That all sounds pretty good! Anything else we need to do?
Encrypted Files, blackmail letter [Solved]
Posted 24 November 2014 - 01:14 PM
Things seem to be running smoothly on my computer. There is still my flash drive that has the original encryped files on it to deal with if possible. Any last steps for my computer? Holly
Posted 24 November 2014 - 02:30 PM
There is still my flash drive that has the original encryped files on it to deal with if possible
Ah yes, let's clean that USB drive! Once we get that done I have a program that will remove all the tools we used and then I have some final thoughts and suggestions
Download MCShield to your desktop and install
It will initially run a scan and show the result as a toaster by the system clock
Then in the control centre select scanner and tick unhide items on flash drives
Plug in the drive and McShield will start a scan
Select logs and then copy/paste it to your next post
Posted 25 November 2014 - 11:07 AM
Ok, here is the log from MCShield:
You didn't say to delete suspicious items so I didn't.
Posted 26 November 2014 - 01:08 AM
Posted 26 November 2014 - 08:22 AM
Unless you can think of something that I've forgotten, I think we're done
A good workman always cleans up his tools, so that is what DelFix will do. Also, I will add some preventitive information below. If you have any questions, let me know. I'll keep the topic open for a few days "just in case". After that, PM me or any Admin to have the topic re-opened if something goes wonky!
From my side, it's been a pleasure!! Take care!!
- Right-click on icon and select Run as Administrator to start the tool.
- Ensure that Remove disinfection tools, Purge system restore and Reset system settings are checked.
- Push Run.
An ounce of prevention is better than a pound of cure, so, I have listed some tips for you to stay safe on the internet in the future.
WARNING!: Java is the #1 exploited program at this time. The Department of Homeland Security recommends that computer users disable Java. Have a look at this article.
I would recommend that you completely uninstall Java unless you need it to run an important software. In that instance I would recommend that you disable Java in your browsers until you need it for that software and then enable it. (See How to diasble Java in your web browser and How to unplug Java from the browser)
If you still want to keep Java
- Click the Start button
- Click Control Panel
- Double Click Java - Looks like a coffee cup. You may have to switch to Classical View on the upper left of the Control Panel to see it.
- Click the Update tab
- Click Update Now
- Allow any updates to be downloaded and installed
- Warning!: Make sure to uncheck Optional offer box when downloading Java or you will install an adware on your computer.
Adobe products have to always be updated, because they also are being used to infect your computer.
- If you want to update Adobe Flash Player, visit this site.
- If you want to update Adobe Reader, visit this site.
- Warning!: Make sure to uncheck Optional offer box when downloading Adobe products or you will install an adware on your computer.
Turning on Automatic Updates is a crucial security measure. Keeping them out-of-date is like begging to get your system infected.
- Click Start > Control Panel > System and Security > Windows Update
- Under Windows Update click Turn automatic updating on or off
- Make sure that your settings are set so that you will receive updates automatically and click OK.
FileHippo is one of programs that can check for out-of-date programs on your computer. You can get it here
Recommendations for security programs
- Malwarebytes' Anti-Malware is a new and powerful anti-malware tool. It is totally free but for real-time protection you will have to pay a small one-time fee.
- WinPatrol as a robust security monitor, will alert you to hijackings, malware attacks and critical changes made to your computer without your permission. WinPatrol takes a snapshot of your critical system resources and alerts you to any changes that may occur without your knowledge.
For some good tips about how to prevent infection in the future, visit this site.
Posted 26 November 2014 - 11:12 AM
Although McShield said the flash drive was clean, all the files on it are still encrypted. The implanted files on where to go to pay to get them decrypted are still on there also. Is there anyway to decrypt the flash drive?
Posted 26 November 2014 - 01:05 PM
Although McShield said the flash drive was clean,
I feel pretty confident that the drive is clean. That was what we were trying for and we succeeded.
all the files on it are still encrypted.
Not surprising in that the infection you had, did that as it's mission.
The implanted files on where to go to pay to get them decrypted are still on there also. Is there anyway to decrypt the flash drive?
I'm going to put some info next that will give you a bit of clarity, but I think the quick answer is...no. Although there is, with some luck (depending on the infection that encrypted them) and a lot of effort, the possibility that they can be unencrypted. I would ask, is it worth the effort? If so, then have a read below and to the extent I can help, I will. Although I've not goine through the process myself.
This is the start of your reading.
Posted 27 November 2014 - 12:51 AM
Posted 27 November 2014 - 01:00 AM
Oh, another question re: Hippofiles. I installed and ran it it shows that there are 2 outdated programs but that the updates are beta updates one was for chrome. and the other for IE version of adobe. Do I really want to use beta updates?
Posted 01 December 2014 - 11:08 AM
I think I'm good here. Thank you so much for all your help and advice. Getting rid of malware is a really interesting process but I hope that I don't have to go through it again. Holly
Posted 01 December 2014 - 01:16 PM
I think I'm good here. Thank you so much for all your help and advice.
You're very welcome!!! It was a pleasure!
Getting rid of malware is a really interesting process but I hope that I don't have to go through it again.
I hope you don't either, but if you do, don't forget where we are
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users