Posted: 8/30/2013 9:13:08 AM EDT
| fbi.cyber crime division says if I send money pac 300.00 they will unblock it..is this a new obozo fund raiser.can I unblock it if not a new tower is only 250.00.anyone else seen this scam. |
|
Quoted:
fbi.cyber crime division says if I send money pac 300.00 they will unblock it..is this a new obozo fund raiser.can I unblock it if not a new tower is only 250.00.anyone else seen this scam. You must be new to the internet...welcome to ar15.com! There's this website called google.com that'll let you look up things like "fbi unlock computer scam". It's only been around for the last couple of years (the scam that is), so I understand if you've never heard of it; it is still pretty new. Not sure they even have it in Arkansas yet, for example. Then again, not even real sure they have plumbing in Arkansas yet. 
|
|
Quoted:
You should probably pay it, just in case. Yeah, I had to pay once when the same thing happened to me. I just put in my credit card info and the problem went away. Now, they just take the money out every month automatically. I don't have to do anything. It's really easy. |
|
Quoted:
Malwarbytes in safe mode usually fixes it. But the new variant requires a restore/reinstall. There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off? I would also like to point out that Linux doesn't have these problems. |
|
Quoted:
There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off? I would also like to point out that Linux doesn't have these problems. Quoted:
Quoted:
Malwarbytes in safe mode usually fixes it. But the new variant requires a restore/reinstall. There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off? I would also like to point out that Linux doesn't have these problems. at.1% maket share their is a reason for that. |
|
Quoted:
There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off? 
Or do you mean by "time" as as much time until the sun is a cold glowing rock in the sky, and "chops" as 20 of the nation's top forensic scientist with $50,000 worth of software? 
|
|
download rkill from another pc onto a usb drive and get the latest version of malwarebytes.
Reboot in safe mode with networking. Run rkill. then run malwarebytes. You will get lots of false warnings that you are going to destroy your system. Ignore them. This should fix it because I had to do this very thing last night. |
|
http://www.ar15.com/forums/t_1_5/1525965_Trojan_rootkit_zeroaccess_removal__what_is_the_best_way_to_ger_rid_of_it_.html
this thread was from a couple of days ago. The one you caught is reveton malware. I went through this a couple of months ago. Might be a few solutions in there... |
|
Quoted: at.1% maket share their is a reason for that. Quoted: Quoted: Quoted: Malwarbytes in safe mode usually fixes it. But the new variant requires a restore/reinstall. There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off? I would also like to point out that Linux doesn't have these problems. at.1% maket share their is a reason for that. So, don't leave us hanging, what is their reason for that? |
|
Quoted:
at.1% maket share their is a reason for that. Quoted:
Quoted:
Quoted:
Malwarbytes in safe mode usually fixes it. But the new variant requires a restore/reinstall. There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off? I would also like to point out that Linux doesn't have these problems. at.1% maket share their is a reason for that. You need newer stats, Linux is becoming far more mainstream than .1 percent. It gets murkier when you consider that MacOS and Android are both Linux ports. The real reason is that Linux doesn't let users make changes to the core system files without asking them to authenticate and agree to do so. Windows, on the other hand, will happily setup the first (and susequent) user(s) as a local admin and will happily allow any POS software to automatically install without consent or even visibility. Anyone who runs an OS, any OS, with a user account that has both internet connectivity AND admin rights is a fool. |
|
These links give pretty detailed instructions on how to tackle this beast. http://forums.anvisoft.com/viewtopic-54-4227-0.html or http://www.bleepingcomputer.com/virus-removal/remove-fbi-monkeypak-ransomware |
|
Quoted:
Or do you mean by "time" as as much time until the sun is a cold glowing rock in the sky, and "chops" as 20 of the nation's top forensic scientist with $50,000 worth of software? Quoted:
Quoted:
There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off?
Or do you mean by "time" as as much time until the sun is a cold glowing rock in the sky, and "chops" as 20 of the nation's top forensic scientist with $50,000 worth of software? No, I've been in IT for a long time and I have yet to see a wild environment infection of malware that was so bad I couldn't fix it given the time and tools. I've probably reloaded a handful of machines over infections but, those were generally because the client wanted me to, not because it would be impossible to fix. |
|
Quoted:
There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off? I would also like to point out that Linux doesn't have these problems. Quoted:
Quoted:
Malwarbytes in safe mode usually fixes it. But the new variant requires a restore/reinstall. There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off? I would also like to point out that Linux doesn't have these problems. your really being overly picky about his response. Depending on the level of fucking it IS easier in a lot of cases just to re-image a device. Unless its some prod server then pull the data and re-image. an hours worth of work vs untold hours finding broken shit and correcting it. |
|
Quoted:
No, I've been in IT for a long time and I have yet to see a wild environment infection of malware that was so bad I couldn't fix it given the time and tools. I've probably reloaded a handful of machines over infections but, those were generally because the client wanted me to, not because it would be impossible to fix. Quoted:
Quoted:
Quoted:
There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off?
