Over 1 million tech questions and answers.

OpenSSH chink bares encrypted data packets

Q: OpenSSH chink bares encrypted data packets

OpenSSH chink bares encrypted data packets.

One in 262,144 chance = good odds

Important Note: If your system uses OpenSSH, make sure you are running the latest version (5.2) of it!

-- Tom

Read other answers
RELEVANCY SCORE 200
Preferred Solution: OpenSSH chink bares encrypted data packets

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

RELEVANCY SCORE 54.4

To whom it may concern,

I do have the information requested below from HiJackThis, dds, attach.txt and gmer info

I think I posted in the wrong section previously, I do apologize.

In the last two months I have been trying to track down what has been causing the increased jump of increased gigs a month. In Oct the household used 139gig, in Nov the household used 195gig. I started watching closely.. the third week in Dec we had 136 then at the end of the month it said 191gig.

I had an old router (5 years) that just beet itself on these months, I changed it to a new one Netgear n600. I have set the security to a new one, I set the downloading and uploading limit per month and it will notify me when it is hit before the end of the month... however, it appears that what ever it is may be on my machine.. I say this because one day I turned my machine on and did not open any browsers and had 5 millions packets already (Comcast security said not to worry, it could be small and nothing) - I watch my machine and never have I have this many... I did not do much today either and have 108mil. This does not happen all the time and may run side by side with the Facebook game I play (I have played this game for a good 2 years and this is the first time this has happened). I have scanned with Avast . Stozilla, did a boot scan and have cleaned.. I deleted all old restore points etc... deleted the prefetch and rebooted.. I do ccleaner daily..just started running peerblock again (IP blocke... Read more

A:Pulling way to many data packets per month

I suppose whom ever looks are this can disregard and or use this for reference.. this is not something that could be left to wait.. I ended up doing more scans.. shutting down the drive monitors and scanning in safe mode... I assume I made the virus "mad" as it show itself booting back into Windows.. caught 1 Lsass2 in the windows system folder and 8 more in the registry.

Now that it was confirmed that I had something that was dialing out and pulling "stuff" in from two blocked servers and it had been doing this for two months.. Format & Re-install. no other choice...
 

Read other 1 answers
RELEVANCY SCORE 54.4

Removed all possible adware using several programs including AdAware 2008, Spybot S&D, ASquared, Glary-Utilities, installed ZoneAlarm, ran CW Shredder, Did online virus scans.My problem is I contineously see data being sent for 3 seconds then off for 5 seconds.May this HJT log will help identify the problem. MSCONFIG startup list has 8 items started that all have been investigated. CTMON service is stopped.xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxLogfile of Trend Micro HijackThis v2.0.2Scan saved at 2:35:22 PM, on 9/20/2008Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16705)Boot mode: NormalRunning processes:C:\WINNT\System32\smss.exeC:\WINNT\system32\winlogon.exeC:\WINNT\system32\services.exeC:\WINNT\system32\lsass.exeC:\WINNT\system32\svchost.exeC:\WINNT\System32\svchost.exeC:\WINNT\Explorer.EXEC:\WINNT\system32\ZoneLabs\vsmon.exeC:\Program Files\Lavasoft\Ad-Aware\aawservice.exeC:\WINNT\system32\spoolsv.exeC:\Program Files\a-squared Free\a2service.exeC:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXEC:\PROGRA~1\TRENDM~1\INTERN~2\PcCtlCom.exeC:\PROGRA~1\TRENDM~1\INTERN~2\Tmntsrv.exeC:\PROGRA~1\TRENDM~1\INTERN~2\tmproxy.exeC:\WINNT\system32\wscntfy.exeC:\WINNT�... Read more

A:Data Packets Keep Sending 3 Seconds On 5 Off

I apologize for the very long delay. We have a huge backlog of HijackThis Logs to handle and it has been taking us greater time than normal to get caught up. If you are still having a problem, and want us to analyze your information, please reply to this topic stating that you still need help and I will work with you on resolving your computer problems. If your problem has been resolved, please post a reply letting us know so we can close your topic.

Unfortunately, if I do not hear back from you within 5 days, I will be forced to close your topic. If you still need help after I have closed your topic, feel free to create a new one.

Once again, I apologize for the delay in responding to this topic.

Read other 3 answers
RELEVANCY SCORE 53.2

I am using Linux.

Is it possible to modify Ethernet/WiFi so only certain data packets can be uploaded...?

Let's say that a computer gets hacked via web browser, but the WiFi/Ethernet only allows certain data packets to be uploaded.

You can't predict what data might get downloaded to your computer, so I don't try to protect against that.

If hackers want to steal your data, though, they need to upload it somehow.

So for uploads... there should be some kind of a process which cannot be terminated... and this process would filter all data uploaded to make sure it is marked in a certain way... Thus, you know that this is your data, because only YOU know how to mark it.. The hacker wouldn't know how to mark the data they are uploading, and thus, it would get rejected and never get uploaded in the first place.

Perhaps each data packet has a certain code sent before it, or attached to it.

These codes don't need to be uploaded over the web, but just checked by this filter software, before being sent off to the WiFI/Ethernet driver to be uploaded.

Or perhaps this would be implemented by editing the WiFi/Ethernet driver itself.

I don't know precisely how to implement it... but I hope you understand what I'm asking for here.
 

