Cryptolocker Help

VFN

Member
Apparently there's a new and nasty virus called Cryptolocker and my father has it on his XP machine. Anyone know how to deal with this? I've read that even if you use system restore or other methods to remove the virus your files are still left encrypted. My father has a back up drive so I guess he can replace files. Any help about this would be greatly appreciated.

Here's something short on the virus Disk encrypting Cryptolocker malware demands $300 to decrypt your files | Apps and Software | Geek.com

Thank You,

VFN
 

My Computer

System One

  • Operating System
    Vista Home Premium x64
    Manufacturer/Model
    Dell Inspiron 546
    CPU
    Sempron LE-1300
    Memory
    2GB DDR SDRAM 800MHZ-2X1GB DIM M
    Graphics Card(s)
    Integrated ATI Radeon HD3200
    Sound Card
    VIA High Definition Audio
    Monitor(s) Displays
    Samsung 32" HDTV
    Screen Resolution
    1366 x 768
    Hard Drives
    320GB NCQ Serial ATA (7200 RPM) w/ 16MB DataBurst Cache
Have you tried Malwarebytes?

System restore is the worst way to solve a virus, as it does stay in the restore and will come back.
 

My Computer

System One

  • CPU
    Dual L5639 // i7 950 @ 4.0Ghz
    Motherboard
    Evga SR-2 // Gigabyte x58a-ud3r
    Memory
    12Gig Corsair XMS3 // 6Gig OCZ Gold
    Graphics Card(s)
    gtx 560 ti // gtx 260-216
    Monitor(s) Displays
    Dual 22" // Headless
    Hard Drives
    OCZ aGILITY 3, 120Gig + Seagate 500Gig x 2
    PSU
    Silverstone da700 // Corsair 520hx
    Case
    Rosewill BlackHawk Ultra // Antec 900v1
    Cooling
    Twin CM Hyper 212+ // Noctua NH-u12
    Other Info
    Acer 8930 laptop with x9100...
I tried Malwarebytes and that didn't seem to work but I was able to get rid of at least part of it through a registry key, but it also turns out now that this machine doesn't have MSE working and I can't uninstall it properly so I can't reinstall it. I think the problems are beyond me especially since system restore isn't working so I don't know what my father will do.

Thanks.
 

My Computer

System One

  • Operating System
    Vista Home Premium x64
    Manufacturer/Model
    Dell Inspiron 546
    CPU
    Sempron LE-1300
    Memory
    2GB DDR SDRAM 800MHZ-2X1GB DIM M
    Graphics Card(s)
    Integrated ATI Radeon HD3200
    Sound Card
    VIA High Definition Audio
    Monitor(s) Displays
    Samsung 32" HDTV
    Screen Resolution
    1366 x 768
    Hard Drives
    320GB NCQ Serial ATA (7200 RPM) w/ 16MB DataBurst Cache
I'd try running maslwarebytes in safe mode.
 

My Computer

System One

  • CPU
    Dual L5639 // i7 950 @ 4.0Ghz
    Motherboard
    Evga SR-2 // Gigabyte x58a-ud3r
    Memory
    12Gig Corsair XMS3 // 6Gig OCZ Gold
    Graphics Card(s)
    gtx 560 ti // gtx 260-216
    Monitor(s) Displays
    Dual 22" // Headless
    Hard Drives
    OCZ aGILITY 3, 120Gig + Seagate 500Gig x 2
    PSU
    Silverstone da700 // Corsair 520hx
    Case
    Rosewill BlackHawk Ultra // Antec 900v1
    Cooling
    Twin CM Hyper 212+ // Noctua NH-u12
    Other Info
    Acer 8930 laptop with x9100...
I ran Malwarebytes several times in safe mode but it would still find trojans, the same ones it seems. What I did was create a new user, downloaded AVG, and that cleared several trojans. So right now, the Cryprolocker virus is gone and he can restore his files with his backup drive and Malwarebytes isn't finding trojans. I still feel his pc is probably corrupted though.

His MSE is gone, replaced with AVG, but I couldn't completely remove MSE even with the fixit tools from Microsoft so should I try to do that manually or is that unnecessary?

If I reformatted his pc with XP would he be able to replace all the Microsoft updates and how easy is it to screw up reformatting?

Thanks.
 

My Computer

System One

  • Operating System
    Vista Home Premium x64
    Manufacturer/Model
    Dell Inspiron 546
    CPU
    Sempron LE-1300
    Memory
    2GB DDR SDRAM 800MHZ-2X1GB DIM M
    Graphics Card(s)
    Integrated ATI Radeon HD3200
    Sound Card
    VIA High Definition Audio
    Monitor(s) Displays
    Samsung 32" HDTV
    Screen Resolution
    1366 x 768
    Hard Drives
    320GB NCQ Serial ATA (7200 RPM) w/ 16MB DataBurst Cache
You can try running housecall friom trendmicro. Itg's ajn online scanner so it won 't be skewed.

If you d/l the Service Packs and install them manually you save a lot of time but you're still gonna have a buttload of updates.

I'd totally wipe it if you are not happy, only sure way to go.
 

My Computer

System One

  • CPU
    Dual L5639 // i7 950 @ 4.0Ghz
    Motherboard
    Evga SR-2 // Gigabyte x58a-ud3r
    Memory
    12Gig Corsair XMS3 // 6Gig OCZ Gold
    Graphics Card(s)
    gtx 560 ti // gtx 260-216
    Monitor(s) Displays
    Dual 22" // Headless
    Hard Drives
    OCZ aGILITY 3, 120Gig + Seagate 500Gig x 2
    PSU
    Silverstone da700 // Corsair 520hx
    Case
    Rosewill BlackHawk Ultra // Antec 900v1
    Cooling
    Twin CM Hyper 212+ // Noctua NH-u12
    Other Info
    Acer 8930 laptop with x9100...
Thanks.
 

My Computer

System One

  • Operating System
    Vista Home Premium x64
    Manufacturer/Model
    Dell Inspiron 546
    CPU
    Sempron LE-1300
    Memory
    2GB DDR SDRAM 800MHZ-2X1GB DIM M
    Graphics Card(s)
    Integrated ATI Radeon HD3200
    Sound Card
    VIA High Definition Audio
    Monitor(s) Displays
    Samsung 32" HDTV
    Screen Resolution
    1366 x 768
    Hard Drives
    320GB NCQ Serial ATA (7200 RPM) w/ 16MB DataBurst Cache
Back
Top