 

John Doering

Administrative Pricing Specialist 

 

p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.

From: Richard Turner [mailto:richardturner42@...]
Sent: Tuesday, April 03, 2018 7:25 AM
To: main@jfw.groups.io
Subject: Re: Spyware

 

John,

If you know the 800 number, you could Google it from your work computer to find out if it is for real, which I highly doubt.

But, I'd call Microsoft accessibility: 800-936-5900 from before turning on the computer. Ideally, from a speaker phone so when you turn it on, if the pop-up comes up they can hear it. 

HTH,

Richard

 

 

 

“The secret is not to make your music louder, but to make the world quieter.” 

- Mitch Albom from The Magic Strings of Frankie Presto, page 1


On Apr 3, 2018, at 5:07 AM, John Doering <john.doering@...> wrote:

Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware.  It stated the spyware was now stealing my credit card numbers, passwords, and the rest.  It also stated this verbally in a female voice with what sounded like a British accent.  It demanded that I call Microsoft at an 800 number it provided.  It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success.  I then shut down my system, but when I powered back up the pop up came up again.  This time though, I was able to close the window.  I ran a  virus scan with Windows Defender and there were threats found.  I entered on the take action link and let it run its course.  I then ran MRT.exe which found nothing.  Then I shut down the system and have not started it since.  Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected. 

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

 

Thankyou,

 

 

John Doering

Administrative Pricing Specialist 

 

p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.


Val Paul
 

Hi Paul!

Send me the link for the free anti malwear please.

Which anti virus do you use?

Volley wants to know how his partner in crime is!


Val.

On 03/04/2018 13:47, paul lemm wrote:

Hi,

Not sure about costs to call Microsoft , as I’ve never called them before. But another thing you might want to try even if the message isn’t there afterwards is install malware bytes, I use a pretty good anti-virus but malare bytes  picks up stuff that antivirus won’t find. There’s a free and premium version, I use the free one and that works fine for me. hope you get it all sorted.

Paul

*From:*main@jfw.groups.io [mailto:main@jfw.groups.io] *On Behalf Of *John Doering
*Sent:* 03 April 2018 13:43
*To:* main@jfw.groups.io
*Subject:* Re: Spyware

Richard, Jessica, and Paul:

Thank you all for the advice.  If it comes up again, I will definitely call Microsoft accessibility.   Is there any charge for calling them?

Regards,

*John Doering*

Administrative Pricing Specialist****

**

*p. **414-778-3040 Ext 4063****t. **800-642-8778 **f.** 414-778-3392***

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.

*From:*Richard Turner [mailto:richardturner42@...]
*Sent:* Tuesday, April 03, 2018 7:25 AM
*To:* main@jfw.groups.io <mailto:main@jfw.groups.io>
*Subject:* Re: Spyware

John,

If you know the 800 number, you could Google it from your work computer to find out if it is for real, which I highly doubt.

But, I'd call Microsoft accessibility: 800-936-5900 from before turning on the computer. Ideally, from a speaker phone so when you turn it on, if the pop-up comes up they can hear it.

HTH,

Richard

“The secret is not to make your music louder, but to make the world quieter.”

- Mitch _Albom_ from The Magic Strings of Frankie Presto, page 1


On Apr 3, 2018, at 5:07 AM, John Doering <john.doering@... <mailto:john.doering@...>> wrote:

Hello:

When surfing the web last night, I entered on a link and got a pop
up window that stated Windows detected my system was attacked by
spyware.  It stated the spyware was now stealing my credit card
numbers, passwords, and the rest.  It also stated this verbally in
a female voice with what sounded like a British accent.  It
demanded that I call Microsoft at an 800 number it provided.  It
also stated that if I closed the window without calling that
Microsoft 800 number, Microsoft would to protect their system
disable my IP address.

I never trust pop ups from the web so tried to close the window
without success.  I then shut down my system, but when I powered
back up the pop up came up again.  This time though, I was able to
close the window.  I ran a  virus scan with Windows Defender and
there were threats found.  I entered on the take action link and
let it run its course.  I then ran MRT.exe which found nothing. 
Then I shut down the system and have not started it since. Keep
your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work
computer, so should not be infected.

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

Thankyou,

*John Doering*

Administrative Pricing Specialist**

**

*p. **414-778-3040 Ext 4063****t. **800-642-8778
**f.** 414-778-3392*****

NOTICE: The information contained in this email and any document
attached hereto is intended only for the named recipient(s). If
you are not the intended recipient, nor the employee or agent
responsible for delivering this message in confidence to the
intended recipient(s), you are hereby notified that you have
received this transmittal in error, and any review, dissemination,
distribution or copying of this transmittal or its attachments is
strictly prohibited. If you have received this transmittal and/or
attachments in error, please notify me immediately by reply e-mail
and then delete this message, including any attachments.