A:Modify Ethernet/WiFi so only certain marked data packets can

Hi,

What you are looking for is Data Loss Prevention. (DLP) Have a look at existing technologies, google for this:
Get the New 2016 Gartner Magic Quadrant for Enterprise Data Loss Prevention (DLP)

Some consumer level protection is offered by the likes of ZoneAlarm called Identity Protection.
 

Read other 1 answers
RELEVANCY SCORE 53.2

what utility can I use to view data on an encrypted HD. It doesn't matter if the data shows as "dfusdf9set8w4twuiefasidft4" (In an encrypted format), I still would like to view the data either way to see how well the data on the second HD is encrypted.
 

A:data encrypted

Hello & Welcome to TechGuy.org.

How was the data encrypted? Which encryption type was used?

For example, was Bit Locker used?
http://technet.microsoft.com/en-us/library/dd835565(v=ws.10).aspx

Please run this forum's system info utility & post the resutls.
http://library.techguy.org/wiki/TSG_Valuable_links

RF123
 

Read other 1 answers
RELEVANCY SCORE 53.2

I have some files on an old hard drive that have been encrypted, when i try to unencrypt it, i get access denied error message
I am not able to copy the file or even open it. I have added myself as a user to have full control of file but still no luck. I have also tried adding myself as a transparent user and removing the old certificate user but get an error code 5 when doing this.
Does anybody know of any unencryption software or a way around this?

A:Need some help with some encrypted data...

You will probably need to take ownership of the file. You need to be logged in as Administrator to take ownership.
http://www.microsoft.com/resources/d...ownership.mspx

Read other 2 answers
RELEVANCY SCORE 52.8

I am using Linux.
 
Is it possible to modify Ethernet/WiFi so only certain data packets can be uploaded...?
 
Let's say that a computer gets hacked via web browser, but the WiFi/Ethernet only allows certain data packets to be uploaded.
 
You can't predict what data might get downloaded to your computer, so I don't try to protect against that.
 
If hackers want to steal your data, though, they need to upload it somehow.
 
So for uploads... there should be some kind of a process which cannot be terminated... and this process would filter all data uploaded to make sure it is marked in a certain way... Thus, you know that this is your data, because only YOU know how to mark it.. The hacker wouldn't know how to mark the data they are uploading, and thus, it would get rejected and never get uploaded in the first place.
 
Perhaps each data packet has a certain code sent before it, or attached to it.
 
These codes don't need to be uploaded over the web, but just checked by this filter software, before being sent off to the WiFI/Ethernet driver to be uploaded.
 
Or perhaps this would be implemented by editing the WiFi/Ethernet driver itself.
 
I don't know precisely how to implement it... but I hope you understand what I'm asking for here.  

Read other answers
RELEVANCY SCORE 52.8

I am using Linux.
 
Is it possible to modify Ethernet/WiFi so only certain data packets can be uploaded...?
 
Let's say that a computer gets hacked via web browser, but the WiFi/Ethernet only allows certain data packets to be uploaded.
 
You can't predict what data might get downloaded to your computer, so I don't try to protect against that.
 
If hackers want to steal your data, though, they need to upload it somehow.
 
So for uploads... there should be some kind of a process which cannot be terminated... and this process would filter all data uploaded to make sure it is marked in a certain way... Thus, you know that this is your data, because only YOU know how to mark it.. The hacker wouldn't know how to mark the data they are uploading, and thus, it would get rejected and never get uploaded in the first place.
 
Perhaps each data packet has a certain code sent before it, or attached to it.
 
These codes don't need to be uploaded over the web, but just checked by this filter software, before being sent off to the WiFI/Ethernet driver to be uploaded.
 
Or perhaps this would be implemented by editing the WiFi/Ethernet driver itself.
 
I don't know precisely how to implement it... but I hope you understand what I'm asking for here.  

Read other answers
RELEVANCY SCORE 52.8

Some time ago I created several files with the .sec extension. This extension was assigned by the application when the text of the file was to be encrypted. Since creation I have accessed these files several times without incident.
But now I seem to have forgotten how i did it. I thought I used Word Perfect or the old (DOS) QPRO. but now they don't seem to work. If I can access these files, I will convert to non-secure text. I am sure I remember the password I used. But it never gets to that point (Invalid File Type). Anyone had any experience with this?
 

Read other answers
RELEVANCY SCORE 52

Greetings,
I picked up a virus which encrypted my files to a .ENCODED extenstion. I removed the virus but can not get the file extentions to revert back.

Help
Smitty

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 1:12:23 PM, on 4/4/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17095)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
C:\Program Files\Common Files\Intuit\DataProtect\QBIDPService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\PROGRA~1\Intuit\QUICK... Read more

Read other answers
RELEVANCY SCORE 52

I use Truecrypt to manage my data securely on my laptop (Windows 8.1 64-bit).

From time to time, I have a requirement to delete some personal data from the encrypted drive. The files go to Recycle Bin and I then empty the bin.

Is this a security risk, i.e. can data files, deleted from an encrypted drive, be accessed should the laptop be lost or stolen.

