suspecting that I have rensomware

[ahmhaf]

I am suspecting that there is some ransomware in my device encrypting my files, how do I clear the doubt?

[Electronics Wizardy]

Why do you think you havea ransomware?

 

Restore backups? Reinstall windows?

[ahmhaf]

1 minute ago, Electronics Wizardy said:

Why do you think you havea ransomware?

 

Restore backups? Reinstall windows?

The resources in my pc are used higher than often and higher than expected!

 

I cannot do that, although I have a back but it is not practical for me until I know for sure that I have the ransomeware!

[Electronics Wizardy]

1 minute ago, ahmhaf said:

The resources in my pc are used higher than often and higher than expected!

 

I cannot do that, although I have a back but it is not practical for me until I know for sure that I have the ransomeware!

What programs are using the resources?

 

Or just wait and see if you have it.

[BlueChinchillaEatingDorito]

1 minute ago, ahmhaf said:

The resources in my pc are used higher than often and higher than expected!

 

I cannot do that, although I have a back but it is not practical for me until I know for sure that I have the ransomeware!

Are you experiencing high disk usage even at idle? 

[ahmhaf]

1 minute ago, BlueChinchillaEatingDorito said:

Are you experiencing high disk usage even at idle? 

no, not to my knowledge. But can ransomware reduce system resourse usage the moment you open task manger?

[Cool_Evlo]

1 minute ago, ahmhaf said:

no

Open task manager (Ctrl+Shift+Esc) and if there is a button at the bottom where it says "More details" click that, it will show you what is using your resources and how much its using.

[ahmhaf]

6 minutes ago, Electronics Wizardy said:

What programs are using the resources?

 

Or just wait and see if you have it.

there are plenty, the probelm is I cannot tell with are something windows is using or I am using or other malicious software is using, not inclined enough to tell the difference

[ahmhaf]

1 minute ago, Cool_Evlo said:

Open task manager (Ctrl+Shift+Esc) and if there is a button at the bottom where it says "More details" click that, it will show you what is using your resources and how much its using.

there are plenty, the probelm is I cannot tell with are something windows is using or I am using or other malicious software is using, not inclined enough to tell the difference

[Middcore]

If you had ransomware, wouldn't it, you know, demand ransom for your files?

[Electronics Wizardy]

4 minutes ago, ahmhaf said:

there are plenty, the probelm is I cannot tell with are something windows is using or I am using or other malicious software is using, not inclined enough to tell the difference

Can you show a screenshot? What are the names?

 

If disk io is low, its a pretty low chance.

 

Just now, Middcore said:

If you had ransomware, wouldn't it, you know, demand ransom for your files?

The ransom isn't immediate.  There can be a big delay the install of the malware, and the message appearing. Programs need time to do things like encrypt your files, upload your files, and work around the network.

[aisle9]

15 minutes ago, ahmhaf said:

The resources in my pc are used higher than often and higher than expected!

 

I cannot do that, although I have a back but it is not practical for me until I know for sure that I have the ransomeware!

Lots of things can be causing high usage. Doesn't have to be ransomware doing it. Open up Task Manager and take a look at your disk usage and your network usage. If there's one program or process chewing through a ton of either/both, post the name of that program or process here. If there's not a program eating up a ton of disk or network usage, it's probably not ransomware, and a full scan with Windows Defender is highly advisable.

 

4 minutes ago, Middcore said:

If you had ransomware, wouldn't it, you know, demand ransom for your files?

Ransomware has to encrypt the files first, and even then it might sit dormant for a while after it's finished. It's not like you just open an email and it goes, "YOU'VE GOT RANSOM!". It takes its time to make itself as difficult to notice as possible.

[BlueChinchillaEatingDorito]

10 minutes ago, Middcore said:

If you had ransomware, wouldn't it, you know, demand ransom for your files?

It would have to finish encrypting your files or whatever the payload is before demanding money to reverse the damage. If it were to ask you money immediately upon infection, well you have plenty of time to mitigate the damage. 

[kb5zue]

I really don't think you have "ransomware" but on the other hand, there could be the possibility that you may have a "virus".  The reason I think that is because with "ransomeware" someone would have contacted you and asked you for money before they released your system (files), back to you.

