We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
We're aware that some users are experiencing technical issues which the team are working to resolve. Thank you for your patience.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
norton constantly telling me it has blocked an attack
Comments
-
The cryptolocker virus doesn't "attack" your computer from outside, trying to get in.
It gets in by you clicking on a suspect email attachment and then giving an executable (com, js or others) to run. (other attack vectors are available)
The behaviour that Norton is exhibiting there, is because you have a cryptolocker variant running on your machine, and it is trying to contact a c&c server to gain its private encryption key so it can start encrypting your files ..
Whatever virus scan you did - it was insufficient0 -
The IP address tracks to here ...
Could this be your own IP address ?0 -
or here0
-
I know last week around the same time each day I kept getting Norton has blocked, every day. You hit the x to close the pop up and it bang straight back about four or five times. I looked on Norton forum and others also got this, guru.net and someone said it was in Frankfurt. This week it has now stopped.
The IP was 185.17.1846.80 and was an Intrusion Attack. There where no answers just well Norton is blocking it.0 -
-
debitcardmayhem wrote: »Are you with Virgin ? , check that your routers ip address is not 62.252.172.2410
-
The cryptolocker virus doesn't "attack" your computer from outside, trying to get in.
It gets in by you clicking on a suspect email attachment and then giving an executable (com, js or others) to run. (other attack vectors are available)
The behaviour that Norton is exhibiting there, is because you have a cryptolocker variant running on your machine, and it is trying to contact a c&c server to gain its private encryption key so it can start encrypting your files ..
Whatever virus scan you did - it was insufficient
when i ran hijack this there wasnt any sign of it running on the system.
the scans i did where a full scan with malwarebytes, a full scan with norton, and all the varied scan options with norton power eraser.0 -
-
the stop notifying me button must be slow to react because a while after i posted about the issue here it eventually stopped notifying me.0
-
donnac2558 wrote: »I know last week around the same time each day I kept getting Norton has blocked, every day. You hit the x to close the pop up and it bang straight back about four or five times. I looked on Norton forum and others also got this, guru.net and someone said it was in Frankfurt. This week it has now stopped.
The IP was 185.17.1846.80 and was an Intrusion Attack. There where no answers just well Norton is blocking it.0
This discussion has been closed.
Confirm your email address to Create Threads and Reply

Categories
- All Categories
- 350.6K Banking & Borrowing
- 253K Reduce Debt & Boost Income
- 453.4K Spending & Discounts
- 243.6K Work, Benefits & Business
- 598.3K Mortgages, Homes & Bills
- 176.7K Life & Family
- 256.8K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards