<div>
See if Unlocker will remove a file. &nbsp;If it will, I think you can select more than one to delete.<br />
<br />
<a href="http://filehippo.com/download_unlocker/" rel="ugc">http://filehippo.com/download_unlocker/</a><br />
<br />
Also try signing on with a different admin user name and see if you can delete these files from another user.
</div>


See if Unlocker will remove a file.  If it will, I think you can select more than one to delete.

http://filehippo.com/download_unlocker/ [http://filehippo.com/download_unlocker/]

Also try signing on with a different admin user name and see if you can delete these files from another user.

<div>
I would just re-create the share.<br />
<br />
Rename the current share to something else, unshare it.<br />
<br />
Then restore your backup of the share and reshare it.<br />
<br />
Easier then trying to find what has been encrypted and what hasn't.<br />
<br />
or use windows search and search for .crypto on the share folder directory. and delete it that way. Also dont forget to delete the .txt, jpg or whatever else it came with.
</div>


I would just re-create the share.

Rename the current share to something else, unshare it.

Then restore your backup of the share and reshare it.

Easier then trying to find what has been encrypted and what hasn't.

or use windows search and search for .crypto on the share folder directory. and delete it that way. Also dont forget to delete the .txt, jpg or whatever else it came with.

<div>
<div class="content wysiwyg-content">
Our windows 2012 r2 server recently got ransomware, it only affected one large shared. &nbsp;I was able to restore from backup but there are still many .CRYTO files in folders and sub folder. &nbsp;I am able to delete these one at a time but when I try to delete them globally with the caommand DEL /s *.cryto I get access denied. &nbsp;<br />
<br />
Is there another tool to do this?
</div>
</div>


Our windows 2012 r2 server recently got ransomware, it only affected one large shared.  I was able to restore from backup but there are still many .CRYTO files in folders and sub folder.  I am able to delete these one at a time but when I try to delete them globally with the caommand DEL /s *.cryto I get access denied.  

Is there another tool to do this?

Deleting .CRYTO files after ransonware virus

Operating system security (OS security) is the process of ensuring OS integrity, confidentiality and availability. OS security refers to specified steps or measures used to protect the OS from threats, viruses, worms, malware or remote hacker intrusions. OS security encompasses all preventive-control techniques, which safeguard any computer assets capable of being stolen, edited or deleted if OS security is compromised, including authentication, passwords and threats to systems and programs.

OS Security

The Microsoft Server topic includes all of the legacy versions of the operating system, including the Windows NT 3.1, NT 3.5, NT 4.0 and Windows 2000 and Windows Home Server versions.

Microsoft Server OS

Anti-virus software was originally developed to detect and remove computer viruses. However, with the proliferation of other kinds of malware, antivirus software started to provide protection from other computer threats. In particular, modern antivirus software can protect from malicious browser helper objects (BHOs), browser hijackers, ransomware, keyloggers, backdoors, rootkits, trojan horses, worms, malicious layered service providers (LSPs), dialers, fraud tools, adware and spyware. Some products also include protection from other computer threats, such as infected and malicious URLs, spam, scam and phishing attacks, online identity theft (privacy), online banking attacks, social engineering techniques, Advanced Persistent Threat (APT), botnets and DDoS attacks.