Windows 8 and 8.1 Forums


Beware: CryptoLocker Virus

  1. #41


    Sloe Deth, Californicatia
    Posts : 3,908
    Windows 8 Pro with Media Center/Windows 7


    Quote Originally Posted by HippsieGypsie View Post
    Looks to be another nasty one.

    A new computer virus is being called one of the strongest and most devastating viruses in history, strikes by literally holding the computer owners hostage, the Inquisitr reported.

    The CryptoLocker Virus - which not only has the potential to destroy a computer hard drive, but holds the computer owners data ransom -infects computers through a legitimate-looking email, usually from a reputable company like FedEx or UPS. Once opened, the virus quickly spreads to the computer's hard drive and then offers the user a chance to rid the program for a hefty fee.
    Crypto Locker Virus: New Aggressive Computer Virus Demands Ransom : News : University Herald
    HA! Now THAT is the way to design a Virus. Not just to be destructive, like Sirefef, but to literally hold your data hostage for a PRICE.

    This is a step beyond the regular destructive tactics used. But I doubt if PAYING these guys will actually rid your system of it.

    I'll have to see if a fix for this has been thought up, it would have to run from an external disk.

      My System SpecsSystem Spec

  2. #42


    Posts : 454
    Windows 8.1 Pro with Media Center


    Quote Originally Posted by XweAponX View Post
    This is a step beyond the regular destructive tactics used. But I doubt if PAYING these guys will actually rid your system of it.
    Au contraire! Assuming they can collect the money, it's in their interest to provide good service.
      My System SpecsSystem Spec

  3. #43


    Posts : 301
    Windows 8 Pro


    My understanding is that Cryptolocker is designed to run from %AppData% and blocking all executablesshould prevent it from running. The suggestion (Link) is to use gpedit and add:

    Local Computer Policy > Windows Settings > Security Settings > Software Restriction Policies > Additional Rules and add the following:

    Path: %AppData%\*.exe
    Security Level: Disallowed

    Path: %AppData%\*\*.exe
    Security Level: Disallowed

    The problem I ran into is that in Windows 8; maybe others; %AppData%\*.exe does not block executables from running in that folder; I had to use %UserProfile%\*.exe. Would someone please enlighten me on what is correct? thanks....
      My System SpecsSystem Spec

  4. #44


    Joisey
    Posts : 315
    Windows 8.1 consumer 64 bit


    Quote Originally Posted by crawfish View Post
    Quote Originally Posted by XweAponX View Post
    This is a step beyond the regular destructive tactics used. But I doubt if PAYING these guys will actually rid your system of it.
    Au contraire! Assuming they can collect the money, it's in their interest to provide good service.

    They may reverse their encryption of your data, but how can you be sure they don't still have a hook into your system? The thing could reappear in a month or a year and demand money all over again. The only way out would be to copy and scrub your data to a backup and restore your system from scratch. Carefully.
      My System SpecsSystem Spec

  5. #45


    Posts : 301
    Windows 8 Pro


    What I don't understand is that MS created the encryption that is being used and MS can't block it - give me a break!!!!!
      My System SpecsSystem Spec

  6. #46


    Quote Originally Posted by rdwray View Post
    What I don't understand is that MS created the encryption that is being used and MS can't block it - give me a break!!!!!

    Heh... that's only because you don't understand what encryption is, evidently...

    At any rate, I just read two articles in the Microsoft database that state that Malware definitions against Crypto Locker have been resident in both MSE (XP & Vista & W7) and MSE Defender in Win8/8.1 since October. I feel somewhat mollified.
      My System SpecsSystem Spec

  7. #47


    Posts : 301
    Windows 8 Pro


    Quote Originally Posted by waltc View Post
    Quote Originally Posted by rdwray View Post
    What I don't understand is that MS created the encryption that is being used and MS can't block it - give me a break!!!!!

    Heh... that's only because you don't understand what encryption is, evidently...

