New Ransomware virus targeting video game save files specifically. Be careful, yo.

Discussion in 'Unrelated Discussion' started by tehtrekd, March 13, 2015.

  1. cwarner7264

    cwarner7264 Moderator Alumni

    Messages:
    4,460
    Likes Received:
    5,390
    Mine's a gif though, so I win. @Geers can back me up on this
    stuart98 and Geers like this.
  2. tatsujb

    tatsujb Post Master General

    Messages:
    12,902
    Likes Received:
    5,385
    oh that's no issue x'D
    [​IMG]
  3. thetrophysystem

    thetrophysystem Post Master General

    Messages:
    7,050
    Likes Received:
    2,874
    Look, I say so, and you say not. You comment cheezy cruddy videos, I comment cheezy cruddy videos (however I embedded mine so you knew what it was without a link, much more fluid). This is terrific and entertaining and all that, but you can't just proclaim at the end of every one of your comments "you're winner". You look as silly as that truck passing the finish line in the cruddy nonexistant contest it is in. "You're winner" alright. you're always winner tatsu...

    At the end of the day, I am sure at least half or more of the people here, including squishy, calls that stupid virus ransomware as well, and we don't care if you consider it ransomware or not because we in large volumes of mobs will continue to call it that and if you keep closing your eyes shutting your ears and yelling nope nope nope, it won't change it. We don't care what you communicate, we will still communicating to each other that it is in fact so.

    You can't just call squishy wrong, me wrong, wikipedia wrong, try to say squishy and the title of this thread was "mistaken in context" to mean exactly what you happen to want it to mean, and whatever.

    Just giving you a reality check, you may want to consider the very real possibility that over half of the internet in fact finds your definition of ransomware wrong. The percentage is larger than you try to portray, not just "dees 2 retards 'ere", not "just wikipedia", but possibly up to or more than 30%, 50% perhaps, maybe more. I understand if that scares you, but denial is bad. Acceptance is the first step brah.
  4. tatsujb

    tatsujb Post Master General

    Messages:
    12,902
    Likes Received:
    5,385
    ???? x'D where is this coming from? I don't see "you're winner" in my posts.... o_O


    It may ruffle your jimmies but yeah I know this topic.

    I don't care what you call it, call it what you like just don't come crying to me when the fix one guy had on one ransomware doesn't work on another.
    Last edited: March 16, 2015
  5. thetrophysystem

    thetrophysystem Post Master General

    Messages:
    7,050
    Likes Received:
    2,874
    There are even different forms of encryption based ransomware. Their fixes don't work between them. Doesn't make them entirely different, because cryptolock and cryptowall even sound soooooo different...

    I am the only one I see in this thread posting about blocking the allowance of EXE to run from temp folders, as well as keeping java and flash updated, and not to accept anything attached in an email unless you personally know the person that sent it because businesses don't send attachments ever, and do disable rdf so its harder to remote access your desktop without authorization.

    You are just arguing with me. Good contribution by the way...
  6. tatsujb

    tatsujb Post Master General

    Messages:
    12,902
    Likes Received:
    5,385
    upload_2015-3-16_23-1-32.png
    OMG !

    why is it that you can't seem to let any of my knowledge seep into you? and I'm the one "closing your eyes shutting your ears and yelling nope nope nope" jesus.

    What FIXES? there are none. that's WHY i've been (emphasize BEEN, i'm done, so done) making a point of order explaining the two are different in that encryption HAS NO fix.
  7. thetrophysystem

    thetrophysystem Post Master General

    Messages:
    7,050
    Likes Received:
    2,874
    Not true. One is a bacteria. You get it, you get rid of it. The other is a virus. You immunize for it before you get it or react to it really fast or else it is lethal.

    So to clarify for all who are getting lost in tatsu's mini-episode going on here. You can't remove the encryption ransomware after it has encrypted your stuff.

    What you must do, is disable windows RDF so it can't confirm with the virus's source to initiate or send the key, set to disallow on the appdata temp folders that browsers use for cookies and stuff as a loophole letting the exe in as a cookie can still allow it to run and encrypt your stuff, keep java and flash updated because security loopholes can allow it to run through a darn popup or embedded harmless-looking ad (I use whitelist adblocker so that can't hurt neither), and don't accept any unknown attachments in emails even business emails because they never send attachments or run any unknown .exe even as part of something else you download, as well as "show all file extensions" so nobody sends you a *.pdf.exe and the .exe is hidden so your think its a pdf...

