| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 138707 | 2015-01-10 08:59:00 | New Ransomware | blanco (11336) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 1391823 | 2015-01-12 07:49:00 | CryptoLocker prevention tool: www.foolishit.com Read the description - may have prevented Digby's problem ? |
blanco (11336) | ||
| 1391824 | 2015-01-12 08:38:00 | CryptoLocker prevention tool: www.foolishit.com Read the description - may have prevented Digby's problem ? But how many more security software programs does the world need. And surely Defender and Malware bytes look for it. Maybe I should have bought the full version of Malware Bytes. Maybe I should not have let two people use my computer for a day. I have been using it for years with no problems like this. I know what to look for in phishing emails etc etc. |
Digby (677) | ||
| 1391825 | 2015-01-12 09:03:00 | [QUOTE=Digby;1214207]But how many more security software programs does the world need. And surely Defender and Malware bytes look for it. It seems that ransomeware such as CryptoLocker are able to bypass most if not all conventional protection programs installed on Windows operating systems. Hence the need for additional protection against encryption malware. Cryptoprevent is a small unintrusive system monitoring tool (about 4MB) which runs alongside your main installed protection and is dedicated to detect and prevent any attempt to encrypt system files. Must be worthwhile downloading and installing. By now it should be a component of all AV software but sadly not. |
blanco (11336) | ||
| 1391826 | 2015-01-12 09:23:00 | Sorry if this sounds a bit blunt, BUT Who ever opened the files, and they are generally zipped -- Its done so "maybe" is irrelevant. I'm sure you know better, no one I know would send " your invoice, Receipt" in a zipped file. This is NOT a criticism on your skills, its just some points. What many people don't understand, the Free Versions, like Malwarebytes are NOT real-time protection. A person needs to purchase to get that, some people are tighter than a fishes bum. The same with the software linked above for CryptoLocker , the free version is partly disabled. These types of programs are really cures rather than prevention. Even then they still need to be setup fully. Its a like ALL antivirus Software, some of the more real-time protection is not enabled by default. Some AV's dont enable PUPS by default, that's why when installing a person has to either have a read or get help from someone who knows the software. Most people simply install and "She'll be right" :D Seen it MANY times, some resellers Of Nod32 simply install the software, and don't enable the advanced features. The same with Avast, some of the higher options are disabled. Today did a scan with Nod on a PC riddled with infections, several Trojans and rootkits (over 160 total) , had latest Avast and at least 40% of Avast was disabled. When setting up Nod, it only takes a few seconds to enable the advanced features and it works a lot better -- Its all about what you are providing & knowing the software. Rant Over :p |
wainuitech (129) | ||
| 1391827 | 2015-01-12 16:47:00 | @Wainuitech That was a good rant. I am pretty sure that I did not open any email zipped file. But I do get a lot of them from the IRD (dur) and overseas courier companies and banks that I do not even bank with. As I have said there were two people using my pc that day. It may have been them. It may have been me. But Yes I need to look into getting a paid for live version of my anti virus. |
Digby (677) | ||
| 1391828 | 2015-01-12 18:07:00 | Their is lots of ways this gets in,when the first Ransomware virus was going around last year there was lots of ways it got in At the time Hitman Pro was a fix and they added Hitman Pro Alert and another,Cryptoprevent was bought out to stop intrusions I installed Hitman Pro alert after fixing a couple of comps disabled by ransomware,latest build www.surfright.nl This has now morphed into Cryptolocker which encrypts files which is scary ,sure makes you up your security Last year Malwarebytes was offering lifetime licences as a givaway for a time for their Pro version which is on watch full time(Realtime protection) |
Lawrence (2987) | ||
| 1391829 | 2015-01-12 23:37:00 | CryptoLocker prevention tool: www.foolishit.com Read the description - may have prevented Digby's problem ? Whilst it "May have prevented" my problems. the name of the website and the fact that they offer me bingo type prizes hardly gives me encouragement to try it. I think the best thing will be to get a paid version of WalwareBytes and run it in real time. |
Digby (677) | ||
| 1391830 | 2015-01-12 23:56:00 | I think I have removed Crpytolocker from my PC. Now I need to restore from my backups. But I still have the horrible Cryptolocker message on my desktop which is now black. Can anyone suggest how I can remove this. |
Digby (677) | ||
| 1391831 | 2015-01-13 00:11:00 | Did you try the fix wainui suggested,Fox-IT and FireEye ,looks like the only one Story here www.bbc.com looks like you are the only one here to be hit with this and it would be interesting on how you deal with it,helps us all |
Lawrence (2987) | ||
| 1391832 | 2015-01-13 01:07:00 | What did you scan with to remove it ? Malwarebytes should have gotten it, but it may have missed a bit. Download the Emsisoft Emergency Kit (makers of the new version removal tool) www.emsisoft.com once extracted, by default the exe puts it in a folder on the C drive called EEK. Run the scanner in FULL SCAN option, see if it locates anything else. Other wise it may be a wallpaper type file showing ? |
wainuitech (129) | ||
| 1 2 3 4 | |||||