JoshRoss

Members
  • Content count

    15
  • Joined

  • Last visited

About JoshRoss

  • Rank
    Candidate

Profile Information

  • Gender
    Male
  • Location
    United States

Recent Profile Visitors

77 profile views
  1. Could you attack the ransom text file as well? I assume it would be asking that. Also, have you any idea how this happened? After some site surfing, torrents, other file downloads? Ransomware usually doesn't appear out of anywhere. As far as the research goes, I could not find a decryptor for this particular malware. I also do not want to suggest any removal tips before Kaspersky official representatives provide their own insight into the situation.
  2. It could be, that the repair software has its own folder, and your broken file was removed and replaced with a fixed on elsewhere. I would also like to know what software you used to repair your broken video files? Have you tried searching for your file?
  3. Also, Hopefully, Kaspersky can help you with the problem. By the way, If you have a recent system restore point, you could try using that to restore your PC to the state before ransomware hit. But as Richbuff said, backups are your best bet here.
  4. No worries, unfortunate that conventional solutions did not help. I guess the anti-virus might have had a false-positive. In your case, I would still be careful and do regular scans just in case. You can never be too careful. Good luck!
  5. Are you certain you are downloading the current version from the official site? It could be that one of the mods causes the issue. Did you notice a particular pattern in when it gets deleted? I know for a fact that some mods can be malicious and potentially infect the browser to collect data, but not 100% certain on that. If there is that one mod, that constantly keeps affecting it, the anti-virus might react to it. The back up that is not being bothered contains older version? Uninfected maybe? Different mods? You could try checking which mods are not there, and see if that is the underlying problem.
  6. I wouldn't be surprised if Virus Desk did a much more basic scan or checked different parts of the link. Although it is a .js file behind it, It should check if it has any malicious intents behind. Interesting result indeed. Lets way for official representatives to comment on this.
  7. Unfortunate to hear that ransomware struck you. It looks like this ransomware is relatively new, and I do not think a decryptor is available for it. Still waiting for malware hunters to determine what origin this malware is. I would wait for official Kaspersky representatives to help you out, but I know for a fact that you will need to remove the ransomware files that encrypt your data, you can do that by following the steps: Please see: Kaspersky Lab Forum > English User Forum > Virus-related issues > the fifth (5th) Important topic. There, you will find instructions for GSI and AVZ logs. 1. Windows restore point. If you have a recent restore point before infecting, you should be able to use it to retrieve the data by resetting your Windows to a healthy state. 2. Shadow explorer. If the ransomware doesn't delete shadow copies of the files, you can recover them using it. Hopefully, this helps you a little. Good luck!
  8. Have you had any luck removing it? Maybe conventional ways like Malwarebytes or Hitman Pro can help?
  9. Any luck decrypting the files?
  10. Hey, it looks like it is Cerbera virus/malware. You could try a couple of steps for removal, but unfortunately, it is not guaranteed it is going to work. 1. Restart your PC in safe mode with networking (With Windows 10 just holding shift during boot will allow you to select that option) 2. Install any anti-virus software, scan your PC and remove any files that related to file encrypting. And try one of the following methods to try and recover the data. 1. System restore. If you had an automatic system restore point or you made a manual, you can try restoring your previous version of windows before the encryption. 2. Shadow Explorer. Most files have shadow volume which this ransomware usually does not delete. 3. Cerber Decryptor. Unfortunately, only one official version of this has been released by TrendMicro. It is not guaranteed to help though. Hopefully, this helps you solve the issue. Good luck!
  11. It usually takes a little to confirm the website. I had a similar issue before, I just applied to then link that was posted by the moderator above, and I no longer have issues. Although it did take it a couple of days before it was resolved, understandably so.
  12. Usually, it is not blocked if it is a safe URL. However, if the URL is brand new and the web has no information about it, it might treat it as a threat. I recommend doing a scan with Kaspersky virusdesk (Link below) https://virusdesk.kaspersky.com/ And if it treats as a dangerous link, you should be able to apply it as a safe link through the email provided there. Good luck!
  13. Glad you sorted the issue out, for the future, it is always beneficial to be aware of what you are doing on the internet. Avoid clicking shady links, or in general links, you don't recognize. Only download files from trustworthy websites. Naturally, it sometimes might be unavoidable to do so. It is better to be extra careful or do some research before downloading it. Also, spam emails, if you are using common e-mail providers like Gmail, Yahoo and so on, they usually filter the spam quite well if it is less sophisticated. But it doesn't hurt to be extra careful before clicking any email links. Good luck!
  14. Thank you! They worked like a charm!
  15. Several days ago piesearch appeared on my computer and I don't know what to do! I have already tried AVG and Kaspersky but they failed to help me. What else can I try to remove piesearch? Can I use these instructions? <deleted link>