0
2

[–] foxlet 0 points 2 points (+2|-0) ago 

I would recommend to always check the domain of origin in emails to prevent it from happening again, it's a very common tactic.

0
0

[–] gerantgerant [S] 0 points 0 points (+0|-0) ago 

Yeah, you're absolutely right and I knew it was junk when I hit it. It's just that I've resolved so many issues over the years that I didn't believe that something could completely cripple me. It even broke through a whole bunch of programs I had installed to prevent such things from occurring. Unfortunately the problem/virus is very impressive in it's make.

0
2

[–] dotwork 0 points 2 points (+2|-0) ago  (edited ago)

There is a step by step guide here.

Although you cannot decrypt the files you may be able to recover them by doing the following source:

Now, the most important part, how to get your files back. The best method is obviously to restore your files from a recent backup. If you have been performing backups, then you should use your backups to restore your files. If you don't have backups then you can try restoring your files with a program called Shadow Explorer. It may work and or may not. I know some users managed to get at least some of their files back using this program. You can try it too. There's really nothing to lose after all. If you have any questions, please leave a comment down below. Good luck and be safe online!

0
1

[–] gerantgerant [S] 0 points 1 points (+1|-0) ago 

Thank you. Hopefully this gets me through.

0
1

[–] dotwork 0 points 1 points (+1|-0) ago 

Good luck man!

0
1

[–] donotreply 0 points 1 points (+1|-0) ago 

I was able to get some very important files of a clients that were NOT backed up by using "previous versions" under properties of each file. In a few cases it worked on the folder. It is a hit/miss sort of thing but for the client it got back what he needed the most.

Not that it would help in this instance but in future cases if using an external backup in your home/office that is plugged in thru USB you might consider removing after each backup as a Crypto-virus can infect and encrypt the drive if connected when the system is infected. Some variations do look for all "drives". It cannot encrypt a backup service that is cloud-based (not yet at least) and although I hate the thought of putting data onto a cloud server if running a business it might be wise for certain types of data that needs to be backed up constantly.

0
1

[–] Rsvennson 0 points 1 points (+1|-0) ago 

That is currently the most terrifying virus o know of. Start fresh. Install cryptoprevent. Get an antivirus, even if it is free it's better than nothing. Make backups. Sorry I couldn't help more.

0
0

[–] gerantgerant [S] 0 points 0 points (+0|-0) ago 

Oh, it's so damn impressive. Lucky for me it was on a computer I keep very little on but none the less a pain in the arse. I still haven't fixed my computer and it still works fine... it's just that everything I had on it is rekt. I followed the link and offered a file to have them decrypt and sure enough they hold the key. It's just so crass.

0
1

[–] Rsvennson 0 points 1 points (+1|-0) ago 

Yeah, I had a customer who lost all their important business files because of it. I had one get it on there computer and they just wiped out the user account since all the data is gone anyway and haven't had any problems since.

0
1

[–] trillcollins 0 points 1 points (+1|-0) ago 

my boss got rekt by that the other day.. paid 700 in ransom

0
1

[–] gerantgerant [S] 0 points 1 points (+1|-0) ago 

They must be making soooooo much money. I can't find a decent solution to the problem anywhere. I've been hit by a lot of junk over the years, but nothing like this. It's horrendous.

0
0

[–] lllllllllll 0 points 0 points (+0|-0) ago 

So how did you deal with it?

0
0

[–] gerantgerant [S] 0 points 0 points (+0|-0) ago 

I didn't. Computer works fine apart from everything still being encrypted. Will wipe the computer and start from scratch once I get my hands on some Windows.

0
0

[–] Stabzy 0 points 0 points (+0|-0) ago 

Does it reinstall itself when you remove it?

0
0

[–] gerantgerant [S] 0 points 0 points (+0|-0) ago 

I don't think so. My computer appears to be working fine now... except everything is encrypted. I might try downloading something new today and see if that gets automatically encrypted. Will have to do a complete re-install later this week.

0
0

[–] ketsuban 0 points 0 points (+0|-0) ago 

Are you sure its cryptolocker and not one of its newer variants?

0
0

[–] gerantgerant [S] 0 points 0 points (+0|-0) ago  (edited ago)

Yeah, it has Crypt0L0cker written over everything and all the screen shots I find of it online look just like the problem I have. It's so damn ugly. Every file on my computer is now encrypted. I unplugged my external hard drive but my instincts tell me that's dead too. Over a TB of data encrypted with no clear solution or answer. Hurts so bad.

EDIT: I see what you mean now. It may be a variant, I can't quite tell. Either way... I'm bust.

load more comments ▼ (1 remaining)