malware

Why is my printer printing out ads?

Episode 1547

Steve from Nashville, TN

Steve's printer is suddenly printing out ads. What the heck? Leo says there's a good chance he got nailed by either a browser hijack, or malware that has replaced his printer driver. He recommends using Malware Bytes, by only get it from the original creator. The chatroom says that there is a printer exploitation tool kit out there on the web. It could be that there's malware in the HP firmware as well.

Is AdChoices malware?

Frustrated computer user

Episode 1543

Steve from West Virginia

Steve fears his Android phone has been attacked by a virus. He's suddenly getting something called "AdChoices." Leo says that AdChoices is by The Digital Advertising Alliance, and is a response to Ad Blockers. It lets users fine tune their ad preferences. Steve can go into his browser settings and turn off popups and redirects. Then he can clear out his browser cache.

Why are my browsers crashing?

Microsoft Edge Browser

Episode 1541

Steve from Redondo Beach, CA

Steve is having trouble with Google Chrome and Microsoft Edge. After about 2 minutes, both apps crash. Leo says that it could be malware infecting his browsers. But more likely there's a render driver that both browsers use which is causing the crash when he visits certain websites. Leo recommends doing a thorough scan using Windows Defender, and he should also run the Microsoft Malicious Software Removal Tool from the command line. To get to that, he can press the Windows Key and type MRT. Leo also suspects that Java is broken.

Run Individual Programs as Administrator

One of the ways you can easily protect yourself against malware and viruses is by running as a "Standard" or "Limited" user in Windows. When you run as administrator, programs can easily get full access to your system, including those that might be installed without your knowledge. But when you run as a standard user, you may run into an issue where a program won't run because it requires more permissions. An example of software that would require additional permissions would be a screen recording program. When this happens, you can elect to run that individual program as administrator.

Is my computer infected?

Keyboard

Episode 1515

Tom from Montana

Tom has a friend who gave a technician remote access after calling a number in a popup ad for his Echo. Leo says he fell victim to a scam and there's a good chance that his computer is infected with malware, a key logger, remote access trojans, the works. At this point, the only safe thing to do is backup the data, format the hard drive, and reinstall Windows from a known, safe source, then update. Only then can he be sure his computer is safe.

Does my Mac have ransomware?

MacBook Pro

Episode 1505

Justin from San Diego, CA

Justin's mother-in-law has a MacBook Pro that has ransomware on it. She just gets a blue screen. Leo says that Macs don't get blue screens, they kernel panic. It's likely an exploit in Javascript that is locking up her cursor to make her think the computer is frozen. She can press ALT + TAB to get out of the browser and she'll probably be fine. Then, she should turn off Javascript. Leo says it will not happen after that.

Is my computer safe?

Virus image on monitor

Episode 1501

John from Temecula, CA

John's friend got bit by the popup that said she had a virus and then when she called "Microsoft support" they wanted $300 to fix it. Leo says it's a phishing scam. And once you give someone access to your computer, not only will they not fix anything, but they make the infection even worse by installing other malware. The only way forward now is to backup the data, format the hard drive, and then reinstall Windows.

Is my router safe?

Netgear Nighthawk AC2300

Episode 1500

Heidi from Santa Monica, CA

Heidi is worried about the Russian VPN Filter hack. She bought a Netgear router to replace it. Is she safe? Leo says that some Netgear models aren't protected, but if she installs the latest firmware, she should be OK, and NetGear does update routers automatically.