Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Beware of Ransomware
#1
I have a friend that answered a landline call from Indian accent people that managed to scam her and after they were in her computer remotely when she booted the computer now has a Ransomware screen asking for money to get the password to un-encrypt her now locked computer.

I looked online about but doesn't look good.

Anyone know of a way to get around the Ransomware lock?
Reply
#2
(08-20-2015, 05:38 AM)dmcowen674 Wrote: I have a friend that answered a landline call from Indian accent people that managed to scam her and after they were in her computer remotely when she booted the computer now has a Ransomware screen asking for money to get the password to un-encrypt her now locked computer.

I looked online about but doesn't look good.

Anyone know of a way to get around the Ransomware lock?

I got one of these calls a long time ago and I used some really choice words with the guy. They called my parents too. I'm really glad they didn't fall for it but they got really worried and they asked me about it. It's a horrible scam and there's not much law enforcement or our government can do about it because they are based overseas.

I would say to get around the lock maybe try booting up a live Linux distro via USB and then backup and copy all their files over to a USB hard drive. Then format and reinstall Windows and everything.
Reply
#3
You need a boot antivirus, superantispyware portable scanner

If you can, Google whatever info you can to see if there is anything more specific about the hijacking you are dealing with.

Also, you can also pull out the drive and scan it on another pc
Reply
#4
Her desktop is about 6 years old. With desktops being so cheap and Windows 10 is out I think we'll start with a new box.
Reply
#5
Starting over is really the only thing you can do.

Let this be a lesson. never do anything to a PC/computer just because some stranger on an unsolicited phone call told you to do it!
Adam knew he should have bought a PC but Eve fell for the marketing hype.

Homeopathy is what happened when snake oil salesmen discovered that water is cheaper than snake oil.

The reason they call it the American Dream is because you have to be asleep to believe it. -- George Carlin
Reply
#6
What is the thing locked down at the BIOS level? Can you not just format the hard drive? You have to buy a whole new computer?
Reply
#7
(08-20-2015, 09:36 AM)SickBeast Wrote: What is the thing locked down at the BIOS level? Can you not just format the hard drive? You have to buy a whole new computer?

The boot sector for the Hard Drive is encrypted.
Reply
#8
(08-20-2015, 09:40 AM)dmcowen674 Wrote:
(08-20-2015, 09:36 AM)SickBeast Wrote: What is the thing locked down at the BIOS level?  Can you not just format the hard drive?  You have to buy a whole new computer?

The boot sector for the Hard Drive is encrypted.

So then why not just replace the hard drive? It seems like overkill to me to buy an entire PC.
Reply
#9
Should not make a difference.

Darik's boot and nuke should fix that.

http://www.dban.org/

Should be present on the Ultimate Boot Cd. Burn one and boot off of it.

http://www.ultimatebootcd.com/
Adam knew he should have bought a PC but Eve fell for the marketing hype.

Homeopathy is what happened when snake oil salesmen discovered that water is cheaper than snake oil.

The reason they call it the American Dream is because you have to be asleep to believe it. -- George Carlin
Reply
#10
I'll bring the machine home so can work on it and report progress on it. She is on other side of town so not sure when will get it.
Reply
#11
Good luck Dave! That sounds like a nasty bug.
Reply
#12
I got a call from her that a friend of hers knew a guy familiar with getting rid of Ransomware and he did it for $75. He put new Anti-virus on and she said the machine is running great.
Reply
#13
All free:

[​IMG] TFC - to clean unneeded temporary files.
[​IMG] Malwarebytes' Anti-Malware - to scan your system from time to time in search for malware.
[​IMG] Malwarebytes' Anti-Exploit - to prevent plenty of mostly exploited vulnerabilities. (live INTERNET browsing protection)
[​IMG] McShield - to prevent infections spread by removable media.
[​IMG] CryptoPrevent - to secure yourself from very severe CryptoLocker infection.
[​IMG] Unchecky - to prevent from installing additional foistware, implemented in legitimate installations.
[​IMG] FiheHippo.com Update Checker - to keep your programs up-to-date.
[​IMG] Adblock - to surf the web without annoying ads!


Not everything is necessary (for experts who don't need stuff like FileHippo, which isn't recommended for experts anyway)

And there's more - I used PeerBlock with the Spyware blacklist enabled, Spybot Search & Destroy (just the Immunize function is recommended, that's all), and SpywareBlaster (which only builds the Windows Hosts blacklist file - you can also compress the hosts file for faster execution time).

Also, avoid Adblock Plus - it has become corrupt for selfish corporate reasons. Just use Adblock, not Adblock Plus.
Ok with science that the big bang theory requires that fundamental scientific laws do not exist for the first few minutes, but not ok for the creator to defy these laws...  Rolleyes
Reply
#14
That's great news, Dave! It's still a shame that it cost them money but at least it's fixed now.
Reply
#15
I'd still be copying any irreplaceable data off then nuking that HDD. Never know what is left lurking afterwards.

Virus could have embedded itself into the firmware of the HDD, another lovely trick, developed by the NSA no less.
Adam knew he should have bought a PC but Eve fell for the marketing hype.

Homeopathy is what happened when snake oil salesmen discovered that water is cheaper than snake oil.

The reason they call it the American Dream is because you have to be asleep to believe it. -- George Carlin
Reply
#16
She has her important data offline at Carbonite.
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)