T

A:[SOLVED] Encrypted Data on Laptop

You can permanently delete a file from your computer without sending it to the Recycle Bin by clicking the file and then pressing Shift+Delete. you cannot recover it so consider what you might do if you accidentally deleted a file that way.
if you have your machine passworded with a strong password it will be much harder to get into you can also use software to track a lost or stolen laptop for instances this is one https://preyproject.com/
or this on e which is not free Laptop, Smartphone, Tablet Theft Recovery Solutions | Absolute Software

Read other 5 answers
RELEVANCY SCORE 52

At this point I am looking for advice more than I am actual tech/repair service.

I have an older computer running on Windows XP Pro. I've been using Microsoft Security Essentials for virus protection (although support ended 6 months ago), and the free version of Malwarebytes for malware protection. About two days ago my computer was hacked and something or someone encrypted all of my files... Word, Excel, AutoCAD, PDF, JPEG files... just about everything.

They left a text document instructing me to go to a certain website if I want my files restored. I have not done this. I have actually disconnected my computer from the internet for the time being.

I've tested all of my software and everything seems to be working fine. I can create, save and edit new documents. I just can't open or read my old documents.

I have most of my important work and personal files backed up, although the backup is about a week out of date so I'll lose or have to recreate some of the most recent stuff. Also, I do have a number of items on my desktop (or otherwise) which I'd never backed up. Nothing critical, but just the same I'd rather not lose that stuff. In addition, I don't believe I've got a recent backup of my email (I'm using Outlook 2003).

I can provide more details as needed, but right now I'm just looking for advice on what to do next. Although I do have to get my computer cleaned up, by far my biggest concern is restoring my data files ... Read more

A:My data files have been hacked and encrypted

Read other 16 answers
RELEVANCY SCORE 52

Hi. I'm using Windows 7 Professional 64-bit and recently I have been infected by Cryptowall 4.0
 
I am soon going to "format" after moving my data to an external HD but I would like to be sure if right now I'm still infected
 
I tried already Malwarebytes and although right after the infection it quarantined a few files, I tried it again in safe mode and it doesn't detect anything now (apart from a few, very old, false positives).
 
Am I still infected?
 
Thanks in advance

A:Cryptowall and encrypted data. Am I infected now?

to BleepingComputer.Hi there,my name is Jo and I will help you with your computer problems.Please follow these guidelines:Read and follow the instructions in the sequence they are posted.print or copy & save instructions.back up all your private data / music / important files on another (external) drive before using our tools.Do not install / uninstall any applications, unless otherwise instructed.Use only that tools you have been instructed to use.Copy and Paste the log files inside your post, unless otherwise instructed.Ask for clarification, if you have any questions. Stay with this topic til you get the all clean post.My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.*** Download Security Check by screen317 from here or here.Save it to your Desktop.Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.Vista / Windows 7/8 users right-click and select Run As Administrator.A Notepad document should open automatically called checkup.txt; please post the contents of that document.*** Please download Malwarebytes Anti-Rootkit and save it to your desktop.Be sure to print out and follow the instructions provided on that same page.Caution: This is a beta version so please be sure to read the disclaimer and back up all your data before using.Double click on downloaded file. OK self extracting prompt.MBAR will start. Click in the introduction screen "next"... Read more

Read other 41 answers
RELEVANCY SCORE 52

I have scanned my computer using Malwarebytes, Spybot, and Avast 2015 antivirus, and quarantined/fixed whatever was found.  BUT I cannot open my data files.  There are files named help_decrypt, and when I open the help_decrypt.txt, it says: All of your files were protected by a strong encryption with RSA-2048 using CryptoWall 3.0.  When I open help_decrypt, it takes me to the following website: paytoc4gtpn5czl2.torpaysolutions.com/zzcQYe
 
I ran FRST, and below is the text from the FRST.txt file.  I have also attached the Addition.txt file
 
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-03-2015
Ran by Rosie (administrator) on GW-LPTP on 27-03-2015 11:34:34
Running from C:\Documents and Settings\Rosie\Desktop
Loaded Profiles: Rosie & Administrator (Available profiles: Rosie & Administrator)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
(Synaptics, Inc.) C:\Program Files\Sy... Read more

A:Data files encrypted with Cryptowall 3.0

Hello, Welcome to BleepingComputer.I'm nasdaq and will be helping you.If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.===This is the infection - CryptoWall and HELP_DECRYPT Ransomware Information Guidehttp://www.bleepingcomputer.com/virus-removal/cryptowall-ransomware-informationOther than paying the ransom if it's not too late there is nothing we can do to restore your files.I know one thing I would not trust them, your call.We can only clean your computer of the bad files. Hope you have a good backup of your important files.Execute the following to clean the computer.=== ATTENTION: System Restore is disabled.Before proceeding with this fix restore it.How to:http://support.microsoft.com/en-us/kb/310405===Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.start

CloseProcesses:

HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
URLSearchHook: HKU\S-1-5-21-195908757-649669058-3365430507-1006 - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
SearchScopes: HKU\S-1-5-21-195908757-649669058-3365430507-1006 -> {6F9CF7B0-AD7C-4C61-B323-BF4B09373575} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000031&src=crm&... Read more

Read other 5 answers
RELEVANCY SCORE 51.6

I allowed an executable to run that encryted all my data files
 
This is a varient of several ransom virus'
 
i had a red background appear and start my 72 hour countdown to ransom payment of $300
 
ALL DATA FILES HAVE BEEN ENCRYPTED
 
In running combo fix... no restore point was created
 
i am not sure if this was due to my computer prior settings or if the virus turned off systems restore.
there are no restore points on my computer, unless combo fix places them in a seperate folder.
 
Machine is "clean", however, all 25 years of my personal home data is encrypted.
 
How is progress going on this virus or fix.. it seems to have been deployed in the last two weeks.
 
I will refer to it as the postal virus... it says a package is lost and comes from usps.ORG... not .GOV
 
I had a personal package going to india, and that prompted my idiotic choice to let this run.

A:ENCRYPTED DATA BY VIRUS - new variant - USPS?

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.
We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.
To help Bleeping Computer better assist you please perform the following steps:
*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/510131 <<< CLICK THIS LINK
If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.
***************************************************If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of t... Read more

Read other 2 answers
RELEVANCY SCORE 51.6

Hello,

I currently have Win 7 Beta as my main OS with a non-system partition encrypted with Bit-locker(without TPM). I downloaded a copy of Win 7 RC, but will the new OS recognize the bit-locker encrypted partitions? Do I need to decrypt this drive, re-install the OS and then encrypt this non-system partition again? (I don't have my boot partition encrypted)

Or will Win 7 RC natively recognize the bit-locker partition and I just have to provide the user key to mount the drive?

Thanks,
Icered

A:Migrating Win7Beta bitlocker encrypted data to Win 7 RC

Hello Icered, and welcome to Seven Forums.

I would recommend to decrypt the drive first, install the new OS, then use bit-locker to encrypt it afterwards.

Hope this helps,
Shawn

Read other 2 answers
RELEVANCY SCORE 51.6

iam not able to open any file in my encrypted folder. Same issue is coming after decripting the folder. when i open word doc its shows that format not supported and file is damaged which cant repair.

A:my encrypted folders data is showing damage

un-encrypt the folder or drive and run Check Disk on the drive (if it's C: go to Start/Run and type chkdsk C: /R and press enter. change the drive letter for the appropriate drive on your computer.)

Read other 1 answers
RELEVANCY SCORE 51.6

To install another operating system, I forced to resize my partitions.
I had a drive that was encrypted with bitlocker. After changing the drive and restart I noticed there were only two of the drives that on them Windows installed and another drives changed to free space.
Bitlocker encrypted drive was 100G and another drive 244G. Drives I converted to a drive then format it to restore my data. All the information was not encrypted, was returned but encrypted data was not returned even one bit. I changed the size of D to 200 GB again and after a lot of searching I found the repair-bde command.

this was result.
is there any solution to back my data?
please help

A:How to recover my data,encrypted by Bitlocker?(with this condition)

Welcome to Windows Seven Forums.

Please check this tutorial in the hope it will help you remove the Bitlocker drive encryption.

BitLocker Drive Encryption - Windows 7 Drive - Turn On or Off with no TPM

Read other 6 answers
RELEVANCY SCORE 51.6

i used bitlocker to encrypt, the process didnt get more than 10% done before failing, the result is a partially encrypted drive that is locked ( password and recovery key wont work) i need a program that will help retrieve the remaining data that is not encrypted.

A:recovering data from partially encrypted drive

Try using "Recuva" - see free program list. First do a normal scan then a deep scan if required. A deep scan can take quite quite some time.

Read other 2 answers
RELEVANCY SCORE 51.6

Hello,
I plan on installing Truecrypt and encrypting a second drive, to which I will put all my accounts data. I did this a while back and couldn't figure out a way to backup the faux drive with my Paragon Software. It would not recognize the virtual drive, nor the encrypted drive. I would copy the virtual drive to a folder on my boot drive and then just back that up.
Is there an easier way. Between the time to copy the files, do the backup and then delete the files securely off the boot drive, it is exceptionally cumbersome. Not to mention the drive wear.
Thanks for any advice!
Glenn

A:Truecrypt - Best Way to back up data from encrypted drive

Some tips in here for you:

TRUECRYPT - Encrypt Data Folders

Read other 9 answers
RELEVANCY SCORE 51.6

(Before I get started, know that I DO have the passwords for the encrypted data, I just can't figure out how to get at it.)
I'm trying to recover data from a Toshiba 250GB HDD that came from an "IBUYPOWER" model "HL90" laptop. The screen is broke to the point that you can only view what is on the left and right half inches on the screen and I cannot get either of the HDMI/VGA video out ports to work. It is for a friend so I do not know what version of Windows Vista he has.
I tried booting from the hard drive on another computer but I'm assuming it's an OEM version of windows since it never logs on but keeps on restarting. I tried accessing the HDD from windows 8.1 but it says the drive cannot be accessed due to incorrect parameters. I then booted up my computer using Ubuntu and was able to access all of his unencrypted data. My friend said that on his desktop there was a shortcut to a "Personal Safe" which is what encrypted his data. From my online searches I have found out it is a common program on Sager laptops which is part of a "Protector Suite SQL". Through linux I entered the desktop folder but discovered no such program/shortcut (although I could find the Protector Suite folder.) Does anyone know of a way for me to access the data or is it a best bet just to try to replace the screen?
Thank you in advance for any help in the subject. I also apologize in advance if I was verbose or too vague.

A:Recovering Encrypted Data from HDD from Busted Laptop

Could you use the half inch to see enough to get the data? I know that's fairly silly but just saying

Read other 2 answers
RELEVANCY SCORE 51.2

My Lenovo Yoga c930 has stopped working and in the terms and conditions stated by Lenovo warranties says they do not guarentee the data stored on the device. So before I can send the laptop to Lenovo I need to backup the data myself.. So I purchased a NVMe SSD enclouse to read the SSD and copy the files. However it appears the harddrive is encrypted with bitlocker. How do I find my bitlocker code? I have totally unaware that bitlock was enpable on the machine nor do I have any idea where to find the key. Its not linked to my Mircosoft account. The machine was purchase brand new. How and I supposed to backup my data? Shouldn't data retention be a service the warries covers!?! I'm without a laptop at the moment and important data I need is stored within.  

Read other answers
RELEVANCY SCORE 51.2

I would like to share a possible solution to try to recover at least a good part of the files encrypted by ransomware for which there is no other solution.

This technique sure is not new but many users don't know it or don't know how it works.

By simplifying the concept, Data Carving technique scans the data area of the hard disk that is not overwritten, restoring predefined types of files, grouping them by extension: .JPG, .XLS, .DOC .XLSX, .DOCX, MDB, etc...

It is not, however, possible to retrieve the name and original location of the files and not being a File System reference, it is not possible to perform an automatic validity check. The technique allows to achieve good results, especially if the part of the used capacity of the hard disk, is less than 50% compared to the total capacity.

For example, considering HDD by 500GB capacity, if used space is
0 to 10%, the recovery ability is excellent.

From 10 to 40% good
From 40 to 50% poor
From 50 to 60 % very poor
From 60 to 99% unlikely

As described above represents only a hypothesis, and it uses the special features of the operating systems do not write sequentially files, but to allocate them in different zones of the data area. For example, if any of the files encrypted by the ransomware before, was also present in the allocations of the data area that is different from the last position (Eg : the file has been moved from one folder to another), then it is possible that it will be recovered intact.

Of c... Read more

Read other answers
RELEVANCY SCORE 51.2

Hello Dears. I had encrypted my drive by Bitlocker in windows 7. 
few days after my friend did quick format in my encrypted drive.
my 300 gb of data lost. and nothing saved
i remember unlock password. 
how can i recover my data ??? i need my data
i tried drive recovering tools (advanced EFS data recovery, easeus . . ,) . but . . . it's encrypted and formatted drive. 
can i undo quick format and decrypt ???
sorry my english is not good.
someone help me please. 

A:Can i recover lost data from encrypted drive by Bitlocker

BitLocker is not the cause of failed to recover files. Format a drive will clear all data saved on the hard disk. Thus recovery formatted data will be a hard disk based technology but not related to operation system. There is no build-in data recovery feature in Windows operations. So we will needto use third party recovery tool or contact third party data recovery company for current issue.

As recovery missing data service will be expensive, we can also check emails and contact friends to see if that can help get a part of files back especially for photos, documents etc.

Read other 8 answers
RELEVANCY SCORE 51.2

I need advices about how can I solve my issue:

I have an external drive. I started the encryption drive with bitlocker, during encryption process,
the drive has been disconnected so I wasn?t able to continue the encryption process.

Now, the drive is partially encrypted. When I want to access the drive, I got the error message
?Encryption Failed to recover from an abruptly terminated conversion?.

I would like a procedure to recover the remaining data: encrypted and non encrypted

I used M3 Bitlocker Recovery but the tool freezes, I am currently trying TestDisk 7.0. Analysis
is in progress.

You'll find attached screenshots and detailed description of the situation.

I have the passwords & recovery keys

ps: I cant attach screenshots

Read other answers
RELEVANCY SCORE 51.2

I just started using BitLocker on a Windows7 Computer and am confused about one specific aspect of recovering data drives. I have read through the tutorials on here but I can't seem to find anywhere that explicitly states if this is possible or not.

From this link: Regain access to a computer locked by BitLocker Drive Encryption

I see the statement that "To unlock the drive and regain access to your files, you will need the BitLocker recovery password. If you also encrypted data drives, you will need to have access to the drive that Windows is installed on as well."

My question is if my OS drive dies, will the data drives be recoverable with the password and/or recovery key?

I am not currently in such a situation but I would like to prepare for all possibilities. Since a TPM is needed to store the encryption keys on for the OS drive (I just ordered one but have not encrypted my OS drive yet), are the encryption keys for the data drives are stored on the OS drive itself and this is the issue?

Most of the things I find on Google when trying to search about this issue discuss recovering a data drive that is failing, not a data drive that is in good health but does not have access to the system drive. Can anyone say definitively if this is possible, or do I need to be prepared to lose all data on data drives if my system drive crashes?

A:BitLocker Encrypted Data Drive Recovery Question

Based upon what I have read, your data drives will be UNRECOVERABLE if your OS drive dies. I would consider setting up a RAID 5 array for your OS drive for redundancy, this way if one drive dies, all you have to do is replace it and the missing data pieces will be recreated.

Read other 3 answers
RELEVANCY SCORE 51.2

I do not quite know what led to this, but whenever I try to log into my Windows 7 Ultimate, I'm met with some windows boot fixer thing that is automatically launched every time, but always fails. This happens for safe mode with command prompt as well.

My issue is that I have a few folders on a different hard drive possibly using windows 7's encryption services, and I haven't recovered my key for it yet.

What can I do to take the encryption key data if I am having trouble booting into windows?

A:I can't boot into Windows. Encrypted data folders in jeopardy.

means Bitlocker or something else
sorry i cant understood

if its bitlocker issue
then simply unplug ur HDD and plug it to another PC( Widnows pc only lolz ) via sata or USB adaptor
then enter pass and decrypt u r hdd

Read other 2 answers
RELEVANCY SCORE 50

Hi folks,
Just came across a scenario for one of our customer. 

Trying to recover data off a drive that is bitlocker encrypted. No recovery key available to get pass bitlocker and access the drive.
Please advise if I reinstall OS preserving the old data in windows.old folder; will I be able to get the access the windows.old folder afterwards to get the data off it.

Thanks in Advance

Read other answers
RELEVANCY SCORE 50

Hi,
please help
how can I recover data from a damaged disk (not physically) of an external encrypted Bitlocer.
Description of the situation:

After connecting the drive - I can decipher it by typing the password - but when you try to open the contents of the report the message "format disk"
- the disk probably has some volume damaged - it has been disconnected from the computer (without being turned off)
What I have done so far:

Using the "Lazesoft" program - I managed to copy (of course after entering the password
on the damaged disk)
the content to another external disk (full - looking after size) but -
this data is encrypted (mainly ending with .ER)
I am asking for a hint:

whether the data that is on the new disk can somehow read (on this disk I can try) [or/and]how to create a damaged disk image to try on another disk [or/and]how to repair a damaged disk (as a last resort) - I am afraid of total data loss [or/and]what other program to use to copy data from a damaged disk
but decrypted
Thank you in advance for your help
Best Regards
S?awek

Read other answers
RELEVANCY SCORE 49.6

Hi All,
I'm hoping that some of the gurus in this area can help me to resolve why my transfer rate to my external hard drive is so slow (ranges from 200 kbps to 15 kbps), but is almost always in the 15-20 kbps range vs. an advertised/expected transfer rate of

5 Gbps.  That's < 1% of expected transfer rate.  Any thoughts on possible root causes that I should investigate?

I have an HP Probook 430 G1 laptop with a Samsung SSD 850 PRO 256 GB SCSI internal hard drive and 4 GB RAM running Windows 7 Enterprise SP1 64-bit. I also have a Western Digital My Passport Ultra 1 TB external hard driveBoth the internal drive and the external drive are bitlocker encryptedI've connected the drives via USB 3.0 ports + cable. I've also connected the drives via USB 2.0 port on laptop and USB 3.0 cable.I've checked the My Passport for errors and found none.
Any insight would be much appreciated.

Read other answers
RELEVANCY SCORE 49.2

As the title says, its quite self explanatory- i can connect to the internet fine - all the settings have been untouched.The status is connected and there isnt anyapparent hardware failure (according to windows). Its just, packets are being sent - but they are not being received. Ive reset my routerseveral times, restarted several times and i can only think of a reformat in case of an OS issue. I would like to leave this as a last resort however. I have suspicions that it may be a hardware problem. This is due to the fact thqt the previous day, before i shut down my computer, lag caused a violent interaction with my foot. it wasnt superman force or anything, just more than a tap so i highlydoubt that was the problem.

Thanks in advance,

Greetz,
Jsung
 

A:Packets are send. Packets arent received.Making me @[email protected]

Read other 10 answers
RELEVANCY SCORE 48.8

i read this article i hate jerks that pull this sort of thing. i have a better / another idea some one here show me to how make a program /or show me the method it takes to lock on too this guys computer and send 100 watts to his CPU , all at once . we'll see how much he spends instead of ripping people
off.!!!__ i vote we set up a watch group the does nothing else .. feed back is welcome. i am aware off what I'm saying so i hope this doesn't get me in trouble with anybody here at bleeping. i am ever so glad i stumble across this little site .its tought me things i really needed to know. but i had to get it off my chest they should hand out capital punishment for any one caught pulling this little stunt .oh by the way this is the article i was speaking of so as folks won't think I'm nutts babbling about nothing--------

A new infection is making its rounds that makes it so you cannot boot your computer unless you pay a ransom of $100 USD. This malware will modify the Master Boot Record of your computer so that it displays a message stating that your computer's hard drives were encrypted and that unless you pay the ransom you will not be able to access your files.

The reality is that the infected hard drives are not actually encrypted, but just not being made available until you enter a password. When this infection is installed on your computer it will move the infected hard drives Master Boot Record, or MBR, to another loca... Read more

Read other answers
RELEVANCY SCORE 48.4

At random times, my internet will "drop" connection and will not download any packets, but I am still able to send packets. My Local Area Connection icon continues to say I am connected, my modem is fully functional, and my cables are good. I can get my internet back up and running for 10 minutes or so by disable and re-enabling my Network Connection. If I simply try the "repair", it gives me an error at the "Refreshing IP" step.

I have done a full system scan for viruses and I am clean. My drivers are fully updated, I have disabled my firewalls, and still no help. During the times when it is down, I can successfully ping my modem through CMD, but I get the time-out error if I ping a site, my default gateway, the DHCP Server, or the DMS Servers.

I have made no changes to any major settings on my computer, nor has there been any recent additions/removals of any software.