Gerald Levy
 

 
This happened to me a few months ago.  I was surfing the web for more information about Spectrum Internet service, and when I clicked on the link for a seemingly innocent web site, all of a sudden,a window popped up and a message in a synthesized female voice with a British accent started playing over and over  warning ominously that my computer had been taken over, and that if I wanted to have it restored to normal, I needed to call an 800 number.  The message would not stop repeating itself, and I could not close the window to get rid of it.  And I discovered to my horror that my computer had been frozen.  I could not access my desktop or start menu or launch any programs.  I could not access any files or folders.  I could not even bring up  the shutdown menu to shut down my computer, and I was afraid that if I tried to perform a hard shut down by pressing and holding the power button, my computer would not boot up when I pressed the power button again.  I figured that this was some kind of ransomware attack, so in a panic, I called the 800 number that the message kept repeating and was greeted by some scammer with a Nigerian accent who calmly told me that if I wanted my computer restored to normal,he would be glad to fix it for $150.  When I agreed to send $150 to some offshore account using PayPal, the guy proceeded to “fix” my computer.  I was scared sh-tless that my computer would never work again, but to my great relief, when I rebooted as the scammer instructed, everything was back to normal.  I ran full scans using MSE and Malware Bytes, and everything came up clean.  Fortunately, I got the last laugh because I immediately contacted PayPal which cancelled the transaction, so that the scammer never received a dime of my money.  These scanners can apparently circumvent even the most effective anti-malware programs, and no matter how careful you are, this can happen suddenly and unexpectedly without warning.  It is really scary.
 
Gerald
 
 
 

Sent: Tuesday, April 03, 2018 8:07 AM
Subject: Spyware
 

Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware.  It stated the spyware was now stealing my credit card numbers, passwords, and the rest.  It also stated this verbally in a female voice with what sounded like a British accent.  It demanded that I call Microsoft at an 800 number it provided.  It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success.  I then shut down my system, but when I powered back up the pop up came up again.  This time though, I was able to close the window.  I ran a  virus scan with Windows Defender and there were threats found.  I entered on the take action link and let it run its course.  I then ran MRT.exe which found nothing.  Then I shut down the system and have not started it since.  Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected. 

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

 

Thankyou,

 

 

John Doering

Administrative Pricing Specialist 

 
p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.


Richard Turner <richardturner42@...>
 

No charge, completely free, and in my expierience, they will work with you until the issue is resolved no matter howlong it takes.  I was on one call for almost 2 hours when my system had gotten really messed up.

I believe they are open in the United States from 6AM to 10PM week days and 6 to 3 on weekends.  Something like that.

I would suggest calling them anyway, and have them log into your computer to see if there are any traces left, even though you’ve done a check.

I’d also, obviously, not go near that web site again, grin.

 

Richard

 

 

 

“The secret is not to make your music louder, but to make the world quieter.” 

- Mitch Albom from The Magic Strings of Frankie Presto, page 1

 

From: main@jfw.groups.io <main@jfw.groups.io> On Behalf Of John Doering
Sent: Tuesday, April 3, 2018 5:43 AM
To: main@jfw.groups.io
Subject: Re: Spyware

 

Richard, Jessica, and Paul:

Thank you all for the advice.  If it comes up again, I will definitely call Microsoft accessibility.   Is there any charge for calling them?

 

Regards,

 

 

 

John Doering

Administrative Pricing Specialist 

 

p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.

From: Richard Turner [mailto:richardturner42@...]
Sent: Tuesday, April 03, 2018 7:25 AM
To: main@jfw.groups.io
Subject: Re: Spyware

 

John,

If you know the 800 number, you could Google it from your work computer to find out if it is for real, which I highly doubt.

But, I'd call Microsoft accessibility: 800-936-5900 from before turning on the computer. Ideally, from a speaker phone so when you turn it on, if the pop-up comes up they can hear it. 

HTH,

Richard

 

 

 

“The secret is not to make your music louder, but to make the world quieter.” 

- Mitch Albom from The Magic Strings of Frankie Presto, page 1


On Apr 3, 2018, at 5:07 AM, John Doering <john.doering@...> wrote:

Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware.  It stated the spyware was now stealing my credit card numbers, passwords, and the rest.  It also stated this verbally in a female voice with what sounded like a British accent.  It demanded that I call Microsoft at an 800 number it provided.  It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success.  I then shut down my system, but when I powered back up the pop up came up again.  This time though, I was able to close the window.  I ran a  virus scan with Windows Defender and there were threats found.  I entered on the take action link and let it run its course.  I then ran MRT.exe which found nothing.  Then I shut down the system and have not started it since.  Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected. 

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

 

Thankyou,

 

 

John Doering

Administrative Pricing Specialist 

 

p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.


John Doering
 

Thanks,

 

 

 

John Doering

Administrative Pricing Specialist 

 
p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.

From: Gerald Levy [mailto:bwaylimited@...]
Sent: Tuesday, April 03, 2018 8:08 AM
To: main@jfw.groups.io
Subject: Re: Spyware

 

 

This happened to me a few months ago.  I was surfing the web for more information about Spectrum Internet service, and when I clicked on the link for a seemingly innocent web site, all of a sudden,a window popped up and a message in a synthesized female voice with a British accent started playing over and over  warning ominously that my computer had been taken over, and that if I wanted to have it restored to normal, I needed to call an 800 number.  The message would not stop repeating itself, and I could not close the window to get rid of it.  And I discovered to my horror that my computer had been frozen.  I could not access my desktop or start menu or launch any programs.  I could not access any files or folders.  I could not even bring up  the shutdown menu to shut down my computer, and I was afraid that if I tried to perform a hard shut down by pressing and holding the power button, my computer would not boot up when I pressed the power button again.  I figured that this was some kind of ransomware attack, so in a panic, I called the 800 number that the message kept repeating and was greeted by some scammer with a Nigerian accent who calmly told me that if I wanted my computer restored to normal,he would be glad to fix it for $150.  When I agreed to send $150 to some offshore account using PayPal, the guy proceeded to “fix” my computer.  I was scared sh-tless that my computer would never work again, but to my great relief, when I rebooted as the scammer instructed, everything was back to normal.  I ran full scans using MSE and Malware Bytes, and everything came up clean.  Fortunately, I got the last laugh because I immediately contacted PayPal which cancelled the transaction, so that the scammer never received a dime of my money.  These scanners can apparently circumvent even the most effective anti-malware programs, and no matter how careful you are, this can happen suddenly and unexpectedly without warning.  It is really scary.

