Page 1 of 2 12 LastLast
Results 1 to 15 of 21

Thread: Ransomware

  1. #1
    New Lounger
    Join Date
    Mar 2011
    Posts
    24
    Thanks
    1
    Thanked 0 Times in 0 Posts

    Question Ransomware

    I have a friend that still uses Windows XP. She recently had her computer worked on and they put in a new hard drive. She said it was faster but she still had problems. Anyway, I sent her links for VLC Media Player, CCleaner, and Foxit PDF reader. The links I sent were ones I normally use and my NIS2013
    said they were safe, but then she got something called fixit something (can't remember) I sent her a link to get rid of that and also to uninstall, just stuff
    I found online about it. After that she had something called White Smoke. I did a search and found a link simple removal of white smoke. NIS said the
    site was safe. She installed that program and now seems to have ransomware. They want her to pay. I hope my links didn't cause her all these problems. I have tested the VLC, CCleaner and Foxit links but not the one to remove white smoke. I relied on NIS. Anyway, is there anything she can do. Supposedly
    she has Norton 360 installed. I suggested she take it back to the people who fixed it because she has had nothing but trouble since, or if she still has the
    original CDs to do a complete reinstall. I don't think she does though. Told her not to pay anything and to get a new computer, which she has been talking about.

  2. Subscribe to our Windows Secrets Newsletter - It's Free!

    Get our unique weekly Newsletter with tips and techniques, how to's and critical updates on Windows 7, Windows 8, Windows XP, Firefox, Internet Explorer, Google, etc. Join our 480,000 subscribers!

    Excel 2013: The Missing Manual

    + Get this BONUS — free!

    Get the most of Excel! Learn about new features, basics of creating a new spreadsheet and using the infamous Ribbon in the first chapter of Excel 2013: The Missing Manual - Subscribe and download Chapter 1 for free!

  3. #2
    Administrator
    Join Date
    Jun 2010
    Location
    Portugal
    Posts
    10,208
    Thanks
    129
    Thanked 1,145 Times in 1,054 Posts
    It seems that many of these ransomware apps can be removed by booting in safe mode with networking, downloading something like Malwarebytes Antimalware and executing it from safe mode. Maybe something for your friend to try?
    Rui
    -------
    R4

  4. #3
    Silver Lounger
    Join Date
    Aug 2012
    Posts
    1,689
    Thanks
    27
    Thanked 235 Times in 230 Posts
    I think a lot depends upon the type of Ransomware it is and while MBAM or another scanner may be able to remove it, it may not free up access to personal files and restoring to a point prior to the infection may do both.

    The following are links which may help, with one showing how to access the restore points via Safe Mode with Command Prompt which can be done after the infection has been removed, should Safe Mode not be accessible while the infection is present.

    It's also best if your friend disconnects from the Internet until the computer is back to normal.

    http://www.microsoft.com/security/po...ansomware.aspx

    http://malwaretips.com/blogs/remove-police-trojan/

    http://blog.malwarebytes.org/intelli...-need-to-know/

    When you get the computer back to normal then download the free version of CryptoPrevent and on any other machine.

    The Majorgeeks download option is a safe and straight forward download link and the author's site will show how to use it
    http://www.foolishit.com/vb6-projects/cryptoprevent/
    Last edited by Sudo15; 2013-12-07 at 17:28.

  5. #4
    Silver Lounger
    Join Date
    Aug 2012
    Posts
    1,689
    Thanks
    27
    Thanked 235 Times in 230 Posts
    Given how serious a threat Ransomware has become, it stresses the importance for all to make regular system images and for some additional info on what has become the most prevalent, I've since come across this bleepingcomputer.com FAQ sheet which should be required reading for all.
    Last edited by Sudo15; 2013-12-08 at 05:20.

  6. #5
    Bronze Lounger DrWho's Avatar
    Join Date
    Dec 2009
    Location
    Central Florida
    Posts
    1,218
    Thanks
    15
    Thanked 163 Times in 126 Posts
    Norton did nothing to prevent or stop the infection. That should be evidence enough that Norton should be DELETED (UnInstalled) and replaced by a program that could better protect that computer.

    Myself and my hundreds of customers all use "AVG 2014 FREE" as our Anti-Virus programs, and MalwareBytes as a backup.
    We all remain "Ransomware" free.

