25112
asked on
solution for cryptolocker
can you suggest if the following solution is reliabele to knock out the cryptolocker error?
http://pctuneup.org/cryptolocker-virus-removal/?gclid=CPGsjvDf77oCFZMDOgodsHMAjg
would you use it?
http://pctuneup.org/cryptolocker-virus-removal/?gclid=CPGsjvDf77oCFZMDOgodsHMAjg
would you use it?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
aadih
Without a backup image, there is no sure way. :-(
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
wow.. hard to believe this has already affected me (in spite of having the latest mcafee)
1)
i took a flash drive and copied the main documents away and tested in another pc.. documetns, pdf etc are gone.. but text/audio is not affected. is there an official list of documents this virus touches and which ones it does not care about?
1a) i have took off the internet on this machine
2)
seems like system restore is disabled by group policy... so i cant do anything there.
3)i downloaded the latest malwarebytes from the website and in safe mode installed it.. but it said it cant update malwarebytes and it is some xyz number of days old.. i still ran it.. it ran for 6 minutes and found 1 files infected: PUM.Hijack.DisplayProperti
is it OK to just say "Remove Selected" here?
my goal here is to just get rid of the virus 100% from this machine.
a)just save as many files as possibly can
b)then run some tool on each other pc on the network to make sure they are not affected or any shared folders etc.
is there a malwarebytes download that is already uptodate and does not have to connect to internet? so I can scan better and know for sure everything is taken care of.
in the above circumstance, what do you recommend for me?
1)
i took a flash drive and copied the main documents away and tested in another pc.. documetns, pdf etc are gone.. but text/audio is not affected. is there an official list of documents this virus touches and which ones it does not care about?
1a) i have took off the internet on this machine
2)
seems like system restore is disabled by group policy... so i cant do anything there.
3)i downloaded the latest malwarebytes from the website and in safe mode installed it.. but it said it cant update malwarebytes and it is some xyz number of days old.. i still ran it.. it ran for 6 minutes and found 1 files infected: PUM.Hijack.DisplayProperti
is it OK to just say "Remove Selected" here?
my goal here is to just get rid of the virus 100% from this machine.
a)just save as many files as possibly can
b)then run some tool on each other pc on the network to make sure they are not affected or any shared folders etc.
is there a malwarebytes download that is already uptodate and does not have to connect to internet? so I can scan better and know for sure everything is taken care of.
in the above circumstance, what do you recommend for me?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
>> But do NOT run MalwareBytes in Safe Mode
thanks for this.. i did not know it.. what is the reason?
>>download MalwareBytes (preferentially MB Pro) to a USB thumbdrive and run it from there.
it does not have the latest updates.. any solution for that?
thanks for this.. i did not know it.. what is the reason?
>>download MalwareBytes (preferentially MB Pro) to a USB thumbdrive and run it from there.
it does not have the latest updates.. any solution for that?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
OK.. thanks. I have removed the recommended files from malwarebytes.
now, in terms of making sure all the other pcs in the network are clean, is running malwarebytes on each one of them suffice to rule out any infection into the network?
now, in terms of making sure all the other pcs in the network are clean, is running malwarebytes on each one of them suffice to rule out any infection into the network?
"wow.. hard to believe this has already affected me (in spite of having the latest mcafee)"
This is part of the problem. "Back in the day" we all used McAfee and Norton because they were the best. That is because it was John McAfee and Peter Norton, who knew what they were doing. They sold the companies, which kept the name but that's about it.
Look into Vipre or Sophos antivirus for the future.
This is part of the problem. "Back in the day" we all used McAfee and Norton because they were the best. That is because it was John McAfee and Peter Norton, who knew what they were doing. They sold the companies, which kept the name but that's about it.
Look into Vipre or Sophos antivirus for the future.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
>>Look into Vipre or Sophos antivirus for the future.
thanks.. we were just about to switch to avast after this incident.. does that come close to Vipre or Sophos that is mentioned here?
thanks.. we were just about to switch to avast after this incident.. does that come close to Vipre or Sophos that is mentioned here?
ASKER
>>So where do you stand on the infected PC? Have you done all you plan to do?
yes. THANKS.
the pc is back and running and malwarebytes has given a clean bill for all of PCs.
we have lost some data.. but as I understand from the discussions we are too late for that, and even if we pay 300$ it is not a guarentee.
yes. THANKS.
the pc is back and running and malwarebytes has given a clean bill for all of PCs.
we have lost some data.. but as I understand from the discussions we are too late for that, and even if we pay 300$ it is not a guarentee.
25112--
I am glad to have helped. You did a good job!
I am glad to have helped. You did a good job!
25115--
Don't forget to close this thread.
http://support.experts-exchange.com/customer/portal/articles/608621
Don't forget to close this thread.
http://support.experts-exchange.com/customer/portal/articles/608621
ASKER
yes, in celebration, missed this one.. thanks kindly for the reminder!
25112--
You are welcome!
You are welcome!