A repository of all current knowledge regarding Cryptolocker
is provided by Grinler
(aka Lawrence Abrams
), in this tutorial: CryptoLocker Ransomware Information Guide and FAQ
Reading that Guide will help you understand what CryptoLocker Ransomware does and provide information for how to deal with it...including prevention, and possibly recover your files. Please note that the guide was updated 08/06/14
to include the following information.
FireEye and Fox-IT have released a method of possibly retrieving your private decryption key and a decrypter to use to decrypt your files...To try and retrieve your key, please visit their site http://www.decryptcryptolocker.com/ and enter your email and upload a copy of one of your CryptoLocker encrypted files. The service will then try attempt to decrypt that file using all of the known encryption keys. If they are able to successfully decrypt your file, they will then email you the decryption key with instructions on how to use it.
* FireEye and Fox-IT have partnered to provide free keys designed to unlock systems infected by CryptoLocker
* CryptoUnlocker GUI
* CryptoUnlocker has been updated to utilize the CryptoLocker Database in the registry
There is also a lengthy ongoing discussion in this topic: Cryptolocker Hijack Program
Nathan (DecrypterFixer), Security Colleague Post #3223
I want to make something very clear to any users just now getting to this thread because they were infected by "CryptoLocker"! The real Cryptolocker has been down, and has not returned for awhile now! This means that what ever infection you have, is a new one / Fake one! Before EVER considering paying for the ransom you should always make it first priority to ask on the thread first or PM any member to ask for help! Things that will help us identify your infection is Screenshots of any windows, The Ransom Note, and the EXE if you have it. I cannot stress this enough, you may not have to pay a DIME to get your files back if you take a few moments to ask before paying...
Since this infection is so widespread, rather than have everyone start individual topics, it would be best (and more manageable for staff) if you posted any questions, comments or requests for assistance in that topic discussion.
The BC Staff