cryptowall trojan horse

One of my computers has the crypto wall Trojan horse.  What is the best way to remove this?  Keep in mind that I have not responded to these ransom ware folks to obtain their magic password to decrypt my files.  Also, what is the best anti virus software to avoid getting this infection in the future?
thanks,
capreol
Richard ChristensenRetired computer technicianAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

JohnBusiness Consultant (Owner)Commented:
Almost any modern antivirus program will clean up the infection to a certain extent. I suggest you try Malwarebytes in addition to your own suite. In any case, you likely cannot your documents back and must restore them from backup after you have cleaned up the infected machine.
0
rindiCommented:
Never use an account with administrative rights when using your PC. Keep UAC enabled. Make sure your OS and AV tools are always fully updated. Don't open mail attachments or files on websites you don't know. Don't map network shares to drive-letters. Regularly backup your system, and rotate to different backup media.
0
Michael-BestCommented:
Once you have been infected with ransom ware there is no cleanup.
Your only option is to restore data from a backup (if you had made such a backup)
Paying the ransom seldom leads to getting your data back.
Antivirus software does not stop all ransom ware.
Cloud based antivirus solutions such as Panda are updated more timely to protect you better.

Panda Free Antivirus download link and review from pcmag.com :
http://www.pcmag.com/article2/0,2817,2463592,00.asp

Other Panda products:
http://www.pandasecurity.com/usa/homeusers/downloads/
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Determine the Perfect Price for Your IT Services

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden with our free interactive tool and use it to determine the right price for your IT services. Download your free eBook now!

Walt RickerIT Help DeskCommented:
Hello Capreol;

I ran into this Crypto Wall Trojan Horse myself on a company computer, after using the tool  below I was able to clean the system but was unable to retrieve all of the files that were there currently. After a reboot I was able to restore them from a recent backup.

http://labs.bitdefender.com/projects/cryptowall-vaccine-2/bitdefender-offers-cryptowall-vaccine/
0
btanExec ConsultantCommented:
Checkout the preventive means using tools such as cryptoprevent and also see this EE article which include backup set up. Eventually besides the endpoint security software such as AV , host intrusion s/w installed in the machine, there will still be other avenues to be exploited via external media or network connectivity (wireless/Wired) or phished email, unpatched appl/OS. Application whitelisting and backup against this malicious family is a mean towards closer to the end protection。

There is also good coverage in bleedingcomputer in the CryptoWall family. Note there are already version of it spinning off so signature based like traditional means of having host AV and Firewall are not preventive against "unknown" signature. Reduce exposure, limit the attack surface and go for policy lockdown with contingencies in event of breach and being penetrated.
(see "How to restore files encrypted by CryptoWall")
(see "How to find files that have been encrypted by CryptoWall")
0
Richard ChristensenRetired computer technicianAuthor Commented:
Thanks for your help.  I worked on this computer for approximately 5 hours to no avail.  I used Malwarebytes Antimalware  in safe mode...did not get rid of it.  I tried to download, install and run AVG and also C Cleaner.  The Trojan horse Crypto Wall prevented me from installing and running AVG and C Cleaner.  I was able to recover some of the files on the computer but was unable to recover many other files.  One thing that should be mentioned is that during this ordeal the task manager was showing 100% CPU usage and that made it extremely difficult to work with the computer.  My guess is that the Crypto Wall had a lot to do with that.  This is one nasty piece of work!
thanks,
capreol
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Anti-Spyware

From novice to tech pro — start learning today.