Cryptolocker Virus Threat

[Bronto]

Cryptolocker Threat

Some of you may of heard of a new ransomware virus called Cryptolocker, basically the virus infects your PC then encrypts all your files on your PC and any attached drive or Network drives and then locks it down and demands about £300 to give you the private encryption key to unencrypt your data

BBC News - Cryptolocker ransomware has 'infected about 250,000 PCs'

CryptoLocker Morphs to Spread Over USB Drives

I just witnessed this first hand on a mates work PC yesterday, lucky for him he had no valuable data on it so we just re formatted and re installed the OS - Simple BUT it got me thinking what if I got it, I had a scare last week when up popped up a Cheshire Police webpage claiming to have locked my browser and I needed to pay a £100 fine for illegal downloads and viewing porn (doesn't everyone ?) lol

Anyway to cut a long story short I came across a little program to stop Cryptlocker called Cryptoprevent which prevents the malware/virus installing on your PC

Info here > How To Fight The CryptoLocker Virus - Business Insider

Download it here > CryptoPrevent | Computer Technician - PC Repair Software |Foolish IT LLC

If you unsure I have checked the MD5 and SHA-256 and all is good but you may want to get to the program as I did through the Dell Virus and Spyware community

CryptoLocker, CryptoPrevent - Virus & Spyware Discussions Forum - Virus & Spyware - Dell Community

You should also make backups of all your data, if this gets you there is no chance to get the data back without paying the Ransome

Good Luck

 

[Him Her]

Re: Cryptolocker Threat

Some of you may of heard of a new ransomware virus called Cryptolocker, basically the virus infects your PC then encrypts all your files on your PC and any attached drive or Network drives and then locks it down and demands about £300 to give you the private encryption key to unencrypt your data

BBC News - Cryptolocker ransomware has 'infected about 250,000 PCs'

CryptoLocker Morphs to Spread Over USB Drives

I just witnessed this first hand on a mates work PC yesterday, lucky for him he had no valuable data on it so we just re formatted and re installed the OS - Simple BUT it got me thinking what if I got it, I had a scare last week when up popped up a Cheshire Police webpage claiming to have locked my browser and I needed to pay a £100 fine for illegal downloads and viewing porn (doesn't everyone ?) lol

Anyway to cut a long story short I came across a little program to stop Cryptlocker called Cryptoprevent which prevents the malware/virus installing on your PC

Info here > How To Fight The CryptoLocker Virus - Business Insider

Download it here > CryptoPrevent | Computer Technician - PC Repair Software |Foolish IT LLC

If you unsure I have checked the MD5 and SHA-256 and all is good but you may want to get to the program as I did through the Dell Virus and Spyware community

CryptoLocker, CryptoPrevent - Virus & Spyware Discussions Forum - Virus & Spyware - Dell Community

You should also make backups of all your data, if this gets you there is no chance to get the data back without paying the Ransome

Good Luck

Also, take a look at NoScript - http://noscript.net/ - most of this crap gets in via a script. At least NoScript flags up a warning so you can click 'OK' and then be infected

 

[Zooropa]

Re: Cryptolocker Threat

Just found this info too..lucky I have the pro version on my pc

For example, the*FREE*version of MBAM, which*detects Cryptolocker infections as*Trojan.Ransom,*may be able to remove the infectious malware, but it*cannot*recover your encrypted programs/data files. Fortunately, users of Malwarebytes Anti-Malware**are protected from Cryptolocker via the PRO version'srealtime*malware-execution-prevention*and*blocking*of malware sites and servers.



Sent from my GT-I9300

 

[mapman]

Re: Cryptolocker Threat

nice one bronto always good to know whats going on.
if its not one thing its another ,will be aware when im downloading.
thanks again bro.

 

[Spectre]

Re: Cryptolocker Threat

Keep backups of all your documents and pictures!

 

[Mick]

Re: Cryptolocker Threat

One word

DROPBOX

Everything that I do goes on dropbox!

 

[oneman]

Re: Cryptolocker Threat

One word

DROPBOX

Everything that I do goes on dropbox!

I think I did read that either this virus or one of its variants can also encrypt dropbox if you have the dropbox client installed.

 

[Bronto]

Re: Cryptolocker Threat

One word

DROPBOX

Everything that I do goes on dropbox!

I think I did read that either this virus or one of its variants can also encrypt dropbox if you have the dropbox client installed.

You should be able to recover using the dropbox restore previous version feature which I believe stores the previous 30 days worth of changes.

I use Dropbox to Mick but if you have Dropbox mapped to a drive letter Cryptlocker can get that to, although you can restore the files on the Dropbox site but only one file at a time, could be a nightmare

Virus, Spyware, & Malware Removal Guides

 

[Purity]

Re: Cryptolocker Threat

This has been quite a problem at work. Unfortunately you always get people opening attachments that are obviously fake and this installs the virus and then starts to encrypt everything.

We've ended up applying software restrictions on machines to prevent the files from executing

 

[Rumpelstiltskin.]

Re: Cryptolocker Threat

Thanks for the info.

 

[Mick]

Re: Cryptolocker Threat

I use Dropbox to Mick but if you have Dropbox mapped to a drive letter Cryptlocker can get that to, although you can restore the files on the Dropbox site but only one file at a time, could be a nightmare

Virus, Spyware, & Malware Removal Guides

Feck Me @Bronto...

Now that is a nasty virus... well spotted, I don't download much so hopefully I will be safe.

Would not like that Virus, would end up paying lol!!!

Mick

 

[mapman]

Re: Cryptolocker Threat

I just gotmy self 1tb exhd from currys 60 od quid added all I want in their,just hope I keep my eyes open and miss this one .
do you think sandybox would pick this up.

 

[aRo]

Re: Cryptolocker Threat

Could they not trace to whoever or wherever the ransom needs to be paid?

 

[janobi]

Re: Cryptolocker Threat

Could they not trace to whoever or wherever the ransom needs to be paid?

Unfortunately not, they use anonymous payment schemes. A friends dad had a similar variant on his laptop after looking at porn.....

 

[Him Her]

Re: Cryptolocker Threat

Feck Me @Bronto...

Now that is a nasty virus... well spotted, I don't download much so hopefully I will be safe.

Would not like that Virus, would end up paying lol!!!

Mick

Then you'd end up losing money as well as files M8! Paying doesn't usually result in any files back, it usually ends up in a knackered credit/debit card. While I'm on, if anyone is running servers with Terminal Services exposed to the Internet close the port and use VPN. Terminal Services has been used as a way in and there are loads more files to screw.

One of the downsides of Open Source - the bad guys get encryption software too

 

[janobi]

Re: Cryptolocker Threat

Then you'd end up losing money as well as files M8! Paying doesn't usually result in any files back, it usually ends up in a knackered credit/debit card. While I'm on, if anyone is running servers with Terminal Services exposed to the Internet close the port and use VPN. Terminal Services has been used as a way in and there are loads more files to screw.

One of the downsides of Open Source - the bad guys get encryption software too

Indeed paying will not release the files, they will simply extort more money from you. Terminal services is a very outdated way of using RDC, unless its an internal connection of some sort. But tbh, working for an managed service provider, you would be surprised the amount of networks that consider security a priority, then use Telnet instead of SSH.

 

[brgk1]

Re: Cryptolocker Threat

bleepinngcomputer.com should/will have a cure for that at hand, an easliy understood one at that.