Hi Could you please let me know if MS FEP has any signature to capture all versions of CTB-Locker Ransomware.
Regards
Vishakha Singh
Does MS FEP has any signature to capture all versions of CTB-Locker Ransomware
January 22nd, 2015 5:08pm
Hi,
Please keep your FEP with the latest definition updates.
If it still cannot resolve the issue, you could submit a sample to Microsoft.
https://www.microsoft.com/security/portal/submission/submit.aspx
Best Regards,
- Proposed as answer by Joyce LMicrosoft contingent staff, Moderator Wednesday, January 28, 2015 8:57 AM
Free Windows Admin Tool Kit Click here and download it now
January 23rd, 2015 9:00am
Hi,
Please keep your FEP with the latest definition updates.
If it still cannot resolve the issue, you could submit a sample to Microsoft.
https://www.microsoft.com/security/portal/submission/submit.aspx
Best Regards,
- Proposed as answer by Joyce LMicrosoft contingent staff, Moderator Wednesday, January 28, 2015 8:57 AM
January 23rd, 2015 9:00am
Hi,
Please keep your FEP with the latest definition updates.
If it still cannot resolve the issue, you could submit a sample to Microsoft.
https://www.microsoft.com/security/portal/submission/submit.aspx
Best Regards,
- Proposed as answer by Joyce LMicrosoft contingent staff, Moderator Wednesday, January 28, 2015 8:57 AM
Free Windows Admin Tool Kit Click here and download it now
January 23rd, 2015 9:00am
That doesn't really say if it will detect it. Can FEP detect it?
January 29th, 2015 6:03pm
Hi,
The blog below shows:
"Only few tools can remove ransomewares fully some of them i have
mentioned
- Microsoftsecurity essentials
- Windows defender
- Malwarebytes
- McafeeStinger"
Malware troubleshooting: recover your files damaged by CTB Locker Virus.
Best Regards,
Joyce
Free Windows Admin Tool Kit Click here and download it now
January 30th, 2015 5:36am
Microsoft anti-malware products may detect and remove actual version of CTB-Locker (aka Critroni) as: Ransom:Win32/Critroni, Ransom:Win32/Critroni.gen!A and/or Ransom:Win32/Critroni.B; but it can also be identified by another name/signature.
It won't restore your encripted files though. Prevention and a secure backup system is your only defense against this threat.
January 30th, 2015 5:39pm
Microsoft anti-malware products may detect and remove actual version of CTB-Locker (aka Critroni) as: Ransom:Win32/Critroni, Ransom:Win32/Critroni.gen!A and/or Ransom:Win32/Critroni.B; but it can also be identified by another name/signature.
It won't restore your encripted files though. Prevention and a secure backup system is your only defense against this threat.
- Proposed as answer by Joyce LMicrosoft contingent staff, Moderator 1 hour 52 minutes ago
Free Windows Admin Tool Kit Click here and download it now
January 30th, 2015 5:39pm
Microsoft anti-malware products may detect and remove actual version of CTB-Locker (aka Critroni) as: Ransom:Win32/Critroni, Ransom:Win32/Critroni.gen!A and/or Ransom:Win32/Critroni.B; but it can also be identified by another name/signature.
It won't restore your encripted files though. Prevention and a secure backup system is your only defense against this threat.
- Proposed as answer by Joyce LMicrosoft contingent staff, Moderator Monday, February 02, 2015 9:54 AM
January 30th, 2015 5:39pm
Microsoft anti-malware products may detect and remove actual version of CTB-Locker (aka Critroni) as: Ransom:Win32/Critroni, Ransom:Win32/Critroni.gen!A and/or Ransom:Win32/Critroni.B; but it can also be identified by another name/signature.
It won't restore your encripted files though. Prevention and a secure backup system is your only defense against this threat.
- Proposed as answer by Joyce LMicrosoft contingent staff, Moderator Monday, February 02, 2015 9:54 AM
Free Windows Admin Tool Kit Click here and download it now
January 30th, 2015 5:39pm
Why FEP can detect and remove Critroni, but too late when files are already encrypted/damaged ??? If FEP can detect them, it should block them with the real time protection no ?
February 5th, 2015 6:58am
This topic is archived. No further replies will be accepted.
Other recent topics