Does anyone know what is causing this or how I can fix it?
 

A:Able to send packets, but not receive packets through router

Read other 9 answers
RELEVANCY SCORE 48.4

I know this is the opposite of a common problem that people post left and right about on this forum, but my network won't send even one packet. I am using a built-in wireless network on my laptop with windows firewall on 'suggested settings'. Other computers are connected to the internet on the same network in the house. It is a problem with my computer specifically. Here is what I get from an ipconfig/all command:

C:\Users\kian>ipconfig/all

Windows IP Configuration

Host Name . . . . . . . . . . . . : kian-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #
2
Physical Address. . . . . . . . . : F6-55-F9-6F-73-A2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR5B95 Wireless Network Adapter
Physical Address. . . . . . . . . : EC-55-F9-6F-73-A2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Autoconfiguration IPv4 Address. . : 169.254.213.155(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . :
NetBI... Read more

A:0 packets sent: Receiving packets just peachy, but not sending any (!)

Hi kjseara, the IP address your getting (169.254.x.x) suggests you are unable to connect to your router, you said you had windows firewall running; do you have any antivirus running? If so, try disabling them and then try and connect again. If the problem still persists try disabling your windows firewall and see if you can connect then.
 

Read other 2 answers
RELEVANCY SCORE 48.4

Hi,

I am trying to setup OpenSSH on XP and near the end I am getting kind of lost. I will post the tutorial and what I need help with below.
Tutorial: http://pigtail.net/LRP/printsrv/cygwin-sshd.html
8) important Pop a cygwin gwindow, harmonize Windows user information with cygwin, otherwise they cannot login
mkpasswd -cl > /etc/passwd
mkgroup --local > /etc/group

If your XP logs on to a domain, you most likely have to manually edit /etc/group. See this page.

If your XP logs on to a domain, you may want to edit /etc/passwd to replace /home/username by //unc_server/path_to_home
(thanks to Geoff Thomas)

mkpasswd creates a password file from Windows' user list, click here for more details.
mkgroup creates a group file from Windows' user list, click here for more details.
Thanks to John Skiggn of Cingular Wireless in Redmond, Washington for his tweak on domain user /etc/group
http://pigtail.net/LRP/printsrv/passwd-group.html
 

A:XP OpenSSH

What was the last step on the tutorial that you did? Also, is the PC you're using in a domain?
 

Read other 1 answers
RELEVANCY SCORE 48

ok Ive been studying this ssh service. Im running Fedora Core 3 and it is active on my machine...........or at least a "pgrep ssh and pgrep sshd" command show it running and the ssh daemon is listed as active in my list of active services.

My question is........if it is running on my linux box does the other windows boxes within my network have to be running it to connect to me?

If so or if not....how do I configure this thing? The information that I have found about it so far reads like stereo instructions in another language. I really need some help here!
 

A:openssh question?

If you post this in the Linux forum, you stand a better chance for an answer.
 

Read other 2 answers
RELEVANCY SCORE 47.2

Running Win XP MCE SP2
Cable connection
motorola surboard modem
linksys router

A few weeks ago I installed openssh on my computer using http://sshwindows.sourceforge.net/download/. I set up the group and passwd files, followed the instructions etc. Forwarded port 22 from my router to my computer and configured my firewall (zonealarm) to let traffic through. Everything worked fine until I screwed something up and had to format my hard drive. I've been trying to setup openssh the same way I did when it worked and I just can't get it to work. I've tried turning off the firewall and also connecting the modem directly to the computer, it just won't work. I have the user accounts setup with passwords. When i use putty to connect to my computer from that computer things work out but outside computers can't connect to it. I open putty, tell it to connect to my ip at port 22 using ssh and it brings up the connection window and asks me for a username, which I type in, and then it immiately asks for a password without showing the welcome/warning message it's supposed to show. When I type in the password, it tries to connect for a few seconds and then simply tells me "Access Denied".

Any suggestions? Any diagnostic tools or anything of that sort I can use to figure out what the problem is?
 

Read other answers
RELEVANCY SCORE 47.2

Hiya

There are two related vulnerabilities in the challenge response handling code in OpenSSH versions 2.3.1p1 through 3.3. They may allow a remote intruder to execute arbitrary code as the user running sshd (often root). The first vulnerability affects OpenSSH versions 2.9.9 through 3.3 that have the challenge response option enabled and that use SKEY or BSD_AUTH authentication. The second vulnerability affects PAM modules using interactive keyboard authentication in OpenSSH versions 2.3.1p1 through 3.3, regardless of the challenge response option setting. Additionally, a number of other possible security problems have been corrected in OpenSSH version 3.4.

Systems Affected

OpenSSH versions 2.3.1p1 through 3.3

http://www.cert.org/advisories/CA-2002-18.html

Regards

eddie
 

A:OpenSSH Vulnerabilities: June 27

July 02, 2002: Added Juniper Networks vendor statement.
July 02, 2002: Added Unisphere vendor statement.
July 02, 2002: Added Sun Microsystems vendor statement.
July 02, 2002: Added FreeBSD vendor statement.
July 02, 2002: Added Apple Computer Inc statement.

http://www.cert.org/advisories/CA-2002-18.html

Regards

eddie
 

Read other 3 answers
RELEVANCY SCORE 46.8

I did a search, but didn't quite see anything posted that might relate to my problem.