 

Good Luck.

[ahmhaf]

1 hour ago, Middcore said:

If you had ransomware, wouldn't it, you know, demand ransom for your files?

well, what I know that it needs time to encrypt my data before asking!

[ahmhaf]

1 hour ago, Electronics Wizardy said:

Can you show a screenshot? What are the names?

 

If disk io is low, its a pretty low chance.

 

The ransom isn't immediate.  There can be a big delay the install of the malware, and the message appearing. Programs need time to do things like encrypt your files, upload your files, and work around the network.

I have 970 evo plus

[Arika]

Kaspersky is only slightly better than ransomware, get rid of it.

 

everything else looks normal

[Electronics Wizardy]

4 minutes ago, ahmhaf said:

I have 970 evo plus

I don't see anything off here. Seems just like your have higher usage as you have a antivirus scan running. Is there a antivirus scan running?

[ahmhaf]

1 hour ago, kb5zue said:

I really don't think you have "ransomware" but on the other hand, there could be the possibility that you may have a "virus".  The reason I think that is because with "ransomeware" someone would have contacted you and asked you for money before they released your system (files), back to you.

 

Good Luck.

 

1 hour ago, aisle9 said:

Lots of things can be causing high usage. Doesn't have to be ransomware doing it. Open up Task Manager and take a look at your disk usage and your network usage. If there's one program or process chewing through a ton of either/both, post the name of that program or process here. If there's not a program eating up a ton of disk or network usage, it's probably not ransomware, and a full scan with Windows Defender is highly advisable.

 

Ransomware has to encrypt the files first, and even then it might sit dormant for a while after it's finished. It's not like you just open an email and it goes, "YOU'VE GOT RANSOM!". It takes its time to make itself as difficult to notice as possible.

 

1 hour ago, Electronics Wizardy said:

Can you show a screenshot? What are the names?

 

If disk io is low, its a pretty low chance.

 

The ransom isn't immediate.  There can be a big delay the install of the malware, and the message appearing. Programs need time to do things like encrypt your files, upload your files, and work around the network.

I got a hit on "trojan.script.miner.gen" using the free trial of kaspersky. It is mining virus or so i seems. I f*ck*ng know it, I thought I was beinng paranoid!

[ahmhaf]

14 hours ago, Electronics Wizardy said:

I don't see anything off here. Seems just like your have higher usage as you have a antivirus scan running. Is there a antivirus scan running?

yes, i did that

 

14 hours ago, Arika S said:

Kaspersky is only slightly better than ransomware, get rid of it.

 

everything else looks normal

 

14 hours ago, Electronics Wizardy said:

I don't see anything off here. Seems just like your have higher usage as you have a antivirus scan running. Is there a antivirus scan running?

Is there a specific sofware that scans for ransomeware that is free or comes with a free trial!

[Biohazard777]

9 minutes ago, Arika S said:

Kaspersky is only slightly better than ransomware, get rid of it.

 

everything else looks normal

And rely on Windows Defender? 

[kirashi]

6 minutes ago, ahmhaf said:

 

Is there a specific sofware that scans for ransomeware that is free or comes with a free trial!

Malwarebytes Free and HitMan Pro are my go-to on-demand scanners. Bear in mind that they DO NOT provide active protection unless you pay for them.

[Arika]

2 minutes ago, Biohazard777 said:

And rely on Windows Defender? 

Windows defender and common sense is all you really need. People like to hang shit in WD but it's actually one of the better anti-virus programs you can use short of a proper paid one.

[BlueChinchillaEatingDorito]

Apart from the sheer number of Chrome tabs you seem to have, it all looks fine fine to me. 

6 minutes ago, Biohazard777 said:

And rely on Windows Defender? 

It's all you really need and from my experience, yields a smaller performance penalty and (ironically) less annoying than other Anti-virus programs. It's not like Malwarebytes, or AVG where it'll constantly show pop up messages from the task bar. 

[kb5zue]

Kaspersky is ransomeware in a way because if you don't pay them every month they totally screw up your system.  Get rid of it.  Between Windows Defender and a little common sense about which websites you visit, you will be fine.