I found evidence of what I think is the third generation of cryptowall on a computer at work. I found about 10 files. 5 images, 5 .html files of cryptowall threat things on the PC in the startup folder as well as another 10 under C. This meant that every time the computer was booted these files would appear. These files explain what cryptowall is and what to do to unlock your drive, etc.
No data seemed to be missing, no files seemed to be encrypted. I downloaded a program to check the registry for any records of cryptowall having encrypted anything. It found nothing. The computers at work have Microsoft Security Essentials. Essentials, found no viruses. ADWCleaner did not seem to find much.
My boss said he opened up an email and that is when he thinks these things started appearing. He was using the Microsoft Outlook application.
Security in this business is essential, and data loss could be very very bad for business.
Does Microsoft Outlook have bad security? If so, I'll suggest it to be uninstalled. Chrome would never let this kinda thing get through.
What is the chance that the cryptowall virus is not actually on the computer and the email was just trying to scare people? These files have been on the computer for a few weeks I think. So if it was to do anything, it should have done it already?
What should be my plan of action here? I don't think my employer understands how much is at risk. I have heard that crypto viruses can get through an entire network
No data seemed to be missing, no files seemed to be encrypted. I downloaded a program to check the registry for any records of cryptowall having encrypted anything. It found nothing. The computers at work have Microsoft Security Essentials. Essentials, found no viruses. ADWCleaner did not seem to find much.
My boss said he opened up an email and that is when he thinks these things started appearing. He was using the Microsoft Outlook application.
Security in this business is essential, and data loss could be very very bad for business.
Does Microsoft Outlook have bad security? If so, I'll suggest it to be uninstalled. Chrome would never let this kinda thing get through.
What is the chance that the cryptowall virus is not actually on the computer and the email was just trying to scare people? These files have been on the computer for a few weeks I think. So if it was to do anything, it should have done it already?
What should be my plan of action here? I don't think my employer understands how much is at risk. I have heard that crypto viruses can get through an entire network