Cryptowall 3.0

Forums › Microsoft Windows › Cryptowall 3.0

krispienz

56 posts

Master Geek
+1 received by user: 2

#177114 22-Jul-2015 21:57

My laptop has the Cryptowall ransomware. Tried this https://youtu.be/gPelrlpQIJg but my laptop had no restore points to revert folder to previous version. One computer place on TradeMe said they couldn't help me if I didn't have restore points. They offered $80 to remove my operating system and re-install. If I did a full destructive recovery myself, would that rid of the cryptowall virus? I've given up on restoring files, I can get most of it back with facebook, google drive and emails. Should I keep the set up files in my download folder to save me time re-instaling my favourite programmes?

Thanks in advance for your help.

Oblivian

7345 posts

Uber Geek
+1 received by user: 2117

ID Verified

#1350105 22-Jul-2015 22:17

It's an absolute ahole. And undetectable. Your only real way out is a format/reinstall.

Yay drive-by infected adverts!, thanks Adobe.

Part of it's action is to disable NTFS previous version rollback and System Restore.

As you will have found, unless you have the injection detection wound up on capable AV - it only finds it when the ransom .txt are generated. Too late then.

Kiss em goodbye

xpd

Geek of Coastguard
14115 posts

Uber Geek
+1 received by user: 4574

Retired Mod

ID Verified

Trusted

Lifetime subscriber

#1350172 23-Jul-2015 08:42

Yeah doing a fresh install is the best way to ensure its gone. Hope you have backups of any documents etc....

Keeping install files on the same system might not be advisable, as they could get infected with something as well.... so you spend an hour reinstalling Windows, just to infect it again by running a compromised setup program. And start all over again.
I just download my programs "fresh" or have them backed up onto a removable drive.

XPD / Gavin

LinkTree