Any - Malware on PC

Honest John Back Room » General discussion ( non motoring )
What do you think of Elon Musk? Have your say | No thanks
View Threaded
Thu 11 Jun 2015 11:20
Any - Malware on PC - Bolt

Beware of malware that creeps in through E`mail, I am just getting over one called Ransomware, it hijacks all your documents Photos and locks them into an encryted lock that you cannot get out of.

What happened to me and I think everyone that gets it, a warning comes up replacing your wallpaper on screen, telling you your Docs and photos are locked in an encryption that needs a key to open

Now the key is obtained by using a browser named TOR and your instructed to go to a website that only Tor can access(according to message)

You are told to once on site to input a series of 25x 5 numbers, I actually forget the correct amount but its long, after this a timer starts up on screen counting down, apparently if you have not done it in a certain time it destroys your info....So make sure you have all your info backed up,I cant stress this enough as many people dont

anyway once on site and you`ve entered the numbers they tell you what the ransom amount is, it varies from £200 to £5000 and they tried to charge me £3000 but no way,anyway I decided as its impossible to get rid of this once its gotten hold, to wipe the drive and reload, I used proper wiping software as a format is no good.

I am now in the process of going through all my drives to make sure the Ransomware did not get past my main drive, 10 I have, i`m afraid it has destroyed a lot of photos I had, but they were backed up so I still have them

It must have been there a while as it left notices in all my drive folders containing photos or documents, and it encrypts all the photos so you cant see them, so far no one has a way to clear this ransomeware so be carefull what E`mails you open

If you already know about this as I did then take no notice of my post but you will at least know this is destructive if you do get it, I hope no one does as its a pain

Reply | Report as offensive | Link
Thu 11 Jun 2015 13:29
Any - Malware on PC - FP

Ransomeware is a big and probably growing problem.

There is a little program called CrytpoPrevent (free) which is supposed to stop it. I can't vouch for it - just pointing out it exists. Malwarebytes has a free addition called Antiexploit, which may or may not block this stuff.

But no program can reverse the encryption once it has happened.

People really must install good anti-virus software and do frequent, regular back-ups of any data that would be either difficult or impossible to replace. I suggest a stand-alone hard drive which is physically detached from your computer excepct when performing the back-up.

If you so this, you can snap your fingers at those trying to screw money out of you.

Reply | Report as offensive | Link
Thu 11 Jun 2015 13:48
Any - Malware on PC - alan1302

People need to learn not to click on everything in dubious emails as well. 99% of all malware/virus problems are caused by a user doing something that they should not be doing.

Reply | Report as offensive | Link
Thu 11 Jun 2015 14:23
Any - Malware on PC - Bolt
I was waiting for that comment.
This one isn't found by any programs at the moment
And you don't have to click on emails to open it.

Apparently it comes in bits over many emails so your anti virus won't pick it up until it's complete and then it's too late

That was why I warned about it.
Reply | Report as offensive | Link
Thu 11 Jun 2015 16:14
Any - Malware on PC - concrete
I was waiting for that comment. This one isn't found by any programs at the moment And you don't have to click on emails to open it. Apparently it comes in bits over many emails so your anti virus won't pick it up until it's complete and then it's too late That was why I warned about it.

Does that mean backing up all data stored is the only effective answer?

How does this stuff get through firewalls, anti-virus software etc. There really are some thorough-going ars-*^!*s out there just dying to spoil your day.

Cheers Concrete

Reply | Report as offensive | Link
Thu 11 Jun 2015 16:43
Any - Malware on PC - FP

As far as I understand it, the stuff gets through because on the face of it it's legitimate. There will be an .exe file somewhere that's probably masquerading as something else.

Most of these problems do happen because a link has been clicked on. E-mail attachments are notably suspect. Often they arrive with a plausible and authentic-looking message from your energy provider, your bank, Facebook, Twitter, PayPal or whatever - anything that might sucker you in.

Sometimes just visiting an infected site is enough, though good anti-malware programs should spot such sites and block them.

Microsoft lists these as the primary ways malware gets on your computer:

Spam emails
Infected removable drives
Bundled with other software
Hacked or compromised webpages

You really should have a good anti-virus program doing live monitoring and should from time to time scan your whole computer with a separate anti-malware program.

And do the back-ups, regularly and frequently, of any stuff you can't replace or can't replace easily - any projects, photos, music - any data that has involved a lot of your time and energy and/or a lot of money.

Reply | Report as offensive | Link
Thu 11 Jun 2015 16:52
Any - Malware on PC - Bolt

Well I've been doing that for years and it's the first time I've been caught out.

