Work as an internt at IT. only know how to edit stuff in photoshop and other adobe softwares etc.
This happend to a laptop here at school and multiple peeps got hit with it.
/g/.. tell me... what should i say to these "poor" people...
restore from a backup and don't run shit you don't know what it is.
>>54717947
Idiots didnt backup shit exept school work on onedrive and google drive
didnt run shit
Install Gentoo...
>>54717957
from now on they'll start doing backups.
people don't care about them until they lose all their files.
>>54717947
shitton of personal stuff got encrypted
>>54717933
"Dem's the breaks."
>>54717967
they emmediatly started to. sry for bad eng not my main lang
>>54717975
If you can find an encypted and unencrypted copies of same files there are software that can find the encyption code. Another anon did that few weeks ago.
>>54718028
everything is encrypted. the idiot blondie left the laptop on overnight. nothing is salvagable
>>54718055
If she ever copied music or photos from her phone to laptop or copied a presentation from computer to usb that might be enough. But its up to you I wouldnt really bother helping.
>>54718093
already installed a new ssd and win10 so idc about her files
>>54718104
What exactly was the point of this thread?
>Windows users.
What do people download to get infected with this shit? Ive never had anything like this happen pirating shit off public torrent sites
>>54718231
>Not wincucks
>>54718315
>be in italy
>need to play this audio file
>google how, says download vlc
>google vlc download in italian
>commonly known italian download site similar to mediafire shows up
>download and run vlc.exe
>>54717933
This is a real ransomware from the FBI?
>>54718460
Good riddance
>>54718055
why didn't she just pay the fine?
>>54719249
>>Your IP address was used to visit websites containing pornography, child pornography, zoophilia and child abuse.
>pornography is illegal
>not leading with cp
>>Your computer also contains video files with pornographic content, elements of violence and child pornography!
>repeating itself
>!
>>Spam-messages with terrorist motives were also sent from your computer.
>oh btw terrorism as well
>-
>>This computer lock is aimed to stop your illegal activity.
>>To unlock the computer you are obliged to pay a fine of $200.
>be a terrorist pedophile dogfucker
>get caught by FBI
>pay $200
>continue terrorizing kids with my wanfu
>>You have 72 hours to pay the fine, otherwise you will be arrested.
>not arresting you right out
>This is a real ransomware from the FBI?
>>54717933
Its a virus that encrypt your shit and some of them will spread through internal networks. Anyone who isnt stupid backs up regularly. I auto backup to freenas server and my backups are read only so I am safe enough from this shit.
>>54718460
Downloading random crap off the internet is always a bad idea.
>>54718460
Italian here. Site name? I'm actually quite curious, can't find anything suspicious by looking for a VLC download.
>>54721197
softonic
>>54718315
i dled PES2016 from verified uploaded on KAT and installation broke on 95%, malwarebytes said it's ransomware trojan and i deleted it, apparently before it started doing anything.
>>54721197
Im not italian it was just a made up situation but every country has such stuff see >>54721238
Boot from an antivirus live CD like ESET SysRescue, don't try and clean from inside a compromised OS
If its just blocking the GUI that'll help
If its encrypting files you're fucked
malware is fun, use a liveCD/USB to scan the hard drive either in another PC or on the same PC but outside the windows environment.
>>54721319
It doesn't mention an encryption key in OP's screenshot so hope springs eternal.
>>54717933
Figure out which ransomware. They have cracked a few of them.
>>54721128
Is this bait?
>>54718315
A lot of people in Australia got hit by it because an email went out from either the postal service or the federal police, and people are super gullible when it comes to that shit
>>54717933
You can tell them their files are gone unless they had backups.
You can also tell them, that this guy on the internet says, there is a chance that their computer could literally have cheese pizza in it through that same malware.
>>54718315
That's what I'd like to know, I've seen so much malware and ransomware in friends computers. If I wanted to get my PC so pus infected I don't know that I'd be able to.
>>54719249
I'm pretty sure the FBI won't lock your computer. I think they just raid your house with a warrant. Also, stuff asking for prepaid cards of any kind are always a scam.
>>54719249
Suppose it could be from a rogue FBI dept or rogue FBI employee.
>>54721128
>government doesn't do nothing wrong, government doesn't have employees or entire agencies go rogue
>>54717933
I got ransomware on my laptop like an idiot and after trying my self and letting a bunch of my more tech savvy friends try I gave up on getting rid of it and just formatted my shit up. I did manage to get to my hard drive to back up my music tho
>>54722165
does it encrypt pdfs and movies?
>>54717933
Just out of curiosity. Do you actually get control of your computer if you pay the money they ask? Has anyone in history actually paid?
>>54722220
yes, they do.
no one would pay if they'd know they wouldn't get their files back anyway.
>>54722203
It doesn't care about the file contents so yes.
Had a client get hit with this. Backups are non negotiable, you must make them. If you have backups, then this ransomware is little more than an inconvenient annoyance. Just reinstall the OS, install all available security updates, configure your firewall properly, migrate data from a backup and you're done.
