norton constantly telling me it has blocked an attack
in Techie Stuff
39 replies 6.6K views
This discussion has been closed.
Latest MSE News and Guides
Did you know there's an MSE app?
It's free & available on iOS & AndroidMSE App
Regifting: good idea or not?
Add your two cents to the discussionMSE Forum
Energy Price Guarantee calculator
How much you'll likely pay from AprilMSE Tools
It gets in by you clicking on a suspect email attachment and then giving an executable (com, js or others) to run. (other attack vectors are available)
The behaviour that Norton is exhibiting there, is because you have a cryptolocker variant running on your machine, and it is trying to contact a c&c server to gain its private encryption key so it can start encrypting your files ..
Whatever virus scan you did - it was insufficient
Could this be your own IP address ?
The IP was 185.17.1846.80 and was an Intrusion Attack. There where no answers just well Norton is blocking it.
when i ran hijack this there wasnt any sign of it running on the system.
the scans i did where a full scan with malwarebytes, a full scan with norton, and all the varied scan options with norton power eraser.