    At any rate, I just read two articles in the Microsoft database that state that Malware definitions against Crypto Locker have been resident in both MSE (XP & Vista & W7) and MSE Defender in Win8/8.1 since October. I feel somewhat mollified.
    I know what encryption is and your "mollified" statement says the whole thing - it is embedded in MS's OS and Crypto Locker simply picked up on it. There is no way that a hacker can be kept out of anything if they want in and spend enough time; ask Target. I will lay you odds that ObamaCare website is under attack now and will not be known until several million ID's have been stolen.

    The major problem is companies keep trying to write code to protect and hackers use it against them.
      My System SpecsSystem Spec

  8. #48


    Whoever finds the answer becomes a billionaire!
      My System SpecsSystem Spec

  9. #49


    Posts : 301
    Windows 8 Pro


    Quote Originally Posted by JohnBurns View Post
    Whoever finds the answer becomes a billionaire!
    HEY, I'm working on this... Look out Gates...
      My System SpecsSystem Spec

  10. #50


    Quote Originally Posted by rdwray View Post
    Quote Originally Posted by waltc View Post
    Quote Originally Posted by rdwray View Post
    What I don't understand is that MS created the encryption that is being used and MS can't block it - give me a break!!!!!

    Heh... that's only because you don't understand what encryption is, evidently...

    At any rate, I just read two articles in the Microsoft database that state that Malware definitions against Crypto Locker have been resident in both MSE (XP & Vista & W7) and MSE Defender in Win8/8.1 since October. I feel somewhat mollified.
    I know what encryption is and your "mollified" statement says the whole thing - it is embedded in MS's OS and Crypto Locker simply picked up on it. There is no way that a hacker can be kept out of anything if they want in and spend enough time; ask Target. I will lay you odds that ObamaCare website is under attack now and will not be known until several million ID's have been stolen.

    The major problem is companies keep trying to write code to protect and hackers use it against them.
    My point is that if you knew what encryption was you'd understand that, once used, it's deliberately designed to be impossible to crack without a key. Hackers are absolutely the smallest population using encryption these days--anyone can use it to protect his data. It makes as much sense to blame Microsoft for hackers as it does to blame architects for bank robberies... The fault is in the criminal, I'm sure you would agree. The problem is hackers, period. If not for hackers, companies would not have to write defensive code at all. In the beginning, back in the DOS/Win3.1 days, there was very little if any defensive code written--it was all 100% functional. The virus creators had a field day! Windows today is an order of magnitude more difficult to hack than it was then. Honestly, I'm not sure what your point is...
      My System SpecsSystem Spec

Page 5 of 7 FirstFirst ... 34567 LastLast
Beware: CryptoLocker Virus
Related Threads
Under Operation Tovar, global law enforcement—in conjunction with the private sector and McAfee—has launched an action to dismantle the Gameover Zeus and CryptoLocker infrastructure. Disrupting the criminal infrastructure by taking control of the domains that form part of the communications...
BEWARE! Leprimodels in System Security
If this is common knowledge, apologies. Whatever you do, if you receive an email from Leprimodels.it, DO NOT! visit their website or download any software, games etc. This site is full of viruses and spurious software.
Hi there This is not I'm sure what Google was founded for -- An "Unofficial Police Database" BBC News - Google Transparency Report shows rise in data requests Seems like the law enforcement agencies in the USA are making very big use of this (probably cheaper and more efficient than relying...
Hi there If you use things like Utorrent (and there are plenty of legit reasons to use some torrents -- Linux distros, Driver packs etc) then DO NOT UPDATE to the latest version of Utorrent. What it does --even if you don't want the toolbar installed -- adds an "Addon" to IE10 which changes...
Beware of Logitech Chrome extension in Installation & Setup
Since the Windows 8 preview, when you install the latest version of Logitech Setpoint, it will screw up scrolling in Chrome. Haven't tested in other browsers, but the problem still persists. Just go to Settings --> Extensions and trash it. This is baked into windows update so look out for it. If...
Eight Forums Android App Eight Forums IOS App Follow us on Facebook