Windows 10: WannaCry protection Solved

  1.    13 May 2017 #1

    WannaCry protection


    By using a online free email service (such as Hotmail or Gmail) instead of the direct email provided by an ISP, am I protected from malaware such as the new WannaCry trojan horse malaware?

    This virus spreads thru attachments in email. Do the major free email services screen for these attachments when email passes thru them?
    Last edited by Mayagrafix; 13 May 2017 at 08:35. Reason: Solved
      My ComputerSystem Spec


  2. Posts : 93
    Windows10 Home v. 1709 bld. 16299.371
       13 May 2017 #2

    Let's start with a first step. What version and build are you running?
      My ComputerSystem Spec


  3. Posts : 6,499
    Windows 10 Pro x64
       13 May 2017 #3

    The current wannacry pandemic is not being spread my attachments, it's being spread by a vulnerability in Windows that was patched on modern systems a couple of months back, if you are up-to-date on your Windows updates then you will be fine.

    More info -
    Customer Guidance for WannaCrypt attacks MSRC

    Microsoft Security Bulletin MS17-010 - Critical

    The worm that spreads WanaCrypt0r - Malwarebytes Labs | Malwarebytes Labs

    74 countries hit by NSA-powered WannaCrypt ransomware backdoor: Emergency fixes emitted by Microsoft for WinXP+ • The Register
      My ComputersSystem Spec

  4.    13 May 2017 #4

    jamis said: View Post
    Let's start with a first step. What version and build are you running?
    Win Ten, up to date with patches + upgrades
      My ComputerSystem Spec

  5.    13 May 2017 #5

    z3r010 said: View Post
    The current wannacry pandemic is not being spread my attachments, it's being spread by a vulnerability in Windows that was patched on modern systems a couple of months back, if you are up-to-date on your Windows updates then you will be fine.

    Thanks for the info. My home PC is up to date however my work PC is out of my hands. I was wondering if this could be a stopgap measure for corporate PC's
      My ComputerSystem Spec


  6. Posts : 624
    Microsoft Windows 10 Pro 64-bit
       13 May 2017 #6

    I was reading it spreads threw the SMB protocol, so on older unsupported Windows OS's if you disable File sharing that should stop it spreading.

    Also Microsoft did create a patch for Windows XP, Windows 8, and Windows Server 2003
    Available here:
    Microsoft Update Catalog

    Click image for larger version. 

Name:	Ransomware update.png 
Views:	4 
Size:	118.7 KB 
ID:	134864


    It has also been reported email is also used to spread this.

    Microsoft Releases XP Patch for WannaCry Ransomware | Threatpost | The first stop for security news
    While experts said that attackers could scan for SMB servers exposed to the internet on port 445 (not a recommended practice) and send malicious packets their way, Microsoft said yesterday it was also aware of phishing attacks spreading the ransomware.
      My ComputerSystem Spec

  7.    13 May 2017 #7

    From what I've read, it enters through a malicious attachment in an email, then infiltrates all unpatched systems as a worm.
    FWIW, some online email services (like Gmail) have very good spam filters, but some still get through, and, on top of that, the malicious attachments are encrypted, so AVs have a hard time identifying them.

    A researcher accidentally found the kill switch and WCry has been turned off, but that does not help systems that have already been infected.
      My ComputerSystem Spec

  •    13 May 2017 #8
      My ComputerSystem Spec

  •    14 May 2017 #9

    As it has been said above, you need to have your OS patched and never, never click on unknown email attachments.
      My ComputerSystem Spec

  •    19 May 2017 #10

    Reposting this here, in case someone needs it:

    So there's a possibility to get your encrypted files back...for some....
    WannaDecrypt your files? The WannaCry solution, for some - Malwarebytes Labs | Malwarebytes Labs

    The decryptor is only going to work if you haven’t restarted the infected system and you haven’t killed the ransomware process (should be wnry.exe or wcry.exe) so please don’t restart or kill the process if you want to get those files back!
      My ComputerSystem Spec


  •  

    Related Threads
    Read more: Data Protection or Virus Protection? | AV-TEST And people are still concerned about Windows privacy, while installing 3rd party AVs like their life depends on it. :zip:
    Solved I need protection, but I'm not working, what do I do? in AntiVirus, Firewalls and System Security
    I just went ballistic. After my 5th or 6th attempt to upgrade from Windows 8.1 to Windows 10, folks here have given me enough tips to keep me crashing every few minutes. However, I still have the free ISO sitting in my download file which I will ask...
    Recommended protection for W10? in AntiVirus, Firewalls and System Security
    I'm currently using MalwareBytes Anti Malware + Super Anti Spyware + Microsoft Essentials. What other combinations are you guys using? I haven't updated it for quite some time.
    The latest update of Win 10 has obviously tightened up security . . . to the point where it won't allow me run SqlBackUpandFTP any more. I logged in as the (hidden) Administrator and got it working there OK, but when I Logged in as myself again,...
    Ransomware Protection? in AntiVirus, Firewalls and System Security
    Been visiting a website that discusses ransomware and all of the nasty things that can happen, starting to make me paranoid. Data files are backed up and stored offline, but still...So, I am looking for a quality anti-ransomware software package. As...
    Our Sites
    Site Links
    About Us
    Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

    Designer Media Ltd
    All times are GMT -5. The time now is 04:09.
    Find Us