Link to home
Start Free TrialLog in
Avatar of Marcus_nt
Marcus_nt

asked on

Cryptolocker solutions?

Does anybody have any up to date information on how to reverse the encryption caused by the Cryptolocker virus?  I understand it is a new virus and there isn't a ton of information but I was hoping something new has come along.  I was able to remove the virus from the PC but obviously the damage had already been done.  Any information would be greatly appreciated.
SOLUTION
Avatar of Lee W, MVP
Lee W, MVP
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Marcus_nt
Marcus_nt

ASKER

My main hope from this post is to see if it is possible to reinduce the virus or somehow reverse the encryption, we do not have a backup for this specific computer.  We've tried reopening any questionable email attachments and going to every site in the browsing history leading up to the time of infection but having no luck.
Avatar of Lee W, MVP
Lee W, MVP
Flag of United States of America image
If there were an "easy" way to decrypt the data, I would expect the antivirus tools available would be implementing it.  

It's a hard lesson... but one people should learn - backup.
ASKER CERTIFIED SOLUTION
Avatar of Giovanni
Giovanni
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Marcus_nt
Marcus_nt

ASKER

I've requested that this question be deleted for the following reason:

lkfjldjkf;
Avatar of Giovanni
Giovanni
Flag of United States of America image
ID: 39606853 is a thorough explanation and should be made available to the public, or at least EE subscribers, for future searches and reference.
Avatar of Giovanni
Giovanni
Flag of United States of America image
ID: 39606853 is a thorough explanation and should be made available to the public, or at least EE subscribers, for future searches and reference.
Avatar of Marcus_nt
Marcus_nt

ASKER

I've requested that this question be deleted for the following reason:

other than offering preventative solutions going forward, the issue can't be fixed
Avatar of Giovanni
Giovanni
Flag of United States of America image
@SouthMod: Thank you.

@Marcus_nt: Apparently the malware author(s) are not destroying keys within the timeframe they have represented, as they've launched a decryption service here:

http://www.experts-exchange.com/Security/Vulnerabilities/Q_28294767.html#a39651228