Solved

WIN XP PC - files damaged/encrypted from "Crypto" virus - please help - how can I decrypt ?

Posted on 2014-10-08
7
207 Views
Last Modified: 2016-11-23
I have a WIN XP Dell PC - all files damaged/encrypted from "Crypto Locker" virus - please help - how can I decrypt ?
0
Comment
Question by:expressconsult
7 Comments
 
LVL 93

Accepted Solution

by:
John Hurst earned 500 total points
ID: 40369900
You cannot. You need to get files from backups and if you did not back up your documents, they are lost.

Do NOT pay to get the key. The perpetrators are criminals and paying them will invite deeper trouble.
0
 

Author Comment

by:expressconsult
ID: 40369949
So there is no decrypting software or tool that can help in my case ?
0
 
LVL 13

Expert Comment

by:akb
ID: 40369980
John Hurst is right. It is not possible to decrypt without the keys.
I had my first experience 2 days ago with this nasty virus.
Luckily my customer had good backups and we were able to recover after removing the virus.
If you do not have good backups then you may have no option but to pay them - that is a decision for you.

There is a good article on Cryptolocker here: http://www.pcworld.com/article/2060640/cryptolocker-creators-try-to-extort-even-more-money-from-victims-with-new-service.html
0
 
LVL 25

Expert Comment

by:Dr. Klahn
ID: 40369998
Depending on which version has hit your system, there may be a solution.  See the article at the site below:

http://www.fireeye.com/blog/corporate/2014/08/your-locker-of-information-for-cryptolocker-decryption.html

If you were hit by a recent version with a recent key, this will not do the job.  However, if you were hit by one of the earlier versions using one of the keys acquired during the anti-CryptoLocker campaign, this may work.

If this fails, the options are as previously described above.  Pay the ransom, reload from a recent full backup, or reload Windows from scratch as the system should no longer be trusted even if cleaned up.
0
 
LVL 88

Expert Comment

by:rindi
ID: 40370055
Even if you pay the ransom, you aren't guaranteed that you'll even get the keys. So as thinkpad's mentioned already, NEVER pay. At least now you can move up from XP to a supported OS....
0

Featured Post

ScreenConnect 6.0 Free Trial

Explore all the enhancements in one game-changing release, ScreenConnect 6.0, based on partner feedback. New features include a redesigned UI, app configurations and chat acknowledgement to improve customer engagement!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

When the confidentiality and security of your data is a must, trust the highly encrypted cloud fax portfolio used by 12 million businesses worldwide, including nearly half of the Fortune 500.
Many companies are looking to get out of the datacenter business and to services like Microsoft Azure to provide Infrastructure as a Service (IaaS) solutions for legacy client server workloads, rather than continuing to make capital investments in h…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question