Or do you mean by "time" as as much time until the sun is a cold glowing rock in the sky, and "chops" as 20 of the nation's top forensic scientist with $50,000 worth of software? No, I've been in IT for a long time and I have yet to see a wild environment infection of malware that was so bad I couldn't fix it given the time and tools. I've probably reloaded a handful of machines over infections but, those were generally because the client wanted me to, not because it would be impossible to fix. Yes and given enough time and resources you could crack Truecrypt. Does not make it a viable or cost effective solution. |
|
Quoted:
So, don't leave us hanging, what is their reason for that? If you're in the business of exploiting stupid porno sites to you aim at the 92% of the people running Windows, the 7% running an Apple OS, or the 1% running Linux? In the security field we call this security through obscurity. An OS so obscure nobody cares about it. A punk-ass sister command got their web servers pwn'ed two weeks ago - they're running Solaris ... many here have never heard of that OS let alone seen it or used it. My web sites run Windows and SQL ... and get pounded on relentlessly ... and because my coders are kick ass they continue to be virginal. Tomorrow some of our web sites are once again called upon to be attacked by Anonymous ... I'll check on the system monitors a couple of times tomorrow to see what's happening but I'm not worried beyond a DoS condition. |
|
Quoted:
The real reason is that Linux doesn't let users make changes to the core system files without asking them to authenticate and agree to do so. Windows XP, on the other hand, will happily setup the first (and susequent) user(s) as a local admin and will happily allow any POS software to automatically install without consent or even visibility. Six years ago. |
|
Quoted:
I won't comment of the rest of this, but OSX is in no way shape or form, derived from Linux. At all. Quoted:
Quoted:
It gets murkier when you consider that MacOS and Android are both Linux ports. sudo correct |
|
Quoted:
I won't comment of the rest of this, but OSX is in no way shape or form, derived from Linux. At all. Quoted:
Quoted:
It gets murkier when you consider that MacOS and Android are both Linux ports. 
|
|
Quoted:
I won't comment of the rest of this, but OSX is in no way shape or form, derived from Linux. At all. Quoted:
Quoted:
It gets murkier when you consider that MacOS and Android are both Linux ports. Unix would be more appropriate. |
|
Quoted:
sudo correct Quoted:
Quoted:
Quoted:
It gets murkier when you consider that MacOS and Android are both Linux ports. sudo correct username not in sudoers |
|
Quoted:
No, I've been in IT for a long time and I have yet to see a wild environment infection of malware that was so bad I couldn't fix it given the time and tools. I've probably reloaded a handful of machines over infections but, those were generally because the client wanted me to, not because it would be impossible to fix. We're likely talking apples and oranges here. I follow the guidance and best practices of the SANS, NSA, DISA, and the U.S. CyberCommand. There is no "low hanging fruit" in my orchard. Once one of my machines is pwned it's cheaper, easier, and safer for do a melt and repour. We're not getting hit by bull-shit script kiddies and ransomware but either an 'unidentified nation' or professional Russian/Eastern European "organized crime". If I lose a workstation it's pretty much going to the federal government's forensics for analysis 9 out of 10 times. Following the DISA's STIGs and running NIDS, HIDS, and an enterprise managed whitelist I see thousands of stupid attacks blocked a day. Some bigger days I'll see +200,000 SQL injection attempts a day .... that's a whole lot of pounding. Time is money where I work and we have backups for just occassions. Doing a disk-to-disk restore it takes very little time. When we open a case we'll check status on the machine to make sure all the protections were running and if so the network security center gets notified and a case ensues. We'll pull the infected disk(s) for forensics, put new disk(s) in and have a work station up in about a half an hour. We have fewer and fewer physical servers and in the last three years we've had no server infections. With a virtual machine it can take five minutes ... down the infected VM and light up a clone. We're moving to virtual desktops in the next couple of years and we're going to bring that sort of speed to the desktop issues. In my last case a 'unidentified' nation swapped out one of Windows' core services with a substitute file that had the exact size as the original file. It didn't have the same MD5 hash so every time Windows went to use this commonly used service the host based security system would prevent it from launching. A trouble call came into the help desk as Windows was "broken". We pulled logs, ran McAfee, Symantec, and Malwarebytes full scans and they came up clean but HBSS kept screaming. When we manually ran the hash and compared it to other machines we agreed with HBSS ... a most interesting attack. Yeah, we could have mounted the disk with Linux and blew out put the correct file in but with that level of sophistication the disk is more valuable in it's pristine state so off it goes via Fed-Ex. |
|
Quoted:
There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off? I would also like to point out that Linux doesn't have these problems. Quoted:
Quoted:
Malwarbytes in safe mode usually fixes it. But the new variant requires a restore/reinstall. There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off? I would also like to point out that Linux doesn't have these problems. Lol! Gotta love GD. |
|
Quoted:
Yes and given enough time and resources you could crack Truecrypt. Does not make it a viable or cost effective solution. Quoted:
Quoted:
Quoted:
Quoted:
There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off?
