You have a good antivirus program that is updated, you have Malwarebytes that is running all the time in the background, you don’t go to websites that are considered “bad neighborhoods”…so how in the world does spyware get planted in your computer? I recently saw a good example of how it happens.
This past weekend I was over at a friend’s house, and while I was there he asked me about this screen that showed up on his computer. It looked like Windows was warning him about all kinds of problems that he needed to get rid of. It was a complete scam.
Here is how it happened (you can click on any image to see it full size).
My friend Brian was on Google, and he did a simple search to research some information about a handgun. Here is the search he did:
The important entry in the search results is the last one in the image:
On the surface it looks innocent enough, except that some of the wording in the title appears to be something other than English. Anyway, Brian clicked on that link and then he was directed to this page:
This page is very cleverly designed to look like the Windows Explorer screen on your computer (click to see it full size if the image above is too small). However, that is not any kind of warning your computer would create. It is simply a web page designed to look that way. That green bar in the middle filled up just like a regular progress bar does, but it is only an animated image.
After that screen was there for a few seconds, Brian knew something wasn’t right about this, and he clicked the X to close the window. That’s when this appeared:
That’s the scammers making one last attempt to download their software to Brian’s computer. Had he clicked on the link they told him he should, he REALLY would have been infected. In many cases these “rogue antispyware” programs can render a computer virtually unusable until they are removed.
3 lessons to learn from this:
1. Any website, however innocent it may seem, could be malicious and try to install bad stuff on your computer.
2. You need to have antispyware software, such as Malwarebytes, installed and running. I did a full video review on Malwarebytes not long ago.
3. You need to keep your web browser up to date. The web browser that Brian was using is Internet Explorer 8. You might notice at the top of the image on the “scam” screen, IE8 blocked the site from downloading software. Earlier versions of Internet Explorer might have just let it come right in. When I went to that same page using Firefox, I got this warning: