Blog

Rahul Thadani
How to Prevent Ransomware From Locking Your PC
March 29, 2016

How to Prevent Ransomware From Locking Your PC

The Quick Heal Threat Research Lab has been detecting increased numbers of ransomware infections over the last few weeks. We have recently reported on the notorious Dridex ransomware. These incidents depict a clear trend that malware authors are steadily shifting to serious money making ransomware variants.

The rise in these ransomware variant detections can be attributed to the following primary reasons:

  • Ransomware has proven itself as a highly effective money extortion mechanism over the last year.
  • Ransomware has become much easier to develop due to the availability of source code and the emergence of ‘Ransomware-as-a-service’ products in the black market.
  • Ransomware is increasingly being used along with other successful and penetrative malware propagation techniques such as spam campaigns, ‘Malvertising’ and ‘Social Engineering’.
  • Ransomware has become efficient due to the presence of Bitcoins, a digital currency that enables cybercriminals to collect money anonymously.

Stats for Ransomware Detection by Quick Heal

This graph shows the number of ransomware detections by Quick Heal for the 7 weeks starting from February 1st, 2016. In this time period, our lab has detected nearly 450,000 ransomware samples, which work out to approximately 9,000 ransomware detections every single day. These figures present a considerable rise in the ransomware detections that we have seen in the past, and they highlight the growing threat of ransomware to businesses and individual users.

How to Avoid Ransomware Infections

There are a few foolproof precautions that need to be undertaken to prevent ransomware variants from infiltrating and locking your machine. These safety guidelines are even more relevant for enterprises and small business owners who are often the most sought after victims of ransomware authors.

1. Backup your data often and in different ways

When it comes to data security, the first step is data classification. It is essential for data owners to segregate their data into crucial, moderate or dispensable categories and then devise ways to secure their most sensitive information. We recommend the 3-2-1 rule – maintain 3 different copies of data, in 2 different formats, with 1 format available offline.

2. Update your OS and other applications & utilities

Malware developers typically exploit vulnerabilities in applications and the OS to breach system security. To prevent incidences it is highly recommended to automatically download OS updates, and apply regular security patches for other applications on the system. Commonly targeted applications are Java, Adobe Acrobat Reader, Adobe Flash Player, MS Office and web browsers such as Google Chrome, Mozilla Firefox, Internet Explorer and more.

3. Be cautious of suspicious emails and attachments

Spam emails have become one of the most effective ways for ransomware to enter vulnerable systems. Through social engineering techniques or by disguising emails to appear as authentic ones, attackers cause victims to click on fraudulent links or download malicious attachments. When it comes to email security, we suggest the following security measures:

  • Always check the email senders information
  • Always verify the content of the email properly
  • Never click on the links embedded within suspicious emails
  • Never open or execute attachments received from unknown senders

Some More Ransomware Prevention Techniques

  • Personalize spam settings for your email inbox and your installed security solution.
  • Use the native Windows functionality of ‘Show File Extensions’. This shows the extensions of unknown files before opening them.
  • In case of breaches or infections, immediately disconnect the Internet connection.
  • Keep the Windows Firewall switched on at all times and regularly monitor its settings.
  • Enable your installed security software to scan compressed and archived files when they enter the system.
  • Turn off AutoPlay for USB devices, so that they do not immediately open the files within them.
  • Consider installing an add-on which blocks automatic pop-ups on your browser.

Recently, ransomware infections have begun spreading via JavaScript codes on websites as well. So there are multiple avenues through which ransomware can be delivered into vulnerable systems. Quick Heal defends against the latest malware samples with generic and heuristics-based detections that are discovered through our global virus signature database on a daily basis. Moreover, Quick Heal security products also provide multiple lines of defense such as Virus Protection, Email Protection, DNAScan and Advanced Behavior Detection System for complete system security.

SHARE THIS STORY

Have something to add to this story? Share it in the comments.

Rahul Thadani
About Rahul Thadani
Rahul is a web enthusiast and blogger, and has been writing about the computer security industry for the last three years. Following the latest technology trends,...
Articles by Rahul Thadani »

134 Comments

Your email address will not be published.

CAPTCHA Image

  1. Pallab DekaMarch 29, 2016 at 2:04 PM

    Last week i upgraded my QHTS Ver.16 to 17..
    Can QHTS 17 detect ransomware?? Because i dont find about antiransomware.exe on my windows 8 task manager service….please reply

    Reply
    • Hi Pallab,

      Yes, the Quick Heal software on your device is actively blocking ransomware on your machine. However, you must also take all the necessary precautions to prevent ransomware infections.