 

Gerald

 

 

 

From: John Doering

Sent: Tuesday, April 03, 2018 8:07 AM

Subject: Spyware

 

Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware.  It stated the spyware was now stealing my credit card numbers, passwords, and the rest.  It also stated this verbally in a female voice with what sounded like a British accent.  It demanded that I call Microsoft at an 800 number it provided.  It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success.  I then shut down my system, but when I powered back up the pop up came up again.  This time though, I was able to close the window.  I ran a  virus scan with Windows Defender and there were threats found.  I entered on the take action link and let it run its course.  I then ran MRT.exe which found nothing.  Then I shut down the system and have not started it since.  Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected. 

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

 

Thankyou,

 

 

John Doering

Administrative Pricing Specialist 

 

p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.


Richard Turner <richardturner42@...>
 

Next time, call Microsoft first.  Never, ever, no never, give any nameless person access to any of your funds or you may find a lot more than $150 gets taken.

I’d say you were extremely lucky.

If you have a cell phone, this is one reason now I have to set up a Be My Eyes account.  Because you can now connect directly with Microsoft Accessibility through Be My Eyes and you could have the camera pointed at your screen as you boot up and have a Microsoft person talk you through things like booting into safe mode, etc. 

 

Just my opinion, so take it as you will.

 

Richard

 

 

 

 

“The secret is not to make your music louder, but to make the world quieter.” 

- Mitch Albom from The Magic Strings of Frankie Presto, page 1

 

From: main@jfw.groups.io <main@jfw.groups.io> On Behalf Of Gerald Levy
Sent: Tuesday, April 3, 2018 6:08 AM
To: main@jfw.groups.io
Subject: Re: Spyware

 

 

This happened to me a few months ago.  I was surfing the web for more information about Spectrum Internet service, and when I clicked on the link for a seemingly innocent web site, all of a sudden,a window popped up and a message in a synthesized female voice with a British accent started playing over and over  warning ominously that my computer had been taken over, and that if I wanted to have it restored to normal, I needed to call an 800 number.  The message would not stop repeating itself, and I could not close the window to get rid of it.  And I discovered to my horror that my computer had been frozen.  I could not access my desktop or start menu or launch any programs.  I could not access any files or folders.  I could not even bring up  the shutdown menu to shut down my computer, and I was afraid that if I tried to perform a hard shut down by pressing and holding the power button, my computer would not boot up when I pressed the power button again.  I figured that this was some kind of ransomware attack, so in a panic, I called the 800 number that the message kept repeating and was greeted by some scammer with a Nigerian accent who calmly told me that if I wanted my computer restored to normal,he would be glad to fix it for $150.  When I agreed to send $150 to some offshore account using PayPal, the guy proceeded to “fix” my computer.  I was scared sh-tless that my computer would never work again, but to my great relief, when I rebooted as the scammer instructed, everything was back to normal.  I ran full scans using MSE and Malware Bytes, and everything came up clean.  Fortunately, I got the last laugh because I immediately contacted PayPal which cancelled the transaction, so that the scammer never received a dime of my money.  These scanners can apparently circumvent even the most effective anti-malware programs, and no matter how careful you are, this can happen suddenly and unexpectedly without warning.  It is really scary.

 

Gerald

 

 

 

From: John Doering

Sent: Tuesday, April 03, 2018 8:07 AM

Subject: Spyware

 

Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware.  It stated the spyware was now stealing my credit card numbers, passwords, and the rest.  It also stated this verbally in a female voice with what sounded like a British accent.  It demanded that I call Microsoft at an 800 number it provided.  It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success.  I then shut down my system, but when I powered back up the pop up came up again.  This time though, I was able to close the window.  I ran a  virus scan with Windows Defender and there were threats found.  I entered on the take action link and let it run its course.  I then ran MRT.exe which found nothing.  Then I shut down the system and have not started it since.  Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected. 

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

 

Thankyou,

 

 

John Doering

Administrative Pricing Specialist 

 

p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.


Gerald Levy
 

 
In retrospect, I probably should have called the MS accessibility helpline instead of calling the 800 number as instructed by the ransomware message.  But I was so freaked out that in a panic, I called the 800 number.  If I ever experience another such ransomware attack, I will definitely call the MS accessibility helpline first.
 
Gerald
 
 
 

Sent: Tuesday, April 03, 2018 9:08 AM
Subject: Re: Spyware
 

No charge, completely free, and in my expierience, they will work with you until the issue is resolved no matter howlong it takes.  I was on one call for almost 2 hours when my system had gotten really messed up.

I believe they are open in the United States from 6AM to 10PM week days and 6 to 3 on weekends.  Something like that.

I would suggest calling them anyway, and have them log into your computer to see if there are any traces left, even though you’ve done a check.

I’d also, obviously, not go near that web site again, grin.

 

Richard

 

 

 

“The secret is not to make your music louder, but to make the world quieter.”

