CryptoLocker is a ransomware trojan which targets computers running Microsoft Windows and first surfaced in September 2013. A CryptoLocker attack may come from various sources; one such is disguised as a legitimate email attachment. Files generally encrypted are: 3fr, accdb, ai, arw, bay, cdr, cer, cr2, crt, crw, dbf, dcr, der, dng, doc, docm, docx, dwg, dxf, dxg, eps, erf, indd, jpe, jpg, kdc, mdb, mdf, mef, mrw, nef, nrw, odb, odm, odp, ods, odt, orf, p12, p7b, p7c, pdd, pef, pem, pfx, ppt, pptm, pptx, psd, pst, ptx, r3d, raf, raw, rtf, rw2, rwl, srf, srw, wb2, wpd, wps, xlk, xls, xlsb, xlsm, xlsx.
Ok, so I my computer has CryptoLocker on it, now what?
First, if you have files on your computer, or network shares you have access to, that are listed above, then they are likely encrypted. The mal-ware CryptoLocker can be removed, but decrypting the files isn’t possible without paying the amount your files are being ransomed for.
If you have a reliable backup service in place (similar to our C3 Backup service), then you can simply restore the inaccessible files after CryptoLocker is removed properly. If you don’t have a backup service in place, then you’re files are lost short of paying the CryptoLocker ransom.
If you think you have CryptoLocker, call us today. While we see this malicious software often, we can get your computer or server fixed quickly.
Give us a call today at 601-518-0420.