      Regards.

      Reply
  2. narendra pratapsinghMarch 30, 2016 at 4:09 PM

    nice update.such infomations are very important.

    Reply
  3. Salman KhanMarch 30, 2016 at 5:22 PM

    sir, meri drive lagbhag aadhi khali hai phir bhi 0 space dikha raha hai or ajeeb ajeeb tarah ki file dikh rahi hai main kya karu mera data bahut keem ti hai because meri photography ka kaam hai sabhi data important hai plz solution bataiye. please.

    Reply
  4. i like quick heil

    Reply
  5. These ways of protection are not enough. Can this ransomeware be completely removed from machine by rebooting, and can be repaired by Quick heal total security? Or you have any other option.

    Reply
    • Hi Avik,

      Ransomware variants are constantly changing and there is no software that can completely block all kinds of ransomware before they are even created. So all security products are reactive in nature to some extent. However, if users undertake some of the precautions mentioned here and also use an effective security solution, then the chances of avoiding ransomware are high. So it is best to remain proactive and alert when it comes to security and not depend on a security solution only.

      Best regards.

      Reply
  6. data transfer is lo please help

    Reply
  7. Anirban DuttaMarch 31, 2016 at 8:34 AM

    Yes, I trust Quick Heal but I am using Quick Heal Internet Security version 16.00 (9.0.0.54). When I upgrade to it’s latest version version 17.00 (10.0.0.6) it consume more RAM & slow down my PC, increase startup & shutdown time. That’ss why I am using version 16.00 (9.0.0.54) again. Also When start LIVE CHAT on your website, I did’nt received Chat transcript but it show Mail has been sent successfully.

    Reply
  8. BABAJI GOPAL PATILMarch 31, 2016 at 9:27 AM

    I have been purchased on Amazon Quick Heal Total Security-2PCs 1 Year (CD)X000F9YAE1 vide your cash memo No PB-STA-137231171-22172 dated 21 Mar 2016.
    Please keep update Quick Heal Total Security on my PC till updating the CD on my PC please.
    Thanking you

    Reply
  9. Rakesh ChawlaMarch 31, 2016 at 4:19 PM

    Yes I trust in Quick Heal

    Reply
  10. good

    Reply
  11. hitendra R desaiMarch 31, 2016 at 6:23 PM

    its good

    Reply
  12. TERKIMBI TION M.March 31, 2016 at 10:05 PM

    Thumbs up to Quick Heal, I will henceforth start introducing and recommending Quick Heal to my friends.

    Reply
  13. Col Ramesh Laddha (Retd.)April 1, 2016 at 9:46 AM

    Please advise whether we can have Windows Firewall on even when Quickheal antivirus security is running.

    Reply
    • Hi Col. Laddha,

      Yes you definitely can have Windows Firewall ON as well. This is an in-built feature in Microsoft operating systems, and it is an added security layer that should certainly be used in addition to any security software on your device.

      Best regards.

      Reply
  14. PARTHA SARATHI MAITYApril 1, 2016 at 10:37 AM

    YES

    Reply
  15. Vivek SharmaApril 1, 2016 at 4:13 PM

    sir i am not able to update my pc

    Reply
  16. Hitesh V KotadiyaApril 1, 2016 at 7:10 PM

    Verry useful app

    Reply
  17. saurav singhApril 1, 2016 at 9:10 PM

    wow

    Reply
  18. GYANENDRA MOHAN SHARMAApril 1, 2016 at 9:51 PM

    ITRUST QUICK HEAL SOFFTWEAR VERY GOOD ANTY VIRUS

    Reply
  19. bk mandalApril 1, 2016 at 9:54 PM

    my pc is very slow runing

    Reply
  20. dibyadut rayApril 2, 2016 at 5:39 AM

    sir, i am a layman . so it is my request to u to inform us in simple way —what to do n not to.

    Reply
  21. nilukumarApril 2, 2016 at 6:55 AM

    i like this

    Reply
  22. Azad SinghApril 2, 2016 at 7:50 AM

    My PC has slow down after instalation of gardian antivirus from quickheal , Why?

    Reply
  23. QH isn’t as effective as MS Security Essentials in detecting and killing ransom virus. Org. like QH should find soln. to unlock files affected by ransom as a service to its reg. users.

