I absolutely hate to create threads like this but unfortunately, this one appears to be necessary. I do IT support for a living, almost 30 yrs now. I'm writing this thread to warn Windows users of an extremely serious and severe infection that is going around called CryptoLocker. It first appeared in early Sept 2013. It is not impossible to recover from, but it requires some IT knowledge.

First, what it is and what it does. It's a trojan type of malware that comes into your system primarily thru email as a ZIP file. Many users reporting a fake USPS email but it can be anything to try and get you to open the attachment. If you open the attachment, the executable will encrypt your files on your hard drive making them unusable. There are only 2 ways to recover from that scenario. #1, you pay the ransom following the instructions (have seen prices varying from $100-$400) and then you wait for the files to decrypt. #2. You remove the malware (easy to do that) and restore from a good backup. If you don't have a backup, you're SOL. You will have to pay to get your files back. The "experts" haven't been able to resolve this particular malware yet and while the possibility exists, it will be very difficult. The encryption uses a public and private key, unique to each system that it infects. The public portion of the key resides on your system and the only way to get the private portion is to pay the ransom fee. You cannot decrypt your files without the private part of the key.

Now for the good stuff. #1 - Don't open any attachments in your emails that your aren't expecting. Just good common sense. #2 - Backup your stuff. Again just good common sense. #3 - There is a prevention tool available that will keep this particular malware from infecting your computer. I'd recommend that your d/l and install it. The link is here for the prevention tool: http://www.foolishit.com/download/cryptoprevent/
For information on this particular problem, read about it here: http://www.bleepingcomputer.com/viru...re-information
The prevention tool will also help protect from lots of other malwares that run from the same location as CryptoLocker, that's why I recommend you install this. Be aware, it's possible that it could create some minor problems but better to have those than have your files encrypted. I've had two customers get this infection in the last two days. One was on a network with 25 users and the infected PC also infected the file server, bringing that business down until we could repair. We easily removed the malware, and the file server was restored from backups but a few files that were in use when it occurred were lost. The end users PC was recovered with system restore.

Bottom line is that I wanted to warn my good friends here in CF about this nasty. There is currently no way around it other than pay up or restore from backups. My suspicion is that the Feds will be getting involved on this one and the culprit(s) might be getting a visit from a SEAL team. While the methods appear to be very anonymous, there is still a trail and the power of the gov't can be brought to bear on this.

1. - Don't open email attachments.
2. - Get your stuff backed up if you don't want to lose it.
3. - Install the prevention tool, just to make sure.

Ok, off the soapbox. Sorry about the downer approach of this message.

 

You have me afraid to download your download....

 

Heh, fair enough. You can see I've been on here for a while, over 1000 posts. I'm not going anywhere. In all my years of doing this, this one appears to be the toughest to get around. Many stories of customers just paying to get unlocked and back in business. Google Cryptolocker and you'll see what I mean.

 

Thanks for the heads-up.

 

Ye gads! Why can't they just leave me the hell alone? I have enough problems with my stinkin' computer when it's not infected...

 

Thank you for taking the time in giving us older non experienced IT, regular guys the heads up.. Being single I'm constantly on singles & other sites trolling around checking things out. I've always felt like I was walking a fine line and your info confirms it CC. Thanks again

 

CactusCat is a reliable source. No need to worry.

 

What guarantees you'll get your files back once you pay? The thieves don't sound all that honest.

 

Alternate solution... "Buy a Mac!"

 

I didn't want to be that guy, but now that it's been said lol I've been problem free since going to Apple with all of my devices. Best decision of my life!

 

Thanks for the heads-up though CactusCat! That knowledge will come in handy for a lot of users on here. I just like giving Window's users a hard time. Kind of like us and the Mustang crowd lol

 

Thanks

 

Thanks

 

Me too

Former Apple Employee and a Computer Engineer who specializes in alternative OS's

With that said guys common sense and good AV. Make sure you are downloading from a reliable resource, and any time you are putting credit card information in make sure the website you are on is https and not http.

As for the Mac guys, grab a beer, and the mouse, and have at it

 

Heh, I don't have a problem with you Mac guys giving Windows users a hard time. Glad you like your OS. I could play devil's advocate and say that any other OS besides Windows would be less likely to have this sort of a problem due to the fact that there just isn't as much incentive for the hackers. If you were a hacker and wanting to infect computers, would you go after the 95% or the 5% or whatever the ratio is these days. Of course you'd go after the 95%. But that's not the reason for my post here. It's to be careful, use common sense and make sure you have a backup. Also, make sure that system restore is turned on and operational.

 

If you pay attention to what you're doing Windows computers can be just as problem-free as any Apple product.

 

I been trouble free on my PC for 3 plus years now at 1/3 the cost of a mac. Just saying, PC and having a good AV you will be set.

 

To a certain degree. Its not security through obscurity more than its too much of a hassle on BSD or *nix system and not so much so on Windows based system. The administrative rights and root operations of the underlying system make trying to pull a fast one on an end user much more difficult. Plus, the semi-walled-garden method keeps things clean.

With that said Windows 8 and the Surface 2 could be game changers but it just seems like the leadership mentality at Redmond is that of a dinosaur. The same OS everywhere model is something I love.... iOS is something I hate!

 

You and me both.

 

I have to agree with your statement about Redmond. Those guys were first, couldn't see far enough ahead into the future and were lax in their programming to allow so many holes in the OS. And although I support the MS stuff for a living doesn't mean I necessarily agree with what goes on in Redmond. Your comment about the same OS everywhere, again that's both great and bad at the same time. Windows 8 might be ok security-wise, but from the end users, its a bigger loser than Vista or Windows ME. MS is already prepping MS 9 which is probably what Win8 should have been. Who knows, maybe Android will end up taking over. Android, iOS, BSD, etc are mostly derivatives of Unix/Linux and it wouldn't bother me at all to end up there. I agree with your walled garden statement too. While somewhat closed, you are safer. I suppose if we have one almighty OS where everything was monitored by one overseer, we would be safer but knowing that people are never satisfied, the rebels would attempt to overthrow the Death Star. Just want people to be safe and secure.