• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 860
  • Last Modified:

HOW_DECRYPT

Hi

A customer recently, a week ago, got infected with the HOWDECRYPT virus on a Windows XP workstation

He ran MalwareBytes and cleaned his files but he was unable to recover his files since XP doesn't provide the file version restore option

Is there any way to recover his encrypted files without actually paying the 'ransom' ?

thanks

yann
0
Yann Shukor
Asked:
Yann Shukor
1 Solution
 
Pasha KravtsovSupport EngineerCommented:
As far as I know the malware encrypts all the files and it stores the decryption key not on the local machine but in a remote server so no unless you pay the ransom you can't decrypt the files. This article pretty much sums it up: http://krebsonsecurity.com/2013/11/how-to-avoid-cryptolocker-ransomware/
0
 
Bill BachPresidentCommented:
Agreed.  I have had several clients get bitten.  All had had to restore from backup.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now