Or do you mean by "time" as as much time until the sun is a cold glowing rock in the sky, and "chops" as 20 of the nation's top forensic scientist with $50,000 worth of software? No, I've been in IT for a long time and I have yet to see a wild environment infection of malware that was so bad I couldn't fix it given the time and tools. I've probably reloaded a handful of machines over infections but, those were generally because the client wanted me to, not because it would be impossible to fix. Yes and given enough time and resources you could crack Truecrypt. Does not make it a viable or cost effective solution. That's certainly true. It's important to remember that my perspective is one of working on user's computers who know next to nothing about security. In my production environment we are secure enough that we don't see these kinds of infections, even on Windoze boxen. Of course, no home user in their right mind would want to run on a machine as restricted as ours are. When I'm doing side work I often have the time available to me, and the desire to get to the root cause strong enough, to investigate it until it's clean. The two paradigms are worlds apart. That doesn't change my original stance which is: Any software glitch that can be done, can be undone. FWIW, there currently isn't enough computing power available in the known universe to crack 256AES within the lifetime of the person attempting to do so. Which makes Truecrypt, currently, out of reach for us. |
|
Quoted:
There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off? I would also like to point out that Linux doesn't have these problems. Quoted:
Quoted:
Malwarbytes in safe mode usually fixes it. But the new variant requires a restore/reinstall. There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off? I would also like to point out that Linux doesn't have these problems. Clearly you don't have enough experience with Power Users. I had a power user yelling at me for telling him to wipe his machine after he ... uh "upgraded" from Centos to RHEL via a repo rehome and yum upgrade. I got it booting, then told him to wipe it. He yelled a lot. |
|
Quoted:
fbi.cyber crime division says if I send money pac 300.00 they will unblock it..is this a new obozo fund raiser.can I unblock it if not a new tower is only 250.00.anyone else seen this scam. I caught that shit last week and it was a major pain in the ass. Thank you AKM Freak for coming over and wiping that crap of my computer. No more Black midgit porn for me. It hurt when I had to tell the Mrs, but she's a pretty cool woman. |
|
Quoted:
Can your file allocation table be destroyed by malicious code? Can that just be "undone"? Quoted:
Quoted:
Any software glitch that can be done, can be undone. Can your file allocation table be destroyed by malicious code? Can that just be "undone"? Without admin rights? |
|
Quoted:
Clearly you don't have enough experience with Power Users. I had a power user yelling at me for telling him to wipe his machine after he ... uh "upgraded" from Centos to RHEL via a repo rehome and yum upgrade. I got it booting, then told him to wipe it. He yelled a lot. Quoted:
Quoted:
Quoted:
Malwarbytes in safe mode usually fixes it. But the new variant requires a restore/reinstall. There is NO software glitch on the planet the *requires* a restore/reinstall. Any software state that can be done, can be undone. The question then becomes: Do you have the time and chops to pull it off? I would also like to point out that Linux doesn't have these problems. Clearly you don't have enough experience with Power Users. I had a power user yelling at me for telling him to wipe his machine after he ... uh "upgraded" from Centos to RHEL via a repo rehome and yum upgrade. I got it booting, then told him to wipe it. He yelled a lot. Sadly the *nix admin I get to do is on my own boxes. If you could convince the Feds to go to Ubuntu or LMDE (Hellm RHEL would even be OK) desktops I'd be much happier. |