cryptolocker

my clients computers have been infected with cryptolocker. I'm trying to assist them. Any suggestions for removal?

Thanks!



Use system restore to go back prior to infection. If unable use malwarebytes, superantispyware and combofix.

www.malwarebytes.org
www.superantispyware.com
www.bleepingcomputer.comcombofix



Use system restore to go back prior to infection. If unable use malwarebytes, superantispyware and combofix.

www.malwarebytes.org
www.superantispyware.com
www.bleepingcomputer.comcombofix



This virus has spread through my clients network and all workstations and servers are infected. It has encrypted all pdf, mdb, word, and other documents on all systems. Will these removal tools you suggest restore their files?

Thanks!



My own experience is yes. You may have to start in safe mode with networking to download these programs. Do not run them in safe mode. Disable your AV and AS software before running these scans.



My client has evidently been able to remove the virus but files on their shared network drives are still encrypted. They have run malwarebytes and combofix, but not superantispyware. They are going to try it now. They are going to copy one of the infected files from a network drive to a disconnected workstation, run the scans and hope it works.

Thanks again!



Now that the virus has been cleaned your client should be able to use sytem restore to get back to a state before infection. This is the quickest solution.

Share this

Related Posts

There was an error in this gadget