If you have no backups? Enjoy sending 100s if not 1000s of dollars to a stranger over Tor to MAYBE get the key to decrypt your shit.
>>54722203
most only encrypt the first few bytes, not the entire file, making the file more or less useless without taking centuries to encrypt the entire harddrive.
>>54722268
A lot of ransomware will hit any mapped network drive though, which fucks over a lot of companies with file shares and ends up in businesses paying the ransom.
>>54722268
when is your data really ever worth that much money? or any money at all?
>>54722280
a permanent mounted disk isn't a backup anyway.
>>54722294
Not by itself but it could contain a directory that your computer backs up to.
>>54722203
No my data was all in tact, it just took some acrobatics to get to it. I didn't get the exact same window as the OP though
>>54722266
Oh i remember few of the first ransomware programs only encrypted like .doc and exe files, something like that, certainly not whole HDD
>>54717933
"Nothing personal... kid"
>>54718093
out of curiosity, what is the name of one/some software can do that?
>>54721238
Isn't Softonic safe?
>>54718028
>there are software that can find the encyption code
Not OP, but anyone have any idea where I could find such software?
>inb4 google
>inb4 charging people twenty dollars less than what the ransom is asking for
>>54718460
>not having a USB packed full of useful, trusted, preconfigured software
You do this to yourself.
>>54717933
No encryption? Weak as shit, boot into safe mode or a rescue disk and scan and remove.
I work at a small it company and do work for several small businesses. The shit that makes me sweat is when I see that pop-up
>All your files are encrypted
Sometimes we get their data back, sometimes we don't. And sometimes,one computer getting hit then finds all the unmapped network drives and encrypts them too! =/
Fuck me I hate these people.
>>54724990
On my phone so can't get into detail but you need to find out what strain of cryptolocker you have, there are several (locky for example just got shut down and the master key was released).
Then hit up forums like the malware bytes ones, people there can help further
Also op check for shadow volume copies. Can sometimes restore from that.
>>54718460
>I'm in italy so I have to download the italian vlc from an italian website
kek
>>54717933
What the fuck have your students been looking at to get that ransomware?
>>54717933
Depending on the software it might be possible to break the shitty cryptography, otherwise just restore from backups.
Obviously, don't pay shit.
>>54721238
Lmao, even my dad told me to stay the heck off of that site 10 years ago
T. Not italian
>>54725248
softonic is a pit of darkness wich none escape
>>54719676
Because it's not the real FBI, faggot.
>>54721319
This or Kaspersky's one has also been effective on some ransomware variants (probably because they're also writing a good portion of these)
>>54717933
>terrorism
>bestiality
>child porn
Damn, how'd they know?
>>54725080
>posting Grimeth
>outside of /mu/
>>54725796
It detected arabic filenames on your PC
This is probably a clone of a randsomware known as "Locky" its pretty common.
You should try some of these Kaspersky tools form https://noransom.kaspersky.com
>>54717933
Feels good to be on GNU/Linux.
>>54718315
EmmaWatson_sextape100real.avi.exe
>>54726679
https://en.wikipedia.org/wiki/Linux.Encoder.1
Had my brother in law get this kind of thing, I think we just did a startup repair. I seriously doubt that anything is encripted.
>>54727161
>double click
>smartscreen filter pops up, executable is signed with a certificate with a bad or nonexistent reputation
>google how to turn off smart screen
>double click
>file is from the internet or another computer and is not trusted, are you sure you want to continue?
>YES
>google how to turn off all these fucking messages warning me not to put my dick in HIV infested files
>double click every file and execute every piece of code that comes my way with elevated privileges
This is how people use Windows.
>>54718315
>>54727161
"George Clooney Caught With Justin Bieber No Fake Real No Virus.avi.bat"
![windows-8-smartscreen-settings[1].png](https://i.imgur.com/Y6DMSfy.png "windows-8-smartscreen-settings[1].png")
>>54727592
SAUCE
>>54727565
I wish my dick came with UAC warnings...
>>54727339
Don't tell me Linux is not virus-safe! all my life believing there are no virus for Linux and now that?
>>54718460
>this is what people without package managers have to live with
>>54727744
>Tens of users were affected
Kek
>>54721448
The FBI logo is just part of the scare tactic you retard. Sure some rogue FBI agent COULD be distrubuting malware, or it could be one of the millions of russian scammers. They don't make the malware themselves, people get contracts with the creators to distribute it.
>>54722220
Apparently it works about half the time. I guess the other half the time it gets messed up or something wasn't configured right by the hacker.
Best anti virus of the year: common sense
:^)
>>54730168
Technically the best antivirus of 2016 is Kaspersky. Not sure what happened to NOD32 they used to score top in all AV tests but they're bottom tier now.
>>54717933
that's bullshit, boot to live linux and check to see if you can open files. most of this shit doesnt actually encrypt anything.
>>54725080
oh wow its been a day!
better update all of my software and redownload all of my exes
how does it feel to live in the stone age wincuck?
>>54730580
>being this dumb
So, you don't update your software?
Fuck off, retard.
