asked on

Virus HELP

We have now gotten hit for a second time by the Cryptowall Ransomware. We had everything cleaned up (we thought) and was smooth sailing for about 2 weeks. Then it hit again and the source is the same user PC that had it before. However, let me say, the original PC was taken offline and he was given a different machine.

Can this virus "attach" itself to a user profile????

Or is it more likely that he re-visited a website and got it again.

I want to understand how this can happen again in such a short period of time.

David Johnson, CD

user probably opened the same attachment.. did you install the cryptowall prevention toolkit? Don't forget to update it periodically

SOLUTION

VB ITS

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

Wylie Bayes

I would use Kaspersky Rescue Disk 10 on any machines you suspect have the virus.

It's a bootable disk that pulls current definitions from the internet and then sweeps the system, including the boot sectors.

http://support.kaspersky.com/4162

bankwest

ASKER

I will look at the Cryptowall prevention kit.

We thought we had virus taken care of.

What should we be using to be sure it is REMOVED completely?

SOLUTION