    Reply
  24. Daniel RayApril 2, 2016 at 11:38 AM

    QH updating is fictional and not practical or real, for QH cannot remove or fight with ..ware effectively and after each update my PC gets slow in operation.

    Reply
  25. Prabhu dyal sahApril 2, 2016 at 12:08 PM

    Hi i am use quickheal.this is very good choise for my PC.he protect my PC always.this is good.

    Reply
  26. Gaurav G HurkadliApril 2, 2016 at 4:22 PM

    good idea and steps

    Reply
  27. shiv singhApril 2, 2016 at 8:59 PM

    i agree

    Reply
  28. AMRIT KUMARApril 3, 2016 at 7:28 AM

    I WANT TO UPTODATE MY SYSTEM BUT GUARDIAN ANTIVIROUS DOES NOT SUPPORT IT WHAT DID I DO

    Reply
  29. I didnt update my products, there have show that “error 1001”. I tried so many times but every time show the same messege, please solve my problem

    Regards
    Koushik

    Reply
  30. Chetan KambleApril 3, 2016 at 12:52 PM

    Is QH update necessary every-time or old QH version can prevent virus if we are not connecting the internet.

    Reply
    • Hi Chetan,

      Updates are important because the global virus database gets updated in real-time. Every day there are thousands of new malwares that are created and detected and our database is accordingly updated. So if you miss out on some updates it is essential to get them soon, as your machine may then be infected by a sample that has not been updated in your software.

      Regards.

      Reply
  31. Yusuf Meherally CentreApril 3, 2016 at 1:23 PM

    How can update it.

    Reply
  32. suraj kumarApril 3, 2016 at 6:07 PM

    good

    Reply
  33. suraj kumarApril 3, 2016 at 6:13 PM

    I am use in Quick Heal and good working

    Reply
  34. prashanta dasApril 3, 2016 at 8:17 PM

    Quick Heal Totol Security is a best anti virus 100%Original

    Reply
  35. Indranil SilApril 3, 2016 at 8:25 PM

    It is udefull to protect my both device mobile & computer. I want more help from this anti-virus.

    Reply
  36. Bharathi RajaApril 4, 2016 at 8:27 AM

    This is useless product when comes to Locky Ransome malware virus which did not even prompt for malware when our server was hacker which had 15years data. We have been using this product for 7-8 years with regular updates and timely activation done for 3yrs. There customer support is never reachable as we need to wait for 50-60 mins but no one will come on line. If any tech comes online they simply do not understand the issue and say we are helpless. THIS IS USELESS PRODUCT, NO SUPPORT, WASTE OF MONEY. THEY ARE THE BIGEST HACKERS WHITHOUT PROVDING SUPPORT.

    Reply
    • Rajib Singha Rajib SinghaApril 15, 2016 at 5:07 PM

      Hi Bharathi,

      We understand your displeasure as a customer. There could be more than one reason behind this incident. We have shared your concern with the team and they will get back to you soon.

      Regards,

      Reply
  37. MOSES RACHEALApril 4, 2016 at 6:45 PM

    pls how can you help me with my pc and i need to upgrade my qiuck heal anti-virus

    Reply
  38. Stephen PotterApril 4, 2016 at 10:16 PM

    This has given me a good start on learning to fight and prevent Ransomware infection. Thanks!

    Reply
  39. Stephen PotterApril 4, 2016 at 10:18 PM

    I’m impressed with what I have seen and read so far.

    Reply
  40. Rahul yadavApril 5, 2016 at 2:34 PM

    Best security…….

    Reply
  41. Sir, please also tell about how to destroy ransomware file. I mean either to delete the file or my quick heal will repair it. Please answer

    Reply
  42. aanrisehrawat23@gmail.comApril 5, 2016 at 7:54 PM

    virus cleaner my pc

    Reply
  43. Aman vermaApril 5, 2016 at 10:34 PM

    how to start the antivirous

    Reply
  44. santosh kumarApril 6, 2016 at 12:18 PM

    QUICK HEAL TOTAL SECURITY

    Reply
  45. omprakash sidhApril 7, 2016 at 3:41 PM

    windows 10 not firewall on

    Reply
  46. Mohammed YunnisApril 7, 2016 at 4:53 PM

    Thanks a lot for this important message. Keep it up God Bless.

    Reply
  47. Rabindra Kumar karApril 7, 2016 at 6:01 PM

    How i mainten my device from mailware .

