.encrypt Virus
- Thread starter Kalani
- Start date
You need to find out specifically which variant of ransomware it is - there's different techniques for different versions. Some can be easily fixed, others...you're SOL unless you have a backup (usually a good idea to check Shadow Copies).
Are you sure that's the name?
Variants include (but not limited to): VaultCrypt, TeslaCrypt, CTB-Locker, CryptoWall, KEYHolder, CryptoLocker, Petya, etc.
Rolling back won't work - the files are encrypted. You need to find out which variant it is so that you can try to decrypt the files if possible (as well as remove the malware in the first place).
Variants include (but not limited to): VaultCrypt, TeslaCrypt, CTB-Locker, CryptoWall, KEYHolder, CryptoLocker, Petya, etc.
Rolling back won't work - the files are encrypted. You need to find out which variant it is so that you can try to decrypt the files if possible (as well as remove the malware in the first place).
They shutdown the sites awhile ago that you could get the decrypt key from (annoying)... until they raid more premises that house the decrypt servers wont be any way around it.
If you have a backup, just reinstall and restore, there is NO OTHER WAY to fix this or remove it, only a decrypt key would work.
. Access2000
Beta member
- Messages
- 3
- Location
- Tulsa
How you find out what type of virus it is?
I got hit but one but only infected one driver on my server which i thought it was kind of weird. I deleted the whole drive and i just used a back up from a day before. But I have still haven't find out where it did originate from. anyone have any thought?
I got hit but one but only infected one driver on my server which i thought it was kind of weird. I deleted the whole drive and i just used a back up from a day before. But I have still haven't find out where it did originate from. anyone have any thought?
Similar threads
