Highest Voted 'ransomware' Questions

5

votes

2 answers

How to remove BUYUNLOCKCODE Ransomware

A ransomware appears to have been circulating for the past few weeks. It encrypts data files and creates a BUYUNLOCKCODE.txt ransom note in all directories where a file was encrypted. This buyunlockcode.txt file contains instructions and an email…

malware ransomware

asked Jan 12 '15 at 12:43

hsawires

636

5

votes

0 answers

Is this a ransomware?

I just got this window on my main computer: Apparently, it's from Windows. I checked, and the process EXE file is the original one (efsui.exe or something like that). However, I don't use EFS (I never heard about it). I never encrypted any of my…

malware efs malware-detection ransomware

asked Apr 25 '16 at 20:20

zdimension

14,283

3

votes

3 answers

How to wipe a disk completely that has been encrypted by ransomware

Recently my HDD was encrypted by a ransomware attack (I have no idea which encryption method has been used) and as a result I cannot access the contents of my HDD (see how Disk 1 seems in the first screenshot). Now I need to completely format it to…

windows-10 hard-drive wipe ransomware

asked Jan 13 '20 at 06:15

yildizabdullah

201

2

votes

1 answer

How to have an app be trusted by Windows to bypass the "Ransomeware protection"?

I have a Windows desktop software that needs to write new folder/files into the %USERPROFILE%\Documents\ folder. There is a Windows option, under "Ransomware protection", that protects "Controlled folders". Usually, this is disabled, but there are…

code-signing ransomware

asked Mar 23 '23 at 08:30

cinico

259

2

votes

1 answer

Can ransomware affect ejected external hard drive?

Can ransomware affect an external hard disk on Windows that has been ejected using "Safely remove" feature while keeping the drive plugged into my PC?

windows-10 ransomware

asked May 03 '20 at 11:55

Islam Mohamed

43

2

votes

1 answer

How to recover files encrypted by norvas ramsomware

I just caught a ransomware that encrypted many of my files and I need to get them back. Now they all end in .NORVAS and I can't find a way to decrypt them back. I tried with data recovery pro, shadow explorer and easeus data recovery but no luck.

ransomware

asked Apr 20 '19 at 22:34

Cain Nuke

21

2

votes

0 answers

Allow rundll32.exe in Windows 10 ransomware protection settings?

When trying to import photos from my phone, Windows' ransomware protection (controlled folder access) blocked rundll32.exe from writing to my Pictures photo. Would it be OK to put rundll32.exe on the list of allowed apps, or is there (can there be)…

windows-10 rundll32.exe ransomware

asked Oct 07 '18 at 08:36

Tim Pietzcker

2,730

2

votes

0 answers

Duplicate files with weird extensions – ransomware?

I'm a little afraid to get bashed since this is super non-specific but this is exactly my problem. I'm finding weird file duplicates on my computer – with the same name as the original file but an added dot at the start plus a six-digit random…

macos windows-10 ransomware

asked Dec 31 '17 at 14:27

user3647558

69

2

votes

1 answer

Access Windows 10 Safe Mode from startup

I have an Asus machine running up-to-date Windows 10. With all the Ransomware panic going around ittakes me back to when I was victim of a type-3 Ransomware attack (lockout). The way I managed to resolve it was by getting in through safe mode and…

windows-10 safe-mode ransomware

asked May 18 '17 at 09:04

Weckar E.

276

1

vote

1 answer

Is situation (with GPG) possibly a malware attack?

I am taking care of an ubuntu server (22.04) and suddenly I was not able to access some files via FTP. I checked a few things and noticed a gpg root process consuming a lot of CPU. It kept restarting as I killed it so I did the next: Shut down the…

ubuntu malware gnupg postfix ransomware

asked Feb 15 '23 at 09:59

Jorge

121

1

vote

3 answers

How do I check if files have been encrypted by Ransomware?

Is there any way to check if the current files (files of a computer/user/hard disk/NAS ) have been encrypted with ransomware by a third party? Would it be possible to open all files according to their file extension (e.g. with Python) and thus get…

python ransomware

asked Jun 12 '22 at 11:58

STARmin

11

1

vote

1 answer

Do ransomware decryption tool really work and what's proper way to fix it?

My laptop got infected with ransomware, files got encrypted and it tells me to pay to them. As I know I have a few options: Pay the ransom and hope the cybercriminals keep their word and decrypt the data. Try to remove the malware using available…

decryption ransomware

asked Jan 04 '22 at 11:35

George G.

312

1

vote

0 answers

How do I recover files on a Linux web server after an attack by Makop Ransomware?

My web server was running a critical web service for my company network and was attacked by the Makop Ransomware. The majority of the php files and the databases have all been encrypted. Is there a way to decrypt these files especially the database?…

data-recovery file-recovery ransomware

asked Dec 20 '21 at 12:47

Joshua Bisanda

11
2

1

vote

1 answer

Laptop PC stuck at startup, formatted, now data unrecoverable, looks encrypted

Someone asked me to recover data from a laptop computer (Sony Vaio), after a Windows reinstall (Windows 8) through the startup recovery procedure. Prior to that, the computer was malfunctioning : it was stuck on startup, at the login screen, never…

windows-8 data-recovery sony-vaio ransomware

asked Apr 01 '18 at 02:37

GabrielB

893

1

vote

1 answer

How to protect data on connected pendrive from Ransomware?

This question is specific to some measures that I have already taken with a pen drive as described below. I have a pendrive that’s always connected to my Windows PC. I run a script at logon that takes backup of my important data on that pendrive. To…

usb-flash-drive ransomware

asked Nov 17 '17 at 01:30

rajeev

1,984

Questions tagged [ransomware]