    Reply
  48. bitusingh1612@gmail.comApril 7, 2016 at 6:10 PM

    sie mera antivirus update nhi ho pa reha hai

    Reply
  49. jatindraprasad pandaApril 7, 2016 at 7:03 PM

    can the net secure perceive itself and prevent it. why blame the customer for having not personally set it

    Reply
  50. Meet JariwalaApril 7, 2016 at 11:24 PM

    Respected QuickHeal Team,
    I have encountered the same Virus Encryption Problem with RSA-4096 and my all documents are corrupted. Anyhow, I removed the Virus completely by Quick Heal Pro, so there are no viruses now but my files are still encrypted. Could you suggest me how to decrypt the files? I tried Recuva, Shadow Explorer but nothing helped me. It is very urgent for me.

    Reply
    • Rajib Singha Rajib SinghaApril 15, 2016 at 4:56 PM

      Hi,

      Thanks for writing in. Unfortunately, files encrypted by a Ransomware are almost impossible to get back or decrypt without paying to the hacker. It also depends on the grade of encryption used. However, we’d request you to have a word with our support team; they would like to analyze the issue. Please visit http://bit.ly/QHChat to chat with us online. You can also raise a ticket at http://bit.ly/Askus and we will get back to you at the earliest.

      Regards,

      Reply
  51. yashwant.rishikesh@gmail.comApril 8, 2016 at 5:44 AM

    QH is really working hard to safe guard my pc

    Reply
  52. its not work properly.whenever antivirus is not detect the virus and my lappy is not protected

    Reply
  53. pankaj krApril 8, 2016 at 7:48 PM

    after disabling secure boot quick heal now installed , it will be no problem after disable this further ? if any please mention

    Reply
  54. pal singh yadavApril 9, 2016 at 12:16 AM

    yadav.pal30@gmail.com
    im forget my activation code
    please provide my code??????

    Reply
  55. R CHRISTURATNAMApril 9, 2016 at 2:18 AM

    it is essential for me

    Reply
  56. jagannath naikApril 9, 2016 at 6:36 AM

    hi , i am renewed quick heal software on my pc on 04/04/2016 but it has been frequently show that product key cannot be renewed .the provide product key is renewed within 10 days. tell me sir, how can i solve this problem ?

    Reply
  57. kamal pandeApril 9, 2016 at 8:48 AM

    OK

    Reply
  58. pradip kumar pustyApril 9, 2016 at 10:58 AM

    nice

    Reply
  59. 1993balaram@gmail.comApril 9, 2016 at 11:08 AM

    sir i want to suport from quickheal centre.plz contact own my no 906044676

    Reply
  60. supar

    Reply
  61. Rabindra Kumar KarApril 9, 2016 at 2:09 PM

    Dear ,
    How i use it on my Laptop & Mobile device same time?

    Reply
    • Rajib Singha Rajib SinghaApril 15, 2016 at 4:50 PM

      Hi Rabindra,

      One Quick Heal product can be used on one system at one time. Please let us know if you have any queries.

      Regards,

      Reply
  62. dhananjay kaushikApril 9, 2016 at 6:27 PM

    Its not a new problem i have faced it in 2010 when i install a suspicious netbooster and at that time quickheal total security also failed to save my computer from that infection at last i went for windows format process to get rid of that ransomware.

    Reply
    • Rajib Singha Rajib SinghaApril 15, 2016 at 4:49 PM

      Hi Dhananjay,

      We are regretful to learn about your unpleasant experience. We’d like to assure you that our products are more capable and advanced than before when it comes to countering ransomware attacks. Do let us know if you have any queries.

      Regards,

      Reply
  63. ganeshprasadApril 9, 2016 at 8:19 PM

    Some day before updates were workingand after that stoped.

    Reply
  64. WILLIAM XAVIERApril 9, 2016 at 9:34 PM

    Nice

    Reply
  65. kazhar069@gmail.comApril 9, 2016 at 10:00 PM

    Hello quickheal

    Reply
  66. Namit kr. sharmaApril 9, 2016 at 10:02 PM

    Hello sir
    Maine apne phone ko kingroot app se root kiya huaa hai. Nd phobe ko quic heal se scan karne per kingroot app ko threats show karta hai.
    Then kya sach me kingroot app threats hai.