- Mitch Albom from The Magic Strings of Frankie Presto, page 1

 

From: main@jfw.groups.io <main@jfw.groups.io> On Behalf Of John Doering
Sent: Tuesday, April 3, 2018 5:43 AM
To: main@jfw.groups.io
Subject: Re: Spyware

 

Richard, Jessica, and Paul:

Thank you all for the advice.  If it comes up again, I will definitely call Microsoft accessibility.   Is there any charge for calling them?

 

Regards,

 

 

 

John Doering

Administrative Pricing Specialist 

 

p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.

From: Richard Turner [mailto:richardturner42@...]
Sent: Tuesday, April 03, 2018 7:25 AM
To: main@jfw.groups.io
Subject: Re: Spyware

 

John,

If you know the 800 number, you could Google it from your work computer to find out if it is for real, which I highly doubt.

But, I'd call Microsoft accessibility: 800-936-5900 from before turning on the computer. Ideally, from a speaker phone so when you turn it on, if the pop-up comes up they can hear it.

HTH,

Richard

 

 

 

“The secret is not to make your music louder, but to make the world quieter.”

- Mitch Albom from The Magic Strings of Frankie Presto, page 1


On Apr 3, 2018, at 5:07 AM, John Doering <john.doering@...> wrote:

Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware.  It stated the spyware was now stealing my credit card numbers, passwords, and the rest.  It also stated this verbally in a female voice with what sounded like a British accent.  It demanded that I call Microsoft at an 800 number it provided.  It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success.  I then shut down my system, but when I powered back up the pop up came up again.  This time though, I was able to close the window.  I ran a  virus scan with Windows Defender and there were threats found.  I entered on the take action link and let it run its course.  I then ran MRT.exe which found nothing.  Then I shut down the system and have not started it since.  Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected. 

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

 

Thankyou,

 

 

John Doering

Administrative Pricing Specialist 

 

p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.


paul lemm
 

Hi Val,

No problems, I've put it in a dropbox link below. Any problems just let me know. Oh and murphy is doing good, he's knackered since its half term here and I've got my little boy staying with me , so murphys definitely getting a good workout haha

https://www.dropbox.com/s/yxn417c7jmletzw/malware%20bytes3-setup-consumer-3.3.1.2183-1.0.262-1.0.3780.exe?dl=1

-----Original Message-----
From: main@jfw.groups.io [mailto:main@jfw.groups.io] On Behalf Of Val Paul
Sent: 03 April 2018 14:04
To: main@jfw.groups.io
Subject: Re: Spyware

Hi Paul!

Send me the link for the free anti malwear please.

Which anti virus do you use?

Volley wants to know how his partner in crime is!


Val.


On 03/04/2018 13:47, paul lemm wrote:

Hi,

Not sure about costs to call Microsoft , as I’ve never called them
before. But another thing you might want to try even if the message
isn’t there afterwards is install malware bytes, I use a pretty good
anti-virus but malare bytes picks up stuff that antivirus won’t find.
There’s a free and premium version, I use the free one and that works
fine for me. hope you get it all sorted.

Paul

*From:*main@jfw.groups.io [mailto:main@jfw.groups.io] *On Behalf Of
*John Doering
*Sent:* 03 April 2018 13:43
*To:* main@jfw.groups.io
*Subject:* Re: Spyware

Richard, Jessica, and Paul:

Thank you all for the advice. If it comes up again, I will definitely
call Microsoft accessibility. Is there any charge for calling them?

Regards,

*John Doering*

Administrative Pricing Specialist****

**

*p. **414-778-3040 Ext 4063****t. **800-642-8778 **f.**
414-778-3392***

NOTICE: The information contained in this email and any document
attached hereto is intended only for the named recipient(s). If you
are not the intended recipient, nor the employee or agent responsible
for delivering this message in confidence to the intended
recipient(s), you are hereby notified that you have received this
transmittal in error, and any review, dissemination, distribution or
copying of this transmittal or its attachments is strictly prohibited.
If you have received this transmittal and/or attachments in error,
please notify me immediately by reply e-mail and then delete this
message, including any attachments.

*From:*Richard Turner [mailto:richardturner42@...]
*Sent:* Tuesday, April 03, 2018 7:25 AM
*To:* main@jfw.groups.io <mailto:main@jfw.groups.io>
*Subject:* Re: Spyware

John,

If you know the 800 number, you could Google it from your work
computer to find out if it is for real, which I highly doubt.

But, I'd call Microsoft accessibility: 800-936-5900 from before
turning on the computer. Ideally, from a speaker phone so when you
turn it on, if the pop-up comes up they can hear it.

HTH,

Richard

“The secret is not to make your music louder, but to make the world
quieter.”

- Mitch _Albom_ from The Magic Strings of Frankie Presto, page 1


On Apr 3, 2018, at 5:07 AM, John Doering <john.doering@...
<mailto:john.doering@...>> wrote:

Hello:

When surfing the web last night, I entered on a link and got a pop
up window that stated Windows detected my system was attacked by
spyware. It stated the spyware was now stealing my credit card
numbers, passwords, and the rest. It also stated this verbally in
a female voice with what sounded like a British accent. It
demanded that I call Microsoft at an 800 number it provided. It
also stated that if I closed the window without calling that
Microsoft 800 number, Microsoft would to protect their system
disable my IP address.

