Hi yesterday I had trouble with this kind of ransomeware : https://www.ecops.be/webforms/Default.aspx?Lang=NL
AVAST didn’t detect it nor stopped it in his tracks … the only “solution” was to go back in time with system restore (windows7)
This ransomeware is becoming a big issue in Belgium, Holland and Germany… please adress this !
“Ransomeware” is just a generic term. You need to report specific details to avast. There is new malware every day and samples are needed to be able to deal with it.
@la taupe: i hope u understand that no antivirus catches everything (if u expect that, u will be disappointed)
that said, u can help in the detections by reporting here http://forum.avast.com/index.php?board=4.0 (virus section of Avast!)
And system restore does not remove the infection…so it is still there
Follow this guide and attach the logs from Malwarebytes quick scan / OTL / aswMBR
http://forum.avast.com/index.php?topic=53253.0
There is another ransomeware out there called fbi moneypak - it somehow attaches to your log in username and ip address. avast did not detect it nor did it clean it up. malwarebytes however did.
You could send the Undetected infected files from www.avast.com/contacts for addition of detection.
Avast! does detect all these ransomwares…but these things are being sent out in bulks and being re-packed and modified contantly that’s why AV’s are failing against it. ;D
The problem here is that avast! does not have a program “whitelist” feature which I would really love to see added. With a “whitelist” feature you deny all programs by default. If designed and coded properly a “whitelist” feature should protect against Ransomware unless the user is the “Click Through” type
In the meantime WinPatrol Plus can help protec against the installation and running of Ransomeware.