At one point early last year I installed OpenSSH on an xp business box I have at home. I set it up so that it was an automatic server that would start when the box turned on. I used Putty on my laptop, and through port forwarding on my WRT54G v8 router, I had it all working perfectly and could connect using Putty on my laptop to have a tunnel to my home comp. Last week the hard drive died and I just bought a new one to put in it, and went through the process of re-installing XP. I then reinstalled OpenSSH, put in all the same settings as it had before (detailed notes from when I did it the first time) and fired up Putty and it wouldn't connect. I thought maybe it was the box, so I tinkered and tweeked to no avail. The only firewall I have running is the XP, and I added OpenSSH and it's ports to the firewall exceptions. The ports are forwarded correctly on my router, and everything in Putty looks ok. After still more timed out connections I opened the routers incoming log and noticed that there were no requests to the port I have OpenSSH set to. I thought that this was odd, as I also have PCAnyWhere installed, and it works perfectly, and I can see in the log the incoming requests for that. So now I am stumped. I have tried Putty on 3 different computers, using three different connections, and still nothing. Any ideas?
 

A:Solved: Windows OpenSSH Problems

Read other 7 answers
RELEVANCY SCORE 46.8

Hiya

The CERT/CC has received confirmation that some copies of the source code for the OpenSSH package were modified by an intruder and contain a Trojan horse.

We strongly encourage sites which employ, redistribute, or mirror the OpenSSH package to immediately verify the integrity of their distribution.

An intruder operating from (or able to impersonate) the remote address specified in the malicious code can gain unauthorized remote access to any host which compiled a version of OpenSSH from this Trojan horse version of the source code. The level of access would be that of the user who compiled the source code.

http://www.cert.org/advisories/CA-2002-24.html

Regards

eddie
 

Read other answers
RELEVANCY SCORE 46.8

I m using Windows XP SP2 and have a LAN connection
... of late i have noticed that the number of packets sent in the Activity frame of the
"LAN Connection Status " window is more than the number of packets received .
I have fully scanned my PC with ZoneAlarm antivirus / antispyware and HijackThis and no problem was detected.
I also checked the running process through Task Manager and found only Microsoft services and other system related services (ZoneAlarm scanning process, Disk keeper service, .. etc) are running.
I also updated the NIC driver but it doesn,t solve the problem. My NIC is Realtek RTL8139.

Help Please.
Thank You.
 

A:sent packets hugely more than packets received.

If you check the status and note the number of packets send/received, then do it again after exactly one minute, what is the number of sent packets over the minute? What is the number of received packets?

Have you tried booting in Safe Mode with Networking and checking if this is still happening?
 

Read other 1 answers
RELEVANCY SCORE 46.4

Hi folks,

today I setup Cygwin and OpenSSH on my rented server. I following the usual direction and everything seemed to be fine.

I tested locally using ssh localhost und voila - connection, login, everything fine.

Then I tried to login from my laptop and got no connection. I checked the firewall - and it was off. Both the server provider's firewall and the local windows firewall were off (I turned them on afterwards, however).

Ok, I thought, let's connect locally, so I tried ssh <hostname> and ssh <server-ip> (On the server itself!). Could not connect.

I tried a lot of combinations, changed the port, used ListenAddress to explicitly bind to the local ip, looked at hosts.allow and hosts.deny etc. Actually one can see slight differences with netstat -a, but the effect remains the same: Using localhost and 127.0.0.1 I can connect, but not using the IP.

Server OS is Windows Web Server 2008.

Any ideas?

Thanks for hints or any idea how I can debug this. SSH debug mode shows no output, so it really seems no connection gets established.

Regards,

JavaBird
 

A:Cygwin OpenSSH doesn't listen on actual IP, only on 127.0.0.1

Does the software have an option to change what ports it is listening on? Is their a check mark that you could of over looked that would cause it it only be listening on the loop back address?
 

Read other 3 answers
RELEVANCY SCORE 46.4

Hi all 
I have one question regarding the distribution of updates for open SSH server feature. 
How the Microsoft is distributing the update for this feature ? In the microsoft windows there is still older version when I'm compare the current distributed open SSH server version.
Thank you for any info. 

Read other answers
RELEVANCY SCORE 46.4

I have a problems with Win 7 Pro x86 where the Openssh SSD service is playing up


Symptoms

Task Manager:
Services Tab:

GGSMGR is running
MySQL is stopped (Right click | start - give access denied), need to start this

Services.msc
Openssh ssd status is blank, and right click is grey out

I need to get these running any ideas please?

I have restarted the PC and cold booted already, no changes same situation as above

Read other answers
RELEVANCY SCORE 46

Hello,
I have a Windows 7 Ultimate workstation which has data encrypted with BitLocker.  I want to move this data to a Windows 2012 R2 server.  Do I need to un-encrypt the data beforehand or can I just move the data over to the server?
The data currently resides in an SQL environment on the workstation.

Read other answers
RELEVANCY SCORE 46

I would like to know if there are tools that can be used to reliably simulate an increase in the values of the following counters in perfmon "Packets Outbound Discarded" and "Packets Received Discarded" under Network Interface.
I have used a tool Clumsy but to no avail : https://jagt.github.io/clumsy/manual.html
I appreciate all the responses and thank you in advance!

Read other answers