I never trust pop ups from the web so tried to close the window
without success. I then shut down my system, but when I powered
back up the pop up came up again. This time though, I was able to
close the window. I ran a virus scan with Windows Defender and
there were threats found. I entered on the take action link and
let it run its course. I then ran MRT.exe which found nothing.
Then I shut down the system and have not started it since. Keep
your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work
computer, so should not be infected.

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

Thankyou,

*John Doering*

Administrative Pricing Specialist**

**

*p. **414-778-3040 Ext 4063****t. **800-642-8778
**f.** 414-778-3392*****

NOTICE: The information contained in this email and any document
attached hereto is intended only for the named recipient(s). If
you are not the intended recipient, nor the employee or agent
responsible for delivering this message in confidence to the
intended recipient(s), you are hereby notified that you have
received this transmittal in error, and any review, dissemination,
distribution or copying of this transmittal or its attachments is
strictly prohibited. If you have received this transmittal and/or
attachments in error, please notify me immediately by reply e-mail
and then delete this message, including any attachments.


Sieghard Weitzel <sieghard@...>
 

Something like that is absolutely definitely not for real. If you had called this line they would have probably asked you to connect them to your computer to fix “the issue” and next thing you wold have been told that your computer was now encryped and if you want  it back you need to send them whatever amount of money.

I have even recceived phone calls where the person (usually with a heavy accent) was claiming to be from Microsoft and I urgently needed to give them access to my computer because they had detected it was infected by a bad virus… I usually have a bit of fun with these idiots before hanging up on them, some of them get outright nasty and threaten that I would get arrested if I don’t cooperate etc. Very funny.

 

From: main@jfw.groups.io <main@jfw.groups.io> On Behalf Of Richard Turner
Sent: Tuesday, April 3, 2018 5:25 AM
To: main@jfw.groups.io
Subject: Re: Spyware

 

John,

If you know the 800 number, you could Google it from your work computer to find out if it is for real, which I highly doubt.

But, I'd call Microsoft accessibility: 800-936-5900 from before turning on the computer. Ideally, from a speaker phone so when you turn it on, if the pop-up comes up they can hear it. 

HTH,

Richard

 

 

 

“The secret is not to make your music louder, but to make the world quieter.” 

- Mitch Albom from The Magic Strings of Frankie Presto, page 1


On Apr 3, 2018, at 5:07 AM, John Doering <john.doering@...> wrote:

Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware.  It stated the spyware was now stealing my credit card numbers, passwords, and the rest.  It also stated this verbally in a female voice with what sounded like a British accent.  It demanded that I call Microsoft at an 800 number it provided.  It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success.  I then shut down my system, but when I powered back up the pop up came up again.  This time though, I was able to close the window.  I ran a  virus scan with Windows Defender and there were threats found.  I entered on the take action link and let it run its course.  I then ran MRT.exe which found nothing.  Then I shut down the system and have not started it since.  Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected. 

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

 

Thankyou,

 

 

John Doering

Administrative Pricing Specialist 

 

p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.


Sieghard Weitzel <sieghard@...>
 

It won’t hurt your computer if you pull out the cord.

 

 

From: main@jfw.groups.io <main@jfw.groups.io> On Behalf Of Gerald Levy
Sent: Tuesday, April 3, 2018 6:24 AM
To: main@jfw.groups.io
Subject: Re: Spyware

 

 

In retrospect, I probably should have called the MS accessibility helpline instead of calling the 800 number as instructed by the ransomware message.  But I was so freaked out that in a panic, I called the 800 number.  If I ever experience another such ransomware attack, I will definitely call the MS accessibility helpline first.

 

Gerald

 

 

 

Sent: Tuesday, April 03, 2018 9:08 AM

Subject: Re: Spyware

 

No charge, completely free, and in my expierience, they will work with you until the issue is resolved no matter howlong it takes.  I was on one call for almost 2 hours when my system had gotten really messed up.

I believe they are open in the United States from 6AM to 10PM week days and 6 to 3 on weekends.  Something like that.

I would suggest calling them anyway, and have them log into your computer to see if there are any traces left, even though you’ve done a check.

I’d also, obviously, not go near that web site again, grin.

 

Richard

 

 

 

 

“The secret is not to make your music louder, but to make the world quieter.”

- Mitch Albom from The Magic Strings of Frankie Presto, page 1

 

From: main@jfw.groups.io <main@jfw.groups.io> On Behalf Of John Doering
Sent: Tuesday, April 3, 2018 5:43 AM
To: main@jfw.groups.io
Subject: Re: Spyware

 

Richard, Jessica, and Paul:

Thank you all for the advice.  If it comes up again, I will definitely call Microsoft accessibility.   Is there any charge for calling them?

 

Regards,

 

 

 

John Doering

Administrative Pricing Specialist 

 

p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.

From: Richard Turner [mailto:richardturner42@...]
Sent: Tuesday, April 03, 2018 7:25 AM
To: main@jfw.groups.io
Subject: Re: Spyware

 

John,

If you know the 800 number, you could Google it from your work computer to find out if it is for real, which I highly doubt.

But, I'd call Microsoft accessibility: 800-936-5900 from before turning on the computer. Ideally, from a speaker phone so when you turn it on, if the pop-up comes up they can hear it.

HTH,

Richard

 

 

 

“The secret is not to make your music louder, but to make the world quieter.”

