Ransomware used clients computer

Toggle sidebar Toggle sidebar
Status
Not open for further replies.
A

adambomb1258

Reputable
Jun 10, 2015
21
0
4,510
I have had a call from a customer explaining that one of their servers has ransomware on it. It apparently printed out a sheet of paper with the words "What Happened?". I haven't heard of this before and neither has my adviser. All help is greatly appreciated.
 
Solution
Avast-Team
It's not unheard of for hackers/malware to hijack printers, but I'm not convinced this is ransomware just yet.

The mark of ransomware, usually, is that files on your computer become encrypted and the user receives a message, often which takes up the entire desktop or appears on boot, informing the user that files have been encrypted and demanding a ransom. You can see some examples here:

https://www.avast.com/ransomware-decryption-tools

I would strongly recommend isolating the affected devices (and the printer) and running scans on those devices to remove any malware/etc. as well as any further investigation needed before you re-introduce them to the network. Even if it's not ransomware, that doesn't mean it isn't harmful.
Sort by date Sort by votes
Avast-Team

Avast-Team

Commendable
Mar 3, 2017
217
1
1,765
It's not unheard of for hackers/malware to hijack printers, but I'm not convinced this is ransomware just yet.

The mark of ransomware, usually, is that files on your computer become encrypted and the user receives a message, often which takes up the entire desktop or appears on boot, informing the user that files have been encrypted and demanding a ransom. You can see some examples here:

https://www.avast.com/ransomware-decryption-tools

I would strongly recommend isolating the affected devices (and the printer) and running scans on those devices to remove any malware/etc. as well as any further investigation needed before you re-introduce them to the network. Even if it's not ransomware, that doesn't mean it isn't harmful.
 
Upvote 0 Downvote
Solution
A

adambomb1258

Reputable
Jun 10, 2015
21
0
4,510

Thank you for your help. We ended up running a scan with the server HDD plugged into another pc, Hitman pro picked up most of the viruses and the randsomeware seemed to be very armature since it was wiped just from hitman pro. We were very lucky in this case
 
Upvote 0 Downvote
Status
Not open for further replies.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom