Encrypted FIles

[AkiTech]

is the any way I can get these files back? 

Need help

[homeap5]

Simply answer is "no, there is no chance to get these files back".

 

Just small question - do you had any antivirus installed while that happens?

[JointedFish]

Well, you could try access data password recovery program and find some Dictionarys to check them for. If you have the gpu horsepower. But most likely its a big fat no, and paying for it dosn't garentee you'll get your stuff back.

[AkiTech]

9 minutes ago, homeap5 said:

Simply answer is "no, there is no chance to get these files back".

 

Just small question - do you had any antivirus installed while that happens?

can it still be called an anti virus for letting this happen. lol  

[NelizMastr]

This is a Cryakl type ransomware. Never click those fake links in your e-mail kids.

 

The only tool that can even remotely rescue your files is this one. If it can't, the files are hosed. 

 

http://media.kaspersky.com/utilities/VirusUtilities/EN/rakhnidecryptor.zip

 

and the manual is here:

 

https://www.nomoreransom.org/uploads/RakhniDecryptor_how-to_guide.pdf

5 minutes ago, AkiTech said:

can it still be called an anti virus for letting this happen. lol  

Well, antivirus software can't protect from stupidity like clicking fake links in e-mails. By the time the antivirus has detected the problem, the files are already encrypted. Free antivirus software (and Windows Defender especially) really don't do this well.

[AkiTech]

9 minutes ago, JointedFish said:

Well, you could try access data password recovery program and find some Dictionarys to check them for. If you have the gpu horsepower. But most likely its a big fat no, and paying for it dosn't garentee you'll get your stuff back.

I guess of to reformat then. If it really is a waste of time trying to get help and try to recover these.

 

[AkiTech]

1 minute ago, NelizMastr said:

This is a Cryakl type ransomware. Never click those fake links in your e-mail kids.

 

The only tool that can even remotely rescue your files is this one. If it can't, the files are hosed. 

 

http://media.kaspersky.com/utilities/VirusUtilities/EN/rakhnidecryptor.zip

Well, antivirus software can't protect from stupidity like clicking fake links in e-mails. By the time the antivirus has detected the problem, the files are already encrypted. Free antivirus software (and Windows Defender especially) really don't do this well.

 

1 minute ago, NelizMastr said:

This is a Cryakl type ransomware. Never click those fake links in your e-mail kids.

 

The only tool that can even remotely rescue your files is this one. If it can't, the files are hosed. 

 

http://media.kaspersky.com/utilities/VirusUtilities/EN/rakhnidecryptor.zip

Well, antivirus software can't protect from stupidity like clicking fake links in e-mails. By the time the antivirus has detected the problem, the files are already encrypted. Free antivirus software (and Windows Defender especially) really don't do this well.

i dont recall clicking links of sort. but I will try what you gave, hope it at least gets most of it   

[NelizMastr]

2 minutes ago, AkiTech said:

 

i dont recall clicking links of sort. but I will try what you gave, hope it at least gets most of it   

It doesn't get on your system by itself. It was either a malicious e-mail, link or software download.

[AkiTech]

3 minutes ago, NelizMastr said:

It doesn't get on your system by itself. It was either a malicious e-mail, link or software download.

I know. It may not be "me" since I'm not the only person using this pc

[JointedFish]

8 minutes ago, AkiTech said:

I guess of to reformat then. If it really is a waste of time trying to get help and try to recover these.

 

I mean, it dosn't hurt to try, but these kinds of ransomware is a big massiv a hole. Best is to live and learn about the use of regular day to day uses of computers and on the internet. However, being targeted is a whole diffrent story.

[NelizMastr]

4 minutes ago, AkiTech said:

I know. It may not be "me" since I'm not the only person using this pc

In that case, make sure you use a separate removable disk to store your valuable data on and regularly scan for malware.

[AkiTech]

1 minute ago, JointedFish said:

I mean, it dosn't hurt to try, but these kinds of ransomware is a big massiv a hole. Best is to live and learn about the use of regular day to day uses of computers and on the internet. However, being targeted is a whole diffrent story.

I havent slept for like 30+ hours trying to look for something to get these files back. so yeah. "being targeted is a whole different story"  

[AkiTech]

I've read that this Cryakl is fairly new. so would you guys suggest I keep the locked files on a separate drive and wait for a decryptor in the future?? coz I'll be reformatting my pc and make sure that I'll secure it this time and nobody collects malicious stuff that count infect the pc.

 

[Guest]

34 minutes ago, AkiTech said:

I've read that this Cryakl is fairly new. so would you guys suggest I keep the locked files on a separate drive and wait for a decryptor in the future?? coz I'll be reformatting my pc and make sure that I'll secure it this time and nobody collects malicious stuff that count infect the pc.

 

If the files are important to you then there is no harm to keep them and then decrypt them in the future.

But ill also recommend keeping your important stuff on an external hdd/ssd, and disconnecting it when others are using the computer.

[homeap5]

1 hour ago, AkiTech said:

can it still be called an anti virus for letting this happen. lol  

Right. I'm just saying that everyone tells how important is to have AV installed, while it's not true. Virus creators have access to that software too, so it's just waste of CPU to use software that gives you nothing except false feel of being secure. I'm using only Comodo Firewall and while it does not scan my files against viruses, it report me every program that wants to connect to internet, so this way i found more dangerous stuff than any AV crap. The only you can get using AV is lot of false positives while viruses works like they want.

 

And it's not true that AV was too slow. AV doesn't work that way. Before any file will be executed, is first scanned (that is the main reason why AV slows down computers). So, your AV just let virus to encrypt your files. Try to not install that piece of #$_& next time - effect will be the same except faster windows. Install Comodo Firewall, select custom mode, disable file analysis (you should decide, not program) and any predefined entries and settings and enjoy.

[wasab]

So glad I'm on Linux. Hahaha

[NelizMastr]

15 minutes ago, wasab said:

So glad I'm on Linux. Hahaha

If Office 365 was a thing on Linux, I'd use it both at home and at work lol, but alas.

[wasab]

47 minutes ago, NelizMastr said:

If Office 365 was a thing on Linux, I'd use it both at home and at work lol, but alas.

You do know Microsoft offers a free cloud version that you can use in a browser right? 

[Teddy07]

You need to find out which program encrypted your files. I think there is only a very small chance to get your files back

[AkiTech]

On 7/17/2018 at 11:37 PM, Teddy07 said:

You need to find out which program encrypted your files. I think there is only a very small chance to get your files back

I gave up, so now I came back with a "reformatted" PC *sigh* hope I could build a desktop already.

 

[AkiTech]

On 7/17/2018 at 10:25 PM, homeap5 said:

Right. I'm just saying that everyone tells how important is to have AV installed, while it's not true. Virus creators have access to that software too, so it's just waste of CPU to use software that gives you nothing except false feel of being secure. I'm using only Comodo Firewall and while it does not scan my files against viruses, it report me every program that wants to connect to internet, so this way i found more dangerous stuff than any AV crap. The only you can get using AV is lot of false positives while viruses works like they want.

 

And it's not true that AV was too slow. AV doesn't work that way. Before any file will be executed, is first scanned (that is the main reason why AV slows down computers). So, your AV just let virus to encrypt your files. Try to not install that piece of #$_& next time - effect will be the same except faster windows. Install Comodo Firewall, select custom mode, disable file analysis (you should decide, not program) and any predefined entries and settings and enjoy.

I would like to hear more about this "Comodo Firewall". It could help a lot since using this computer felt like it came back from its grave (I went to the trouble of reformatting it) and I don't think its just a simple virus and I think someone or something is really trying to take over my computer. 

You see even thought its reformatted, it didn't repair the audio issue I was having along with the ransomware. Could it be that the "one" trying to take over my computer is just making me feel like I'm in control again, I dunno? so yeah. Tell me about it, hit me a dm

[homeap5]

Firewall is a firewall - you can read about it on many forums, including Comodo forum.

 

Basically it controlls all network traffic and, in case any program wants to use internet (sends or receive anything) you have notification - you may allow, block, block and terminate process, you can also know what process wants to connect, so it's easy to find dangerous program location. Depends on settings, firewall may be more annoying (asking for every connection, until you answer that you want to remember your answer) or using predefined filters and asks only when program or process is unrecognized. You may install Firewall only or firewall with basic cloud av protection. Also extra options like HIPS for monitoring filesystem.

 

It has also options to run any process in sandbox or even run sandboxed desktop (so every program you run in that mode will be harmless to your system).

 

It's up to you if you want to use it or not. Install, check yourself and I hope you'll be safer.