• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 858
  • Last Modified:

HOW_DECRYPT

Hi

A customer recently, a week ago, got infected with the HOWDECRYPT virus on a Windows XP workstation

He ran MalwareBytes and cleaned his files but he was unable to recover his files since XP doesn't provide the file version restore option

Is there any way to recover his encrypted files without actually paying the 'ransom' ?

thanks

yann
0
Yann Shukor
Asked:
Yann Shukor
1 Solution
 
Pasha KravtsovSupport EngineerCommented:
As far as I know the malware encrypts all the files and it stores the decryption key not on the local machine but in a remote server so no unless you pay the ransom you can't decrypt the files. This article pretty much sums it up: http://krebsonsecurity.com/2013/11/how-to-avoid-cryptolocker-ransomware/
0
 
Bill BachPresidentCommented:
Agreed.  I have had several clients get bitten.  All had had to restore from backup.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now