- Mitch Albom from The Magic Strings of Frankie Presto, page 1


On Apr 3, 2018, at 5:07 AM, John Doering <john.doering@...> wrote:

Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware.  It stated the spyware was now stealing my credit card numbers, passwords, and the rest.  It also stated this verbally in a female voice with what sounded like a British accent.  It demanded that I call Microsoft at an 800 number it provided.  It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success.  I then shut down my system, but when I powered back up the pop up came up again.  This time though, I was able to close the window.  I ran a  virus scan with Windows Defender and there were threats found.  I entered on the take action link and let it run its course.  I then ran MRT.exe which found nothing.  Then I shut down the system and have not started it since.  Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected. 

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

 

Thankyou,

 

 

John Doering

Administrative Pricing Specialist 

 

p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.


netbat66
 

most of the time when you press alt f4, click on close, cancel etc. this will install the spyware.
you should not click on anything and turn the computer off with the power button.
without even trying to close it.
if you are realy infected, the only way you would be sure it is gone is to wipe the drive and re install windows from scratch.
or use a known good backup.

-----Original Message-----
From: Gerald Levy
Sent: Tuesday, April 03, 2018 6:07 AM
To: main@jfw.groups.io
Subject: Re: Spyware



This happened to me a few months ago. I was surfing the web for more information about Spectrum Internet service, and when I clicked on the link for a seemingly innocent web site, all of a sudden,a window popped up and a message in a synthesized female voice with a British accent started playing over and over warning ominously that my computer had been taken over, and that if I wanted to have it restored to normal, I needed to call an 800 number. The message would not stop repeating itself, and I could not close the window to get rid of it. And I discovered to my horror that my computer had been frozen. I could not access my desktop or start menu or launch any programs. I could not access any files or folders. I could not even bring up the shutdown menu to shut down my computer, and I was afraid that if I tried to perform a hard shut down by pressing and holding the power button, my computer would not boot up when I pressed the power button again. I figured that this was some kind of ransomware attack, so in a panic, I called the 800 number that the message kept repeating and was greeted by some scammer with a Nigerian accent who calmly told me that if I wanted my computer restored to normal,he would be glad to fix it for $150. When I agreed to send $150 to some offshore account using PayPal, the guy proceeded to “fix” my computer. I was scared sh-tless that my computer would never work again, but to my great relief, when I rebooted as the scammer instructed, everything was back to normal. I ran full scans using MSE and Malware Bytes, and everything came up clean. Fortunately, I got the last laugh because I immediately contacted PayPal which cancelled the transaction, so that the scammer never received a dime of my money. These scanners can apparently circumvent even the most effective anti-malware programs, and no matter how careful you are, this can happen suddenly and unexpectedly without warning. It is really scary.

Gerald



From: John Doering
Sent: Tuesday, April 03, 2018 8:07 AM
To: main@jfw.groups.io
Subject: Spyware


Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware. It stated the spyware was now stealing my credit card numbers, passwords, and the rest. It also stated this verbally in a female voice with what sounded like a British accent. It demanded that I call Microsoft at an 800 number it provided. It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success. I then shut down my system, but when I powered back up the pop up came up again. This time though, I was able to close the window. I ran a virus scan with Windows Defender and there were threats found. I entered on the take action link and let it run its course. I then ran MRT.exe which found nothing. Then I shut down the system and have not started it since. Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected.

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.



Thankyou,







John Doering

Administrative Pricing Specialist


p. 414-778-3040 Ext 4063 t. 800-642-8778 f. 414-778-3392















NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.


paul lemm
 

Hi,

 

Yeah, I’ve had a couple of these calls come through, I love letting them go through their speel  about microsoft noticing I have an issue, then tell them I’ve got a MAC! Haha, I don’t actually have a mac, its just fun winding them up!. To be fair though the honest truth is you have to remember Microsoft are simply a company that supply your operating system and have no way of detecting if you have a problem or a virus, and even if they did they wouldn’t contact everyone about virus’s on their PC’s since it would take thousands upon thousands of manpower  hours to do and since they are only the providers of operating system its not something that has anything to do with them , so even if they could detect it they still wouldn’t contact you , that is what your anti-virus software is for.

 

Paul

 

 

From: main@jfw.groups.io [mailto:main@jfw.groups.io] On Behalf Of Sieghard Weitzel
Sent: 03 April 2018 16:03
To: main@jfw.groups.io
Subject: Re: Spyware

 

Something like that is absolutely definitely not for real. If you had called this line they would have probably asked you to connect them to your computer to fix “the issue” and next thing you wold have been told that your computer was now encryped and if you want  it back you need to send them whatever amount of money.

I have even recceived phone calls where the person (usually with a heavy accent) was claiming to be from Microsoft and I urgently needed to give them access to my computer because they had detected it was infected by a bad virus… I usually have a bit of fun with these idiots before hanging up on them, some of them get outright nasty and threaten that I would get arrested if I don’t cooperate etc. Very funny.

 

From: main@jfw.groups.io <main@jfw.groups.io> On Behalf Of Richard Turner
Sent: Tuesday, April 3, 2018 5:25 AM
To: main@jfw.groups.io
Subject: Re: Spyware

 

John,

If you know the 800 number, you could Google it from your work computer to find out if it is for real, which I highly doubt.

But, I'd call Microsoft accessibility: 800-936-5900 from before turning on the computer. Ideally, from a speaker phone so when you turn it on, if the pop-up comes up they can hear it. 

HTH,

Richard

 

 

 

“The secret is not to make your music louder, but to make the world quieter.” 

