Author Topic: CryptoWall Virus  (Read 34400 times)

Offline EviL~Ryu

  • (ง︡'-'︠)ง "Bitchin!" ®©℗™
  • Dragon
  • **********
  • Posts: 6059
  • "It's going to be Legen-(wait for it......)-DARY!"
    • View Profile
    • Clan EviL Official Page
Re: CryptoWall Virus
« Reply #15 on: May 19, 2015, 05:00:13 PM »

This virus sounds badass.

Dimwit


Sent from my Motorola DynaTAC 8000X using Tapatalk

-Administrator of Clan EviL
-Developer (Trivia Development and Analytics)

Offline Teron-Gorefiend

  • Grunt
  • ***
  • Posts: 203
  • Greetings.
    • View Profile
Re: CryptoWall Virus
« Reply #16 on: May 20, 2015, 12:03:36 AM »
Terror-Gorefiend said you have to paid them Lol


You are a dimwit fucking faggot. Howl said exactly what had to be said. His files have been encrypted and no amount of antivirus/malware cleanup will clean his shit up. He effectively needs to pay to get his files back.

@Medivh: You effectively need to pay. Nothing you can do about it.
Here are two excellent reads.
"and just as with CryptoWall, this TeslaCrypt variant's encryption scheme has yet to be cracked. Once files are encrypted, the only way to recover them at present is to pay the malware's masters. "
http://arstechnica.com/security/2015/03/cryptolocker-look-alike-searches-for-and-encrypts-pc-game-files/
http://arstechnica.com/security/2014/06/we-will-be-paying-no-ransom-vows-town-hit-by-cryptowall-ransom-malware/

To put EQ's advice of running anti malware software into context, this moron told koorb to install graphic drivers in Windows when Koorb was having problem to detect his card on POST/boot. (Answer: Change setting in BIOS so that it detects the card first instead of looking for onboard graphics (PCI-E) )
LOLOLOL. What a stupid 'computer engineer' that faggot is.
This is the reason I ended it all.

The newb, the mad and the retired.

Offline EviL~Ryu

  • (ง︡'-'︠)ง "Bitchin!" ®©℗™
  • Dragon
  • **********
  • Posts: 6059
  • "It's going to be Legen-(wait for it......)-DARY!"
    • View Profile
    • Clan EviL Official Page
Re: CryptoWall Virus
« Reply #17 on: May 20, 2015, 12:27:36 AM »

Terror-Gorefiend said you have to paid them Lol


You are a dimwit fucking faggot. Howl said exactly what had to be said. His files have been encrypted and no amount of antivirus/malware cleanup will clean his shit up. He effectively needs to pay to get his files back.

@Medivh: You effectively need to pay. Nothing you can do about it.
Here are two excellent reads.
"and just as with CryptoWall, this TeslaCrypt variant's encryption scheme has yet to be cracked. Once files are encrypted, the only way to recover them at present is to pay the malware's masters. "
http://arstechnica.com/security/2015/03/cryptolocker-look-alike-searches-for-and-encrypts-pc-game-files/
http://arstechnica.com/security/2014/06/we-will-be-paying-no-ransom-vows-town-hit-by-cryptowall-ransom-malware/

To put EQ's advice of running anti malware software into context, this moron told koorb to install graphic drivers in Windows when Koorb was having problem to detect his card on POST/boot. (Answer: Change setting in BIOS so that it detects the card first instead of looking for onboard graphics (PCI-E) )
LOLOLOL. What a stupid 'computer engineer' that faggot is.


EQ is a gambling engineer



Sent from my Motorola DynaTAC 8000X using Tapatalk

-Administrator of Clan EviL
-Developer (Trivia Development and Analytics)

Offline SmurfKinG

  • Sappers
  • ******
  • Posts: 991
    • View Profile
Re: CryptoWall Virus
« Reply #18 on: May 20, 2015, 12:47:35 AM »
im just gonna say this once


theres not a virus or a computer problem that i couldnt solve in my 20 years of experience, by goggling.

goggle shit up and if it doesnt work, try again tomorrow. im 200% sure someone has fucked those virus makers already with a good solution.


or, id fix the thing for you, id virus myself if need be to find the solution, id charge you $100 paypal. i have a reputation here. have fixed other people's shit before. 82[is] paypalled me $60usd to fix his video card problem about 3 years ago... you can ask :P


but, i can think of something that may work that you can try. i stumbled into an encrypting virus once.

all i had to do was, download a linux distro, boot with it, and all the files were readable and copyable. (were in a diff folder tho)

you could try with a small short linux like "Damn Small Linux" which is about 50megs but its somewhat limited, and unfriendly

 i recommend, WIFIWAY or KALI LINUX

for making the usb bootable, again.. use goggle.... kali linux usb etc..

or use a program called, UNETBOOTIN to make the usb from the images
« Last Edit: May 20, 2015, 01:36:07 AM by SmurfKinG »

Offline SmurfKinG

  • Sappers
  • ******
  • Posts: 991
    • View Profile
Re: CryptoWall Virus
« Reply #19 on: May 20, 2015, 12:54:51 AM »

- Dad, what have you done to the computer ? Why is it this slow and full of viruses?"

