Windows 8 and 8.1 Forums


Beware: CryptoLocker Virus

  1. #21


    Posts : 82
    Windows 8.1


    Make sure you format the hdd when you wipe it, the virus hides in the restore partition.

      My System SpecsSystem Spec

  2. #22


    Posts : 82
    Windows 8.1


    Never ever be stupid enough to pay the ransom. If you do you are as bad as the criminals, you are financially backing their next venture. And you deserve it when they don't decrypt your files.
      My System SpecsSystem Spec

  3. #23


    Posts : 454
    Windows 8.1 Pro with Media Center


    Quote Originally Posted by dakeb View Post
    Quote Originally Posted by crawfish View Post
    Quote Originally Posted by dakeb View Post
    If you get a suspect email, is there a way of analysing the attachment for cryptolocker without getting infected?
    How about just summarily deleting .exe attachments? I'm unclear as to how these infections occur. Unless the malware is able to exploit a bug, email programs, browsers, etc shouldn't launch executables automatically, right? So people must be launching them directly from the program or saving them and carelessly running them, right?
    The .exe files are hidden in .zip files or disguised as a .pdf file, but when you click on it, it is an .exe file and too late.
    Yes, I understand that. So then, it's like I said, and people must be launching them directly from the program (disguised .pdf files) or saving them and carelessly running them, right?

    I guess I've never been fooled by anything like this because (a) Turning on file extensions is one of the first things I do in my 30-step plan for installing Windows, (b) I never launch anything directly from a browser, (c) I always scan stuff I download, and (d) I only download from trusted sources. I've only ever run on-demand virus scans, and I've never had a virus or malware in 20 years of using the Internet. I'm surprised the .pdf.exe files are still a problem; that's something they were doing 10 years ago, and I thought it was a thing of the past.
      My System SpecsSystem Spec

  4. #24


    Florida, USA
    Posts : 141
    Windows 8.1 Pro x64 with Media Center, Windows 10 Pro x64, Windows 7 x64 Ultimate SP1


    Quote Originally Posted by A Guy View Post
    According to their web site, CryptoPrevent works with all versions of Windows.

    "CryptoPrevent seeks to alleviate these issues in allowing protection on ALL Windows OSes...."
      My System SpecsSystem Spec

  5. #25


    Bay Area
    Posts : 21,841
    Windows 7 Home Premium x64


    Hadn't tested that, since it uses GP, it may have been assumed. Perhaps it just changes the registry as GP would, rather then use GP. A Guy
      My System SpecsSystem Spec

  6. #26


    Florida, USA
    Posts : 141
    Windows 8.1 Pro x64 with Media Center, Windows 10 Pro x64, Windows 7 x64 Ultimate SP1


    Quote Originally Posted by A Guy View Post
    Perhaps it just changes the registry as GP would, rather then use GP. A Guy
    I believe that is what it does.
      My System SpecsSystem Spec

  7. #27


    Bay Area
    Posts : 21,841
    Windows 7 Home Premium x64


    Quote Originally Posted by pbcopter View Post
    Quote Originally Posted by A Guy View Post
    Perhaps it just changes the registry as GP would, rather then use GP. A Guy
    I believe that is what it does.


    A Guy
      My System SpecsSystem Spec

  8. #28


    Posts : 79
    Windows 10 Pro 64-bit


    How much damage can this thing do to a domain connected PC running a restricted account profile in XP? I'm going to assume it will encrypt all files within the user profile and whatever network shares it has permission to access? Upon infection, would it be safe to delete the user profile, delete all restore points and create a new profile?
      My System SpecsSystem Spec

  9. #29


    Posts : 82
    Windows 8.1


    I believe it only accesses mapped network drives. When infected format the hard drive, it hides in the restore areas.
      My System SpecsSystem Spec

  10. #30


    Posts : 79
    Windows 10 Pro 64-bit


    Quote Originally Posted by dakeb View Post
    I believe it only accesses mapped network drives. When infected format the hard drive, it hides in the restore areas.
    Not according to the first post of this thread:
    A new computer virus is being called one of the strongest and most devastating viruses in history, strikes by literally holding the computer owners hostage, the Inquisitr reported.

    The CryptoLocker Virus - which not only has the potential to destroy a computer hard drive, but holds the computer owners data ransom -infects computers through a legitimate-looking email, usually from a reputable company like FedEx or UPS. Once opened, the virus quickly spreads to the computer's hard drive and then offers the user a chance to rid the program for a hefty fee.

      My System SpecsSystem Spec

Page 3 of 7 FirstFirst 12345 ... LastLast
Beware: CryptoLocker Virus
Related Threads
Under Operation Tovar, global law enforcement—in conjunction with the private sector and McAfee—has launched an action to dismantle the Gameover Zeus and CryptoLocker infrastructure. Disrupting the criminal infrastructure by taking control of the domains that form part of the communications...
BEWARE! Leprimodels in System Security
If this is common knowledge, apologies. Whatever you do, if you receive an email from Leprimodels.it, DO NOT! visit their website or download any software, games etc. This site is full of viruses and spurious software.
Hi there This is not I'm sure what Google was founded for -- An "Unofficial Police Database" BBC News - Google Transparency Report shows rise in data requests Seems like the law enforcement agencies in the USA are making very big use of this (probably cheaper and more efficient than relying...
Hi there If you use things like Utorrent (and there are plenty of legit reasons to use some torrents -- Linux distros, Driver packs etc) then DO NOT UPDATE to the latest version of Utorrent. What it does --even if you don't want the toolbar installed -- adds an "Addon" to IE10 which changes...
Beware of Logitech Chrome extension in Installation & Setup
Since the Windows 8 preview, when you install the latest version of Logitech Setpoint, it will screw up scrolling in Chrome. Haven't tested in other browsers, but the problem still persists. Just go to Settings --> Extensions and trash it. This is baked into windows update so look out for it. If...
Eight Forums Android App Eight Forums IOS App Follow us on Facebook