    Good Luck!
    The Doctor
    Experience is truly the best teacher.

    Backup! Backup! Backup! GHOST Rocks!

  7. #6
    Silver Lounger
    Join Date
    Aug 2012
    Posts
    1,689
    Thanks
    27
    Thanked 235 Times in 230 Posts
    AV programs are just that, they block viruses and not malware which Ransomware is a type of and is usually contracted by clicking on infected links either in e-mails, instant messages, social networking sites or even a malicious website and is not a drive by.

    That is why regardless of your AV program, you should always have a competent scanner such as MBAM for malware and no AV program is 100% effective however safe you may feel.

    Safe browsing and not clicking on links in e-mails that you don't know the origin of however tempting an offer may be, are things to keep in mind to prevent any infection.

    I use Norton 360 and MBAM and because of safe browsing, I'm also infection free.

  8. #7
    Administrator
    Join Date
    Jun 2010
    Location
    Portugal
    Posts
    10,208
    Thanks
    129
    Thanked 1,145 Times in 1,054 Posts
    Quote Originally Posted by Sudo15 View Post
    AV programs are just that, they block viruses and not malware which Ransomware is a type of and is usually contracted by clicking on infected links either in e-mails, instant messages, social networking sites or even a malicious website and is not a drive by.

    That is why regardless of your AV program, you should always have a competent scanner such as MBAM for malware and no AV program is 100% effective however safe you may feel.
    I fear this is not an accurate definition of what a modern anti-malware app should do. Security apps of this type should be seen as more than anti-viruses and the best will protect you against any software that prevents you from using your computer or access your files when you need to. If a single app doesn't do it, you should use more than one - build a layer of live, real time apps that protect you against it. This is not only possible now, but this isn't even new technology. I have been doing that since I went online from home - for more than 10 years!
    Rui
    -------
    R4

  9. #8
    Bronze Lounger DrWho's Avatar
    Join Date
    Dec 2009
    Location
    Central Florida
    Posts
    1,218
    Thanks
    15
    Thanked 163 Times in 126 Posts
    Quote Originally Posted by ruirib View Post
    I fear this is not an accurate definition of what a modern anti-malware app should do. Security apps of this type should be seen as more than anti-viruses and the best will protect you against any software that prevents you from using your computer or access your files when you need to. If a single app doesn't do it, you should use more than one - build a layer of live, real time apps that protect you against it. This is not only possible now, but this isn't even new technology. I have been doing that since I went online from home - for more than 10 years!
    You're right, protection should be "Layered" to protect against all sorts of Bad Stuff that doesn't qualify as a Virus. Some programs will overlap protections, , , like Spybot Search & Destroy that is basically designed to find and remove adware/spyware, will sometimes find and remove a Trojan. But I do have "Trojan Hunter 5.0" to specifically remove Trojans. It's not FREE, but it's not real expensive either, so I bought it.

    Ten years? Heck, I have socks older than that!!! I've been a Computer (PC) Specialist for 33 years and worked on mainframes and other electronics, as far back as 1964. But ten years is good too. We all had to start somewhere. Eh?

    Back on topic: You can actually get your PC loaded down, by running too many programs in real time. I do run AVG 2014 FREE, in real time, but the rest of my protection programs are only run, when I run updates and scans, several times a week. I don't want to swamp my 8 yr old CPU by running too many heavy duty programs at once. Although, it can run five scanners at the same time, without throwing a fit (BSOD or Crash).

    But not every PC can do that, so running your scanners, one at a time might be better. But do run them, no less than once a week.

    Happy Holidays Mates!
    The Doctor
    Experience is truly the best teacher.

    Backup! Backup! Backup! GHOST Rocks!

  10. #9
    Administrator
    Join Date
    Jun 2010
    Location
    Portugal
    Posts
    10,208
    Thanks
    129
    Thanked 1,145 Times in 1,054 Posts
    Quote Originally Posted by DrWho View Post
    Ten years? Heck, I have socks older than that!!! I've been a Computer (PC) Specialist for 33 years and worked on mainframes and other electronics, as far back as 1964. But ten years is good too. We all had to start somewhere. Eh?
    I didn't start working with computers 10 years ago. I started using HIPS around 10 years ago, coupled with AVs, when most people were not even using firewalls.

