Solved

CBT Virus

Posted on 2015-02-04
5
309 Views
Last Modified: 2015-02-18
1 of my customers did pick up a virus CBT virus which encrypt all her files and they want some money to encrypt the files

I did remove the CBT from the pc but the files are still encrypted ,is there anyway I can decrypt these files.

Thanks
SD
0
Comment
Question by:Dirkie Laubscher
5 Comments
 
LVL 13

Expert Comment

by:Mark Galvin
ID: 40588472
Is this the one where there is a text file advising that if you pay XXX bit coins they will provide the decrypt key?

I have a client with that last year and its restore the last full backup they had. Following an complete review and subsequent lock down of their LAN.

You can try https://www.decryptcryptolocker.com/ and see if your client can use that program to get their files unlocked.
0
 

Author Comment

by:Dirkie Laubscher
ID: 40588504
Hi I did try the site but says my file doesn't need to be decrypted ,seems she is screwed and she doesn't have backups
0
 
LVL 13

Expert Comment

by:Mark Galvin
ID: 40588514
Oohhh, no backups? Not a great start. Is it much data?
0
 
LVL 11

Expert Comment

by:Wilder1626
ID: 40588521
Hi

Have you scan you PC with MalwareBite? Might be a good thing

https://www.malwarebytes.org/

You may also want to look at this link:
Malware troubleshooting: recover your files damaged by CTB Locker Virus.

System Restore of Windows may help in resolving some issues, but not all the time.  You can give it a try also.
0
 
LVL 16

Accepted Solution

by:
Ivan earned 500 total points
ID: 40588595
Hi,

there is no decrypting system for CBT-Locker. There is a site http://www.shadowexplorer.com/ that will allow you to see data created by Shadow Copy in Windows, if you have set that up. This may save you some data. Other then that, there is no known system.

For older Cryptolocker, there is a website https://www.decryptcryptolocker.com/  which may decrypt some data.

Regards,
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There are many reasons malware will stay around and continue to grow as a business.  The biggest reason is the expanding customer base.  More than 40% of people who are infected with ransomware, pay the ransom.  That makes ransomware a multi-million…
Ransomware continues to be a growing problem for both personal and business users alike and Antivirus companies are still struggling to find a reliable way to protect you from this dangerous threat.
This Micro Tutorial will give you a basic overview of Windows DVD Burner through its features and interface. This will be demonstrated using Windows 7 operating system.
This Micro Tutorial will give you a introduction in two parts how to utilize Windows Live Movie Maker to its maximum capability. This will be demonstrated using Windows Live Movie Maker on Windows 7 operating system.

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now