Somebody in a small network inadvertently downloaded and executed a Cryptolocker virus program.
Before I came into the picture they decided to pay the attackers, and they unlock the files.
Now they have called me to provide them with a clean up process, so that they can make sure no traces of the cryptolocker are left on any computer in the network.
Can you please provide me with the best practices to clean up a network after a Cryptolocker attack?
And also the best practices to keep them to being attacked again?