- Mitch Albom from The Magic Strings of Frankie Presto, page 1


On Apr 3, 2018, at 5:07 AM, John Doering <john.doering@...> wrote:

Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware.  It stated the spyware was now stealing my credit card numbers, passwords, and the rest.  It also stated this verbally in a female voice with what sounded like a British accent.  It demanded that I call Microsoft at an 800 number it provided.  It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success.  I then shut down my system, but when I powered back up the pop up came up again.  This time though, I was able to close the window.  I ran a  virus scan with Windows Defender and there were threats found.  I entered on the take action link and let it run its course.  I then ran MRT.exe which found nothing.  Then I shut down the system and have not started it since.  Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected. 

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.

 

Thankyou,

 

 

John Doering

Administrative Pricing Specialist 

 

p. 414-778-3040 Ext 4063  t. 800-642-8778 f. 414-778-3392

 

NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.


David & his pack of dogs <myguidedogis@...>
 

I had something similar happen when downloading a song from YouTube. It said my adobe player might be out of date so I needed to update it. Eventually, I got the blue screen with the prompts mentioned below about having to call a 800 number. I took it to Best Buy who have a plan where you pay $22 per month and they fix your computer for you with no labour charges. Not bad when I had my mac converted to Windows with JAWS 2018 installed. I just paid for the installation disc. The labour to convert the computer would have normally cost me $190. Since I subscribed to that plan, it cost me nothing. I still from time to time get the prompt that my flash player may be out of date. Now I just hit alt F4 and that closes the program. Also, best buy has installed bit defender on my computer so that catches malicious installations as well before they get installed by the computer challenged persons like myself. Here is something to note. Windows 10 comes with its own player so flash is not needed, according to the instructions. This unto itself means the flash warning is a scam. Bit defender also warns me against fishing programs, naturally, I click on the appropriate program to prevent such infectious software.

-----Original Message-----
From: main@jfw.groups.io <main@jfw.groups.io> On Behalf Of netbat66
Sent: April 3, 2018 8:11 AM
To: main@jfw.groups.io
Subject: Re: Spyware

most of the time when you press alt f4, click on close, cancel etc. this will install the spyware.
you should not click on anything and turn the computer off with the power button.
without even trying to close it.
if you are really infected, the only way you would be sure it is gone is to wipe the drive and re install windows from scratch.
or use a known good backup.




-----Original Message-----
From: Gerald Levy
Sent: Tuesday, April 03, 2018 6:07 AM
To: main@jfw.groups.io
Subject: Re: Spyware



This happened to me a few months ago. I was surfing the web for more
information about Spectrum Internet service, and when I clicked on the link for
a seemingly innocent web site, all of a sudden, a window popped up and a message
in a synthesized female voice with a British accent started playing over and
over warning ominously that my computer had been taken over, and that if I
wanted to have it restored to normal, I needed to call an 800 number. The
message would not stop repeating itself, and I could not close the window to
get rid of it. And I discovered to my horror that my computer had been frozen.
I could not access my desktop or start menu or launch any programs. I could
not access any files or folders. I could not even bring up the shutdown menu
to shut down my computer, and I was afraid that if I tried to perform a hard
shut down by pressing and holding the power button, my computer would not boot
up when I pressed the power button again. I figured that this was some kind of
ransomware attack, so in a panic, I called the 800 number that the message kept
repeating and was greeted by some scammer with a Nigerian accent who calmly
told me that if I wanted my computer restored to normal, he would be glad to fix
it for $150. When I agreed to send $150 to some offshore account using PayPal,
the guy proceeded to “fix” my computer. I was scared sh-tless that my computer
would never work again, but to my great relief, when I rebooted as the scammer
instructed, everything was back to normal. I ran full scans using MSE and
Malware Bytes, and everything came up clean. Fortunately, I got the last laugh
because I immediately contacted PayPal which cancelled the transaction, so that
the scammer never received a dime of my money. These scanners can apparently
circumvent even the most effective anti-malware programs, and no matter how
careful you are, this can happen suddenly and unexpectedly without warning. It
is really scary.

Gerald



From: John Doering
Sent: Tuesday, April 03, 2018 8:07 AM
To: main@jfw.groups.io
Subject: Spyware


Hello:

When surfing the web last night, I entered on a link and got a pop up window
that stated Windows detected my system was attacked by spyware. It stated the
spyware was now stealing my credit card numbers, passwords, and the rest. It
also stated this verbally in a female voice with what sounded like a British
accent. It demanded that I call Microsoft at an 800 number it provided. It
also stated that if I closed the window without calling that Microsoft 800
number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without
success. I then shut down my system, but when I powered back up the pop up
came up again. This time though, I was able to close the window. I ran a
virus scan with Windows Defender and there were threats found. I entered on
the take action link and let it run its course. I then ran MRT.exe which found
nothing. Then I shut down the system and have not started it since. Keep your
fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so
should not be infected.

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.



Thankyou,







John Doering

Administrative Pricing Specialist


p. 414-778-3040 Ext 4063 t. 800-642-8778 f. 414-778-3392















NOTICE: The information contained in this email and any document attached
hereto is intended only for the named recipient(s). If you are not the intended
recipient, nor the employee or agent responsible for delivering this message in
confidence to the intended recipient(s), you are hereby notified that you have
received this transmittal in error, and any review, dissemination, distribution
or copying of this transmittal or its attachments is strictly prohibited. If
you have received this transmittal and/or attachments in error, please notify
me immediately by reply e-mail and then delete this message, including any
attachments.