But will try that software you mentioned it's worth a go even if it doesn't work

I'm usually clearing up for other people lol

Reply | Report as offensive | Link
Thu 11 Jun 2015 18:29
Any - Malware on PC - Bolt
I was waiting for that comment. This one isn't found by any programs at the moment And you don't have to click on emails to open it. Apparently it comes in bits over many emails so your anti virus won't pick it up until it's complete and then it's too late That was why I warned about it.

Does that mean backing up all data stored is the only effective answer?

How does this stuff get through firewalls, anti-virus software etc. There really are some thorough-going ars-*^!*s out there just dying to spoil your day.

Cheers Concrete

Yes, and dont leave backup connected because, as I`ve just found out it gets in all connected drives

According to what I read the program used installs over several emails (possibly a downloaded program music or any file) ie parts of the program are put together after its got past the anti virus/malware checker and isnt detected untill its complete

In other words its intelligent because it looks for the other parts of the program and assembles itself. So beware

I have another 8 drives to go through, but I have found it has no effect on Video or Films, all my home movies are intact

Reply | Report as offensive | Link
Thu 11 Jun 2015 18:59
Any - Malware on PC - FP

"... dont leave backup connected because, as I`ve just found out it gets in all connected drives."

Absolutely - noted above. Physically disconnect any stand-alone hard drives you use for back-up except when actually doing the back-up.

A specific piece of advice re. various versions of Windows (Vista and 7, I believe): disable Windows Sidebar and Gadgets. They are a serious vulnerability - and that's from Microsoft.

Reply | Report as offensive | Link
Fri 12 Jun 2015 10:59
Any - Malware on PC - FP

Another (probably obvious) point I forgot before: always keep everything up to date - Microsoft updates, anti-virus definitions etc.

Personally, I also clear cookies and all personal information from my browser every night and I never allow my passwords to be saved on the computer.

Edited by FP on 12/06/2015 at 10:59

Reply | Report as offensive | Link
Thu 11 Jun 2015 21:51
Any - Malware on PC - alan1302
I was waiting for that comment. This one isn't found by any programs at the moment And you don't have to click on emails to open it. Apparently it comes in bits over many emails so your anti virus won't pick it up until it's complete and then it's too late That was why I warned about it.

Where have you been getting told that? It's nonsense and you should not be getting any IT info from someone that tells you stuff like that. If it was that easy everyone would have one by now as it's so easy to send e-mails to people.

Anyone wanting to know a bit more about these kind of thinsg Trend have an interesting/useful article:

http://www.trendmicro.com/vinfo/us/security/definition/ransomware

Reply | Report as offensive | Link
Fri 12 Jun 2015 11:09
Any - Malware on PC - Leif

Anti-virus scanners vary in their quality. I had AVG on a PC at home, and I still got a very nasty virus which seemed to be wiping my disk as I sat in front of the PC. I managed to shutdown the exe, not easy, then discovered that it was 'only' setting the hidden flag on files. Anyway, other scanners such as Kaspersky are currently better. You can find online tests, I forget who, but one company specialises in testing AV products. You will find that some products do let through viruses, not many, but one is more than enough.

Reply | Report as offensive | Link
Fri 12 Jun 2015 16:09
Any - Malware on PC - Engineer Andy

I would agree with much of the comments, and add to beware of freeware, evne from 'legitimate' websites like Download.com. Quite often (and from such websites based in the US in the main) they now as a matter of course bundle adware with perfectly OK freeware, and of course, some less known sites or mirrors can be operated/hacked by cyber criminals who then spread malware onto PCs through what seems to be legit software.

Whilst I've been lucky so far not to have encountered any 'ransomware', I have had the odd virus found on older PCs (fortunately they hadn't been activated) via downloads of freeware; I encountered a ad/malware program at work a year ago when installing a free manufacturer-based free engineering calculation package, and had to get I.T. to remove it.

I am now even more careful when trying out freeware and websites (I also find Kaspersky Internet Security is very useful generally to keep out almost all of the bad stuff without having too much degridation in overall PC performance) and only use my Hotmail (Outlook.com) email account for 'commercial activities' (i.e. when buying stuff online, legit competitions, etc) which I believe has built-in security features, even if they may not be quite as good as the purchased software like Kasperskyand other leading AV/IS software.

Reply | Report as offensive | Link
Sun 9 Aug 2015 10:22
Cryptolocker free removal - Armitage Shanks {p}

Loads of info here tinyurl.com/nugyhxq

Reply | Report as offensive | Link
Tue 20 Oct 2015 16:50
Cryptolocker free removal - NorthernBoy

great helpful link - even getting the right protection software canbe a nightmare

Reply | Report as offensive | Link

Looking for a garage you can trust? Honest John's Good Garage Guide has thousands of reader recommended garages, plus how-to guides and tips on servicing.

The Good Garage Guide