- Look son, the important thing is that I won an ipad, we travelling to the bahamas and my dick's gonna grow 7"

 8)

Offline Teron-Gorefiend

  • Grunt
  • ***
  • Posts: 203
  • Greetings.
    • View Profile
Re: CryptoWall Virus
« Reply #20 on: May 20, 2015, 05:17:02 AM »
Smurf king  im absolutely positive you can't fix that. Big security companies have tried and failed so far.  Go ahead,  infect yourself and then try to u  encrypt your data...
This is the reason I ended it all.

The newb, the mad and the retired.

Offline [TD]Medivh

  • Grunt
  • ***
  • Posts: 126
    • View Profile
Re: CryptoWall Virus
« Reply #21 on: May 20, 2015, 08:16:52 AM »
If the encrypted files arent the original ones, then were are they?

Offline [TD]Medivh

  • Grunt
  • ***
  • Posts: 126
    • View Profile
Re: CryptoWall Virus
« Reply #22 on: May 20, 2015, 08:22:56 AM »
Ok i could send you an "infected folder" through email,
100 USD is still better than 800 USD lol
But the questio nis , do i have to pay u even if u cant solve the problem ? haha

Offline Certified MENSA Genius Brain (smart)

  • "The Architect"
  • Global Moderator
  • Dragon
  • *****
  • Posts: 5384
    • View Profile
Re: CryptoWall Virus
« Reply #23 on: May 20, 2015, 09:18:44 AM »
lol do it, send smurfking your virus and if he fixes it he gets $100.  and if he doesn't fix it, well he probably got infected too lol
    

Offline I hate naggers

  • Ogre Mage
  • ********
  • Posts: 2345
    • View Profile
Re: CryptoWall Virus
« Reply #24 on: May 20, 2015, 09:51:15 AM »
If the encrypted files arent the original ones, then were are they?

youre a fucking retard and an idiot, how many times will you ask for things included in howls post

no wonder why youre so bad at war2![/td][/tr][/table]

Offline EviL~Ryu

  • (ง︡'-'︠)ง "Bitchin!" ®©℗™
  • Dragon
  • **********
  • Posts: 6059
  • "It's going to be Legen-(wait for it......)-DARY!"
    • View Profile
    • Clan EviL Official Page
Re: CryptoWall Virus
« Reply #25 on: May 20, 2015, 10:20:26 AM »
Haha


Sent from my Motorola DynaTAC 8000X using Tapatalk

-Administrator of Clan EviL
-Developer (Trivia Development and Analytics)

Offline [TD]Medivh

  • Grunt
  • ***
  • Posts: 126
    • View Profile
Re: CryptoWall Virus
« Reply #26 on: May 20, 2015, 11:41:47 AM »
Oh lol ok i didnt see it

p.s. Claw ur a scrub!

Offline SmurfKinG

  • Sappers
  • ******
  • Posts: 991
    • View Profile
Re: CryptoWall Virus
« Reply #27 on: May 20, 2015, 01:24:48 PM »
k im reading bout this crpyocrap

msg me in game chat, my aka is "ciosed"

theres some thing i need to ask....

Offline Delete mine too

  • Death Knight
  • *********
  • Posts: 2652
  • http://meatspin.com
    • View Profile
    • http://meatspin.com
Re: CryptoWall Virus
« Reply #28 on: May 20, 2015, 02:01:50 PM »
Dude I will try to fix it for free. Don't waste a penny.

Offline SmurfKinG

  • Sappers
  • ******
  • Posts: 991
    • View Profile
Re: CryptoWall Virus
« Reply #29 on: May 20, 2015, 03:42:21 PM »
yeah i just gave him some tips and some tools to use.
i goggled around and read that basically his only options are :

- recovering the files using file recovery tools
(since what cryptowall does is, make a copy of the files with encryption then deleting the original files),
Spoiler
the factor here is wether cryptowall did a secure delete or a standard delete, i read that cryptowall 2.0 and below use standard delete, its unknown wether 3.0 does secure delete or standard, but even if its secure delete they are still recoverable but require more thorough method, it is more time consuming, and the filenames would be lost.. you would be recovering files based on extensions, but recoverable :P)
told me its a 1tb hard drive, he told me he downloaded 2 spyware apps onto hard drive which may have decreased his chance of recovering but has  900megs free so its chances of recovering are high in my opinion.


 - or recovering from system restore points


he told me system restore points were apparently deleted.
told him , that cryptowall may have only deleted the registry entries for the system restore points but the actual system restore points may  still be there. (may be those are still there on the system volume info folder)..
and if they are thats the the best and easier way to go on recover the files.(using shadow explorer)

but he didnt have access to the infected computer at the moment.


so, getting access to system volume info folder is about giving permisions, if u get stuck pm me when ur at the computer ill teamview and enable its readability, no prob.


« Last Edit: May 20, 2015, 04:05:03 PM by SmurfKinG »