    By react to it as soon as you get it by the way, I literally mean instantly. Yank ye ole power chord from the back of your computer the instant you notice any spontaneous changes you haven't done to your computer, especially if it happens when you load a webpage from google or a link or if you download and launch something new, because that is when you would get the virus, upon loading something stupid via webpage or new download/attachment. If you do it within seconds, you will have few if any files encrypted, and there is a chance none of them will be second-encrypted meaning decryption is possible on the first layer. Of course, if you yank the power chord, restart in safe mode no networking and bare necessity startup programs.

    Also, it is important to mention there is 2 kinds of ransomware. Crypto-anything tends to encrypt your files so can't be fixed once gotten, and then fakes exist. You should pay NEITHER of them. If you got a fake one, you will feel stupid if you pay. If you got the real deal, well if you would HAVE to pay them for whatever reason, don't worry about the time because you can always set your bios clock back to date-of-infection and the virus will literally think it is brand new, avoiding you late-ransom fees. YOU SHOULD NEVER PAY THOUGH BECAUSE YOU ARE SUPPORTING CRIME BY DOING SO.

    Anyway, tatsu is done, which is good because he only knows what to call it and what not to call other things, as well as "it's permanent it's permanent blablabla", while I know prevenative measures. Just as well in my opinion.
    Last edited: March 16, 2015
  8. slocke

    slocke Active Member

    Messages:
    121
    Likes Received:
    244
    Start a poll and let the public decide who is right.

    I'm in trophy's camp. Tatsujb is completely wrong.
  9. tatsujb

    tatsujb Post Master General

    Messages:
    12,902
    Likes Received:
    5,385
    about what???
  10. tatsujb

    tatsujb Post Master General

    Messages:
    12,902
    Likes Received:
    5,385
    oh that's just good and joly.

    the whole thread you're spouting out disinformation, then all the sudden you realize you've been missing a point I was making... time to save face a cover it all up with a wall of research.

    well you know. all in all I can't complain. It's what I wanted. At least in the end you did do your research. Glad you learned something today.

    I'd appreciate it if people weren't hypocritical about it on a constant basis and could admit they did as well as I do instead of putting up this pathetic show.
  11. thetrophysystem

    thetrophysystem Post Master General

    Messages:
    7,050
    Likes Received:
    2,874
    Yeah, no, I was factual the entire time, posted my info on page 2 brah. Non-encrypting ransomware is still ransomware though.
  12. tatsujb

    tatsujb Post Master General

    Messages:
    12,902
    Likes Received:
    5,385
    you were also being ill-informed
    how are you gonna salvage this?

    any way you flip it it doesn't work.

    if you're gonna be evasive about it and say "the fix I was referring to is immunization, preparation" then it doesn't work all over again because it will be a good idea from one encryption base ransomware to the other and will do the same thing and bear the exact same result. (pass or fail)

    then again if we're pulling up wikipedia and being strict about definitions, why should I let "fix" slide there?

    doesn't one thing need to be broken before it can be fixed?

    there's "fix" and "prevention" the two distinct terms exist for a reason.

    and you can't really stick to that term because it has the notion of having 'solved' a problem. and the problem isn't solved, nor is it 100% sure you won't have it or that you are 100% immunized against it.
  13. cwarner7264

    cwarner7264 Moderator Alumni

    Messages:
    4,460
    Likes Received:
    5,390
    Lads please.
  14. thetrophysystem

    thetrophysystem Post Master General

    Messages:
    7,050
    Likes Received:
    2,874
    Noo, I mean they enter through different paths and do things in different orders. Even different versions of the same one, tweaked differently, will respond well to blocking certain things but not others, or will continue encrypting through certain requirements met but not others. Some will respond to blocking rdf, some will not respond to it and will encrypt anyway. Some respond well to blocking exe from running from temp internet folder, some don't because they launch from java app via popup exploit. Some encrypt your files the second they launch, some wait for internet connection from where they send their key. Some encrypt all files and then double-encrypt, some encrypt each file and then double encrypt before moving on.

    CWarner hasn't deleted my posts and told me to stop misinforming people, so obviously my terrible propaganda isn't as obviously evil as you make it out to be. Thank goodness you aren't a moderator. You might ban someone for incorrect grammar. Executible... don't you executAble me...
  15. tatsujb

    tatsujb Post Master General

    Messages:
    12,902
    Likes Received:
    5,385
    things... other... certain... same one... enter through different paths.... thank god you know what you're talking about.

    or maybe thank god I do, so that I can see problems again and again and again.

    go back to wikipedia, you were doing better with than without.


    now it's back to loophole after loophole after loophole.

    too lazy to reupload just this bit.

Share This Page