So we use webroot as our AV. I got an alert about an hour ago stating a machine on our network was infected with a W2.crypto virus. However, after researching this virus, I don't think this is the same crypto locker thats going around. Webroots active scan delete the file and shows "protected", but I still drove to the office and yanked this laptop off the network. I've scanned the file server and everything seems ok.
what I am asking is, is this the same crypto virus that holds you ransom?