    27 years ago, I wrote my first program in C, programming a Data General Nova 4/X. I hope your socks are newer than that .

    I first programmed my very own computer, in machine-code, inserting hexadecimal codes and calculating jumps by hand, 26 years ago. It was a ZX-Spectrum, a truly amazing machine, invented by Sir Clive Sinclair.

    Anyway, experience doesn't really matter as much as what you do with it. And you know, to this day, the more I learn, the more I am convinced I need to learn even more.

    Quote Originally Posted by DrWho View Post
    But not every PC can do that, so running your scanners, one at a time might be better. But do run them, no less than once a week.
    So, running a scanner after the fact will tell you what? That you were infected? Likely your infecting malware will let you know before that.

    Nothing beats real-time, decent protection. Nothing. That is what users should strive for. Regular scans are ok, but they are not a replacement for real-time protection.
    Rui
    -------
    R4

  11. #10
    Super Moderator jwitalka's Avatar
    Join Date
    Dec 2009
    Location
    Minnesota
    Posts
    4,662
    Thanks
    67
    Thanked 531 Times in 480 Posts
    Quote Originally Posted by ruirib View Post
    Anyway, experience doesn't really matter as much as what you do with it. And you know, to this day, the more I learn, the more I am convinced I need to learn even more.
    Amen Rui. By the way, that Sinclair was my first PC as well. Built it from a kit and managed to add in some additional memory.

    Jerry

  12. #11
    Silver Lounger mrjimphelps's Avatar
    Join Date
    Dec 2009
    Location
    USA
    Posts
    2,139
    Thanks
    202
    Thanked 206 Times in 198 Posts
    Atari ST 1040 was my first, and the original IBM PC (model B) was my 2nd. 640 K of RAM, 20 MB hard drive!

    But at least the IBM had a real keyboard.

  13. #12
    Administrator
    Join Date
    Jun 2010
    Location
    Portugal
    Posts
    10,208
    Thanks
    129
    Thanked 1,145 Times in 1,054 Posts
    Quote Originally Posted by jwitalka View Post
    Amen Rui. By the way, that Sinclair was my first PC as well. Built it from a kit and managed to add in some additional memory.

    Jerry
    It was a heck of a machine, Jerry, really cool engineering .
    Rui
    -------
    R4

  14. #13
    Administrator
    Join Date
    Jun 2010
    Location
    Portugal
    Posts
    10,208
    Thanks
    129
    Thanked 1,145 Times in 1,054 Posts
    Quote Originally Posted by mrjimphelps View Post
    (...)vand the original IBM PC (model B) was my 2nd. 640 K of RAM, 20 MB hard drive!

    But at least the IBM had a real keyboard.
    That was a luxury, Jim. My first PC had an 8088 processor, 640K RAM and 2 5 1/4" floppies .
    Rui
    -------
    R4

  15. #14
    Silver Lounger mrjimphelps's Avatar
    Join Date
    Dec 2009
    Location
    USA
    Posts
    2,139
    Thanks
    202
    Thanked 206 Times in 198 Posts
    Quote Originally Posted by ruirib View Post
    That was a luxury, Jim. My first PC had an 8088 processor, 640K RAM and 2 5 1/4" floppies .
    The date on the BIOS was the first day that hard drive support was available.

    The computer actually came with one 5-1/4" floppy drive, but I added the hard drive and a 3-1/2" drive.

    The most difficult thing was finding a bracket to accomodate the half-height drives.

  16. #15
    5 Star Lounger
    Join Date
    Dec 2009
    Location
    Rochdale, UK
    Posts
    825
    Thanks
    13
    Thanked 52 Times in 52 Posts
    Quote Originally Posted by jwitalka View Post
    Amen Rui. By the way, that Sinclair was my first PC as well. Built it from a kit and managed to add in some additional memory.

    Jerry
    Would your 1st PC not be the Sinclair ZX80/ZX81 rather than the Spectrum? I remember the first 2 in kit form but can't seem to recollect the Spectrum being offered that way.

    My 1st PC was the BBC Model B (32K RAM as opposed to the Model A's 16K RAM!) and it had a real keyboard. Relied on cassette tape storage for a year or so until I bought a 5 1/4" floppy drive.

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •