[Swordmaker]

For your ping list as a warning as this WILL run from opening an email which has a document reader attached that can execute a Javascript. It starts encrypting files as soon as it is opened.

[Viking2002]

We just isolated this on a workstation today, removed it from the domain, yanked the Ethernet cable, and reimaged the whole hard drive. The files were totally shot. The network guys traced it back to a file attachment that was saved out on an accounting drive on a local server, and cleaned it before anyone else could get infected. I did the initial triage, and gave the assist getting the PC scrubbed. What a mess. And this little booger actually changes the desktop wallpaper to insert the ransomware warning as the default background. That's a new one. Little maggots.

[InterceptPoint]

Does anybody know if there would be a problem opening an email with this JavaScript file as an attachment with either a gmail app or gmail via chrome?

Is Google protecting me?

Just hoping.

[GingisK]

The fools who wrote Javascript seem to have no clue about the “sandbox” theory supposedly behind it.

[minnesota_bound]

The company I work at has had several pc’s these past 3 months with ransomware. The caller loses all files as the pc is re-imaged.
In my building we have a network drive we can back up all files to which are backed up everyday. I have done this just in case. thos ein other field offices do not all have access. they need to these days.

Back up your files as your personal photos and other files either online or using an external drive then unplug the drive until the next back up.
The files could all be lost in an instant.

[Qiviut]

Bookmark

[RightGeek]

Bump for later

[dayglored]

JavaScript Ransomware -- trouble ahead! ... PING!

You can find all the Windows Ping list threads with FR search: just search on keyword "windowspinglist".

Thanks to Swordmaker for the ping!!

[Huntress]

Bump.

[Teacher317]

Why aren’t the penalties for the authors of such useless maliciousness far far harsher?

[NoLibZone]

Easy to add a Registry entry to prevent JS from running outside of a browser.

[AppyPappy]

Change .js files to open in Notepad.

[Excellence]

I never download email to my computer; it’s on Microsoft’s server. Does that make a difference?

[JimRed]

Don’t open unknown attachments. Don’t trust known attachments without confirming the source.

[Mr Radical]

Hats off for the tip!

[CARDINALRULES]

Does anyone know what could be causing my problem with my computer. It still has 7.

On the 13th around 2-3pm central time when I was out of the room, I came back to a black screen but the computer was still on. I hit the keyboard a few times and it came back up but something had opened Windows mail and live and was doing a search of my files. I turned off the internet and closed them all out but the screen kept going black and it kept opening searches. I finally deleted the Mail and Live which I don’t use anyways but I still have it trying the searches. I have the internet unplugged.

I have run several cleaners and virus scans.
Today I was running AVG and it did the blackout a few times and then it was trying to delete AVG. I turned off the computer as soon as I could.

I ended up pinning the Task manager and a few of the others because it often does it several times in a row and even locks and messes with the password entry. I sometimes didn’t even have time to start looking at the tasks or start a scan.

Some of the searches have 0,i6* ect in many combinations.

It also does this in safe mode.
For a while I couldn’t type in msconfig because it wouldn’t let me type i and it would go black for a few seconds and back to opening the search.

Nothing I have done has lasted for more than a few hours.