Solved

HOW_DECRYPT

Posted on 2014-04-01
2
832 Views
Last Modified: 2014-04-01
Hi

A customer recently, a week ago, got infected with the HOWDECRYPT virus on a Windows XP workstation

He ran MalwareBytes and cleaned his files but he was unable to recover his files since XP doesn't provide the file version restore option

Is there any way to recover his encrypted files without actually paying the 'ransom' ?

thanks

yann
0
Comment
Question by:Yann Shukor
2 Comments
 
LVL 5

Accepted Solution

by:
Pasha Kravtsov earned 500 total points
ID: 39970095
As far as I know the malware encrypts all the files and it stores the decryption key not on the local machine but in a remote server so no unless you pay the ransom you can't decrypt the files. This article pretty much sums it up: http://krebsonsecurity.com/2013/11/how-to-avoid-cryptolocker-ransomware/
0
 
LVL 28

Expert Comment

by:Bill Bach
ID: 39970159
Agreed.  I have had several clients get bitten.  All had had to restore from backup.
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
VMware Black Screen 13 152
Ransomware and encrypted backups 5 147
spam coming from PW domain - why PW? 3 55
Behavior-based and anomalies detection for Microsoft 3 41
I've been an avid user and supporter of Malwarebytes Premium Version 2.x for years. It's an excellent product that runs alongside just about any Anti-Virus application without issues. It seems to have an uncanny ability to pick up many things that A…
One of the biggest threats facing all high-value targets are APT's.  These threats include sophisticated tactics that "often starts with mapping human organization and collecting intelligence on employees, who are nowadays a weaker link than network…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question