INTELLIGENT WORK FORUMS
FOR ENGINEERING PROFESSIONALS

Log In

Come Join Us!

Are you an
Engineering professional?
Join Eng-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Eng-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Jobs

CTB-locker virus

CTB-locker virus

(OP)
Alas, I fell victim to this virus which encrypted all my personal files. I don't know how it got in as I have Verizon Security Suite with presumably all protections developed by McAfee. Needless to say, I did not pay and their instructions on payment and how to remove the encryption program is no longer available.
Questions: 1)I have back up files made in the distant past, so if I remove all infected files would the replacement files become infected again from some hidden program?
2)If I go to a local technician to remove whatever is in my computer introduced by that bastard organization, should that technician be able to remove the encryption program?
3)Would a disk restore take care of any residual junk from the bastard organization?
4)If I paid CTB-Locker to restore my files, would that organization come back and ask for more money?
5)Any further comments on protective measures would be appreciated.

RE: CTB-locker virus

chicopee,

I am not an expert, but...

The only way to be sure the virus is gone is to reformat your drives and re-install your OS and applications.

From what I have been reading on encrypt viruses, the developers keep their word and send you the key to decrypt your files. You get in trouble if you encounter their software again. There is a lot of stuff on this on CSO Online.

I do not like taking my computer, with all my personal stuff, to outside technicians. If they are honest and clever, they may be able to fix it.

--
JHG

RE: CTB-locker virus

1> as above, there may, or may not, be time-delay fuses set on the virus
2> given the symptoms, probably, but if it's really new, or a mutated virus, then possibly no
3> I would go with a full wipe, just to make sure there are no entries lurking in the registry that haven't been caught. Additionally, a fresh install will probably run a lot faster because a lot of baggage will have been removed
4> probably, it's a risk-benefit kind of situation
5> Make backups and make backups often; I tend to be no more than a couple of days out of sync, and have 3 synchronized copies of my work files. There are a bunch of freeware AV and anti-malware software that tend to be pretty good. Ad-aware was the only program that got rid of one malware infection that none of my mainstream AV programs even noticed.

TTFN
FAQ731-376: Eng-Tips.com Forum Policies

Need help writing a question or understanding a reply? forum1529: Translation Assistance for Engineers

Of course I can. I can do anything. I can do absolutely anything. I'm an expert!

RE: CTB-locker virus

Run Microsoft' Malicious software removal tools from time to time. Do a full scan and sit on your fingers while it is running because it will take 3 or 4 hours. This will tell you where it is and what it is, it will not prevent it from coming back.
Sometimes you have to run different antivirus programs, because one will catch what another misses. An example of this was a virus that was lurking in my AutoCad print instruction files,and would keep popping up again after it was cleaned out, that Norton could not find but Avast did.
B.E.

You are judged not by what you know, but by what you can do.

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Eng-Tips Forums free from inappropriate posts.
The Eng-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Eng-Tips forums is a member-only feature.

Click Here to join Eng-Tips and talk with other members!


Resources


Close Box

Join Eng-Tips® Today!

Join your peers on the Internet's largest technical engineering professional community.
It's easy to join and it's free.

Here's Why Members Love Eng-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close