Jump to content

Anyone seen or fixed this malware?

pathfindercod
By pathfindercod
in Troubleshooting
 Share
Posted

I have a client that recently got infected with the cryptolocker malware. She then opened the "s" drive that point to their server and bam. Her machine and the whole s drive on the server I mean every file on the s drive was encrypted. From everything I can find there is no way to decrypt the files except to possibly pay the ransom and hope it works.  Anyone run across this thing?

Link to comment
https://linustechtips.com/topic/216894-anyone-seen-or-fixed-this-malware/
Share on other sites
Link to post
Share on other sites
Posted

Don't pay the ransom. Everything can be decrypted, you need to find a specialist though.

RIG: I7-4790k @ 4.5GHz | MSI Z97S SLI Plus | 12GB Geil Dragon RAM 1333MHz | Gigabyte G1 Gaming GTX 970 (1550MHz core/7800MHz memory) @ +18mV(Maxed out at 1650/7800 so far) | Corsair RM750 | Samsung 840 EVO 120GB, 1TB Seagate Barracuda | Fractal Design Arc Midi R2 (Closed) | Sound Blaster Z                                                                                                                        Getting: Noctua NH-D15 | Possible 250GB Samsung 850 Evo                                                                                        Need a console killer that actually shits on every console? Here you go (No MIR/Promo)

This is why you should not get an FX CPU for ANY scenario other than rendering on a budget http://linustechtips.com/main/topic/286142-fx-8350-r9-290-psu-requirements/?p=3892901 http://linustechtips.com/main/topic/266481-an-issue-with-people-bashing-the-fx-cpus/?p=3620861

Link to post
Share on other sites
Posted

No specialist needed.

 

https://www.decryptcryptolocker.com/

Even better

RIG: I7-4790k @ 4.5GHz | MSI Z97S SLI Plus | 12GB Geil Dragon RAM 1333MHz | Gigabyte G1 Gaming GTX 970 (1550MHz core/7800MHz memory) @ +18mV(Maxed out at 1650/7800 so far) | Corsair RM750 | Samsung 840 EVO 120GB, 1TB Seagate Barracuda | Fractal Design Arc Midi R2 (Closed) | Sound Blaster Z                                                                                                                        Getting: Noctua NH-D15 | Possible 250GB Samsung 850 Evo                                                                                        Need a console killer that actually shits on every console? Here you go (No MIR/Promo)

This is why you should not get an FX CPU for ANY scenario other than rendering on a budget http://linustechtips.com/main/topic/286142-fx-8350-r9-290-psu-requirements/?p=3892901 http://linustechtips.com/main/topic/266481-an-issue-with-people-bashing-the-fx-cpus/?p=3620861

Link to post
Share on other sites
Posted

No specialist needed.

 

https://www.decryptcryptolocker.com/

Wow, I wasn't aware of this, thanks. I figured that someone would be able to get at their database of keys after they released that fixed .onion address.

 

OP most AV will remove this malware, but I recommend Spybot Search and Destroy or Malware bytes for actual removal.

"PSU brands are meaningless, look up the OEM."

Link to post
Share on other sites
Posted

Wow, I wasn't aware of this, thanks. I figured that someone would be able to get at their database of keys after they released that fixed .onion address.

 

OP most AV will remove this malware, but I recommend Spybot Search and Destroy or Malware bytes for actual removal.

It came a bit late after the whole epidemic, but it's still useful none the less for straggling infections like this.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Troubleshooting

×