Skip to main content

Recovery

Thread needs solution
Beginner
Posts: 8
Comments: 2

I am running 2014 Acronis. I recently received a mail demanding 2000 bit coins by a mail with header of the Alphabets I normally use for my Password. I ignore it and the day after I got a mail from the same person with a subject Screen shot.

I have two drives in my desktop - one for software and one for Data. I back-up both in different time on a an External drive.

My question is  if this person has implanted something on my computer that gives an access to my Password. - how safe is the back-up? The back-up will contain the implant. I could format my disk and recover the data. Will that be free of implant?

0 Users found this helpful
Legend
Posts: 99
Comments: 21295

#1

Sorry but a lot more questions than answers to your questions here!

First, have you changed your Password(s) since getting these threat emails?
If not, then I would recommend doing so and if possible, disconnect the threatened computer from the internet and local network to avoid any further infection or spead of malware.

Next, how long have you used the compromised password?  If it hasn't been changed in a long time, then it is difficult to say whether all of your backups are also compromised as impossible to say how long your system has been compromised!

What password is this?  If this is your Windows password for your account, then anything done from that account is potentially at risk from the hacker or malware planted by the same.
If this is an email account password, then are you using the same for other accounts etc?
If yes, then change all your passwords as soon as possible before you get locked out of your accounts.  Use another computer to change passwords so that the new password is not known to the hacker, and use different passwords for all your accounts!

Many times, emails about compromised passwords are nothing more than phishing trips to see who will 'bite' and pay the sender.  Check carefully to confirm that someone does actually have access to your computer.  Is the screen shot actually from your computer?

What is the actual threat here?  Is the threat that all your data will be encrypted etc?

Consider using an offline antivirus scanner that you can boot your computer from to scan all your disk drives / data with.

See webpage: Microsoft Safety Scanner - and - Help protect my PC with Windows Defender Offline for two such tools.  Most antivirus vendors have similar tools for standalone scanning.