Gudrun Brunot
 

Hi John: Did you try copying that number to the clipboard and searching the
web to see if it's legit/

Hope your system is okay.



Gudrun

-----Original Message-----
From: main@jfw.groups.io [mailto:main@jfw.groups.io] On Behalf Of John
Doering
Sent: Tuesday, April 03, 2018 5:07 AM
To: main@jfw.groups.io
Subject: Spyware

Hello:

When surfing the web last night, I entered on a link and got a pop up window
that stated Windows detected my system was attacked by spyware. It stated
the spyware was now stealing my credit card numbers, passwords, and the
rest. It also stated this verbally in a female voice with what sounded like
a British accent. It demanded that I call Microsoft at an 800 number it
provided. It also stated that if I closed the window without calling that
Microsoft 800 number, Microsoft would to protect their system disable my IP
address.

I never trust pop ups from the web so tried to close the window without
success. I then shut down my system, but when I powered back up the pop up
came up again. This time though, I was able to close the window. I ran a
virus scan with Windows Defender and there were threats found. I entered on
the take action link and let it run its course. I then ran MRT.exe which
found nothing. Then I shut down the system and have not started it since.
Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so
should not be infected.

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.



Thankyou,





John Doering

Administrative Pricing Specialist


p. 414-778-3040 Ext 4063 t. 800-642-8778 f. 414-778-3392



NOTICE: The information contained in this email and any document attached
hereto is intended only for the named recipient(s). If you are not the
intended recipient, nor the employee or agent responsible for delivering
this message in confidence to the intended recipient(s), you are hereby
notified that you have received this transmittal in error, and any review,
dissemination, distribution or copying of this transmittal or its
attachments is strictly prohibited. If you have received this transmittal
and/or attachments in error, please notify me immediately by reply e-mail
and then delete this message, including any attachments.


Gudrun Brunot
 

There's no cost when calling Microsoft Disability Answer desk, 1-800-936-5900

Good luck.

Gudrun

-----Original Message-----
From: main@jfw.groups.io [mailto:main@jfw.groups.io] On Behalf Of paul lemm
Sent: Tuesday, April 03, 2018 5:48 AM
To: main@jfw.groups.io
Subject: Re: Spyware

Hi,



Not sure about costs to call Microsoft , as I’ve never called them before. But another thing you might want to try even if the message isn’t there afterwards is install malware bytes, I use a pretty good anti-virus but malare bytes picks up stuff that antivirus won’t find. There’s a free and premium version, I use the free one and that works fine for me. hope you get it all sorted.





Paul





From: main@jfw.groups.io [mailto:main@jfw.groups.io] On Behalf Of John Doering
Sent: 03 April 2018 13:43
To: main@jfw.groups.io
Subject: Re: Spyware



Richard, Jessica, and Paul:

Thank you all for the advice. If it comes up again, I will definitely call Microsoft accessibility. Is there any charge for calling them?



Regards,







John Doering

Administrative Pricing Specialist



p. 414-778-3040 Ext 4063 t. 800-642-8778 f. 414-778-3392



NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.

From: Richard Turner [mailto:richardturner42@...]
Sent: Tuesday, April 03, 2018 7:25 AM
To: main@jfw.groups.io
Subject: Re: Spyware



John,

If you know the 800 number, you could Google it from your work computer to find out if it is for real, which I highly doubt.

But, I'd call Microsoft accessibility: 800-936-5900 from before turning on the computer. Ideally, from a speaker phone so when you turn it on, if the pop-up comes up they can hear it.

HTH,

Richard







“The secret is not to make your music louder, but to make the world quieter.”

- Mitch Albom from The Magic Strings of Frankie Presto, page 1


On Apr 3, 2018, at 5:07 AM, John Doering <john.doering@...> wrote:

Hello:

When surfing the web last night, I entered on a link and got a pop up window that stated Windows detected my system was attacked by spyware. It stated the spyware was now stealing my credit card numbers, passwords, and the rest. It also stated this verbally in a female voice with what sounded like a British accent. It demanded that I call Microsoft at an 800 number it provided. It also stated that if I closed the window without calling that Microsoft 800 number, Microsoft would to protect their system disable my IP address.

I never trust pop ups from the web so tried to close the window without success. I then shut down my system, but when I powered back up the pop up came up again. This time though, I was able to close the window. I ran a virus scan with Windows Defender and there were threats found. I entered on the take action link and let it run its course. I then ran MRT.exe which found nothing. Then I shut down the system and have not started it since. Keep your fingers crossed that it is gone when I power up.

For your information, I am sending this message from my work computer, so should not be infected.

Has anyone heard of this and is the 800 number legit?

Any help would be appreciated.



Thankyou,





John Doering

Administrative Pricing Specialist



p. 414-778-3040 Ext 4063 t. 800-642-8778 f. 414-778-3392



NOTICE: The information contained in this email and any document attached hereto is intended only for the named recipient(s). If you are not the intended recipient, nor the employee or agent responsible for delivering this message in confidence to the intended recipient(s), you are hereby notified that you have received this transmittal in error, and any review, dissemination, distribution or copying of this transmittal or its attachments is strictly prohibited. If you have received this transmittal and/or attachments in error, please notify me immediately by reply e-mail and then delete this message, including any attachments.