    Reply
  67. parbin kumarApril 9, 2016 at 10:34 PM

    uptudate atumatic

    Reply
  68. Narmdeshwar kumarApril 10, 2016 at 8:38 AM

    update nhi ho rha hai

    Reply
  69. Sanjay KumarApril 10, 2016 at 9:45 AM

    Hi, Rahul,
    I just share with you as per last week my all data is covered locky file and i have donload quick heal antivirus . After scan all file then detected locky file rensomware errors please suggest how to remove locky file virus so that we recover my ms word , excel files or PDF .
    Thanks

    Reply
  70. viras activet in mameri

    Reply
  71. nsice

    Reply
  72. N re N shrtApril 18, 2016 at 9:50 PM

    Maybe in my phone have a virus so I can’t clear cool my app allow data or android so can u give me something idea please

    Reply
  73. rohanchawla954@gmail.comMay 2, 2016 at 9:01 PM

    pleas prevent my ransomewera from looking your pc

    Reply
  74. Sir, I have quick heal pro installed on my laptop, yet it recently got infected by a ransomware, which encrypted all my office and pdf files. Now I am not able to access those files as their file type has been changed to CRYPT.
    I formatted my laptop last month and unfortunately did not take a backup since then.
    Tried to recover files via system storage but it didn’t work. I would highly appreciate it if you could suggest me with some solution which could help make those files usable again.
    Regards,

    Reply
  75. MAHESWAR RUPINIMay 8, 2016 at 6:01 PM

    Dear sir..I like these antivirus..

    Reply
  76. saurabh chahalMay 11, 2016 at 10:57 AM

    Hi Rahul,

    All files from my PC gone corrupt coz of ransomeware, pls tell me how can i get those files back

    Reply
  77. rakeshprasad985@gmail.comMay 14, 2016 at 11:26 AM

    Real hero for pc

    Reply
  78. Are users of Quickheal anti-virus protected from the attack of Ransomware. Please provide some tips for us to check whether there is any chance of breach of security and to take steps to overcome the same. Eg., those who have adopted Quickheal anti-virus may not have the anti-malware and it may affect the PC.

    Reply
    • Rajib Singha Rajib SinghaMay 17, 2016 at 12:43 PM

      Hi Pauline,

      Yes, Quick Heal users are protected from Ransomware attacks. You can follow the tips mentioned in this post.

      Regards,

      Reply
  79. PVR ReddyMay 19, 2016 at 11:10 PM

    frequently my system is damaged by some antivirus. Why is it software is not detect and remove those wireses?

    Reply
  80. BABUL SAIKIAMay 24, 2016 at 7:58 AM

    Sir, My product key is invalied sow, kry is
    BU8CE4GE1R2720812B10. kindly quick active from you .
    Thanks
    cell- 09401306058

    Reply
    • Rajib Singha Rajib SinghaMay 24, 2016 at 4:53 PM

      Hi Babul,

      We’ve shared your concern with our team. They will get in touch with you shortly.

      Regards,

      Reply
  81. franco@manintveld.com.auJune 4, 2016 at 5:20 AM

    i just want to instal google

    Reply
  82. acscazad@gmail.comJune 5, 2016 at 12:33 PM

    bad service quickheal antivirus

    Reply
  83. mtreddy2010@gmail.comJune 8, 2016 at 8:13 AM

    dear sar palls anter vares key

    Reply
  84. Tika Raj RAiJune 10, 2016 at 9:49 PM

    How to remove Malware from this PC ?
    Many time scaned but it does’t go. The Malware name is $RECYCLE.BIN and System volume Information.

    Reply
    • Rajib Singha Rajib SinghaJune 13, 2016 at 12:20 PM

      Hi Tika,

      Thanks for writing in. Our support engineers would gladly help you with this issue. ou can also raise a ticket at http://bit.ly/Askus and we will get back to you at the earliest.

      Regards,

      Reply
  85. acscsantosh@gmail.comJune 13, 2016 at 11:32 AM

    bakwas antivirus, only useless, 1000 gb data has been lost, make av more effective.

    Reply
    • Rajib Singha Rajib SinghaJune 13, 2016 at 12:19 PM

      Hi,

      Thanks for writing in. We have shared your feedback with our team so that they can look into the matter. In the meantime, you can visit http://bit.ly/QHChat to chat with us online; our support engineers would gladly help you with any issue that you might be facing.

      Regards,

      Reply
  86. avik patraJune 14, 2016 at 10:59 PM

    I am using quick heal

    Reply
  87. raval riteshJune 16, 2016 at 10:52 PM

    mast

    Reply