Become a fighter against malware and join the forum at SensorsTech!  The SensorsTech’s forum is the place where you can solve your PC issues and educate yourself about malware. You are welcome to discuss various security topics with our professional team and other users like you! To unlock all features of the forums, you have to create an account. Otherwise, you can only browse the topics without taking part in the discussions. To leave a comment or ask your questions, read our Registration Agreement and create your free account here.

Recent Posts

Pages: [1] 2 3 ... 10
1
Malware Removal Questions and Guides / Re: All_Your_Documents.rar Virus
« Last post by Execute on February 20, 2017, 02:49:00 pm »
Most anti-virus programs and security tools nowadays should be able to remove the virus, but unfortunately are unable to decrypt the files...
2
I was hit by the version named amanda_sofost@india.com and the exe was aamanda.exe. I cannot afford the 7BTC to get the decryption so I am holding files for analysis to help get this solved.

Hello, @jtkstc.
You shouldn't pay the ransom price even if you could afford it! It is a good idea to keep your files and wait for a solution. Maybe you could share if there are differences in the ransom note or anything else that might help distinguish the ransomware? It might prove helpful.

Kind Regards,
Execute
3
I was hit by the version named amanda_sofost@india.com and the exe was aamanda.exe. I cannot afford the 7BTC to get the decryption so I am holding files for analysis to help get this solved.
4
Internet and Networking Security / Re: Which is the Most Secure Browser?
« Last post by Grover Frank on February 18, 2017, 09:18:38 pm »
I was aware about browser security but this discussion helped me a lot knowing what it means.

Thank a lot guys.
5
Malware Removal Questions and Guides / Re: All_Your_Documents.rar Virus
« Last post by Grover Frank on February 18, 2017, 09:06:51 pm »
This kind of virus uses encryption method to decrypt of system data which can be accessed only by the decryption key.
I believe this keys are not available.
Encrypted file is only available through the cyber criminals, victims may be tempted to purchase it and pay the exorbitant fee.
You can try some Malware Removal Tool which may help you to remove those viruses.
I have heard about Malwarebytes Virus Removal Tool which tends to remove malwares and viruses from system.
6
Malware Removal Questions and Guides / Re: All_Your_Documents.rar Virus
« Last post by Execute on February 17, 2017, 05:34:25 pm »
@puskas, @TINAPAYMASAKER

Currently, there is no decrypting tool available for this ransomware. Even if a security software removes the cryptovirus from infecting your and other PCs furhter, it cannot decrypt your files. If a decryption method is found, we will contact you to notify you of that and update the article in the blog.

What I can tell you is that after you remove the virus, it will no longer be active - usually security programs make sure of that. Formatting your hard drive should be your last option, as formating may leave some files in the system that can still leave the ransomware active. The security software is the thing that cleans your PC from the virus and its files. Also, if you do format your disk drives, it might be next to impossible to restore any files that got deleted before that. Usually, some ransomware viruses deleted the original files and encrypted their copies (because it made copies of them). So Data Recovery Programs could recover the deleted data and restore the original files. You should try that out, although for this particular case, the files might just be put inside that .rar file. I suggest you try Data Recovery programs, before formatting.

Note: If you come across a service that states that it can decrypt your files and bring them back to normal, be aware that they cannot do that, as even engineers and researchers from AV companies struggle with this, So a service that guarantees such a service as successful, especially if they want money for that is a scam. Some companies paid over 1000$ for such a service and their files weren't recovered, of course.
7
Malware Removal Questions and Guides / Re: All_Your_Documents.rar Virus
« Last post by TINAPAYMASAKER on February 17, 2017, 12:47:30 am »
Hello!

My computer is being infected with this kind of malware, it happens just yesterday. To be honest with you I am really into downloading movies via torrent and maybe that's where I got the malware. I have been using torrent many years ago and I never had anything like this. I hope you could help me to  bring back all of my important files. Thank you so much and godbless
8
Malware Removal Questions and Guides / Re: All_Your_Documents.rar Virus
« Last post by puskas on February 16, 2017, 04:01:17 pm »
Hi! I've just realized I got infected by the abovedescribed ransomeware. I've read trough your page about this ransomeware, as well as everything that is aout there on goggle. I'm currently doing the scan with SpyHunter (it already found some issues, but still scanning, and at the same time kaspersky also removed something it didn't like. After reboot I will probably do the manual removal as well in safe mode, just to get rid of it for sure. My question is really: will I be able to encrypt my files back to their original state with the free version of Spyhunter? (or with any other decryptor software out there? Can you tell me anything optimistic? :) Or should I just accept my fate and format everything?
9
Malware Removal Questions and Guides / All_Your_Documents.rar Virus
« Last post by Execute on February 16, 2017, 10:17:00 am »
There is a new ransomware virus dubbed All_Your_documents.
It is named that way because after it infects a PC,
it puts user's files inside a password protected archive,
named All_Your_documents.rar.

Afterward, the user is prompted to pay a ransom for the unlock code
and put it inside the following Internet page shown down here:



You can read more about the malware:
"All_Your_documents.rar Virus" from this link.

If you have been infected by the virus or have
any questions regarding the malware, feel free to ask!

Best Regards,
Execute
10
Malware Removal Questions and Guides / Re: Cerber ransomware,how can decrypt my files ?
« Last post by never on February 14, 2017, 04:40:21 pm »
Hello, you can try a boot scan with Avast antivirus. It's for free. Simply download Avast and click on the magnifier icon after installing it. From there choose Boot Scan. If it's not available, look for Startup Scan. If this too is not available, locate Full Scan and initiate it. It includes boot time scan. This will restart your computer and scan it before it has booted any type of software and make sure you have removed the virus.

Another thing you can do to restore your files if they have been encrypted by this virus is look for step "2. Restore files encrypted by Cerber" in the article from the link below:

http://sensorstechforum.com/updated-cerber-ransomware-_readme_-hta-remove-restore-encrypted-files/
Pages: [1] 2 3 ... 10