Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


Cryptolocker Fix?

  • This topic is locked This topic is locked
2 replies to this topic

#1 ImBackHerobrine


  • Members
  • 58 posts
  • Gender:Male
  • Location:Your Mother's Backyard.
  • Local time:10:56 PM

Posted 27 September 2014 - 04:58 PM

Hi, I've been wanting to get CryptoLocker to work. Is there a way to get it to work?

I want to see it, but it wont run for some reason.

My files are still here, not encrypted, but it's running.

Any fixes for this?

Edited by hamluis, 27 September 2014 - 05:01 PM.
Moved from Win 7 to AV/AM Software - Hamluis.

BC AdBot (Login to Remove)


#2 quietman7


    Bleepin' Janitor

  • Global Moderator
  • 51,769 posts
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:56 PM

Posted 27 September 2014 - 05:30 PM

A repository of all current knowledge regarding Cryptolocker is provided by Grinler (aka Lawrence Abrams), in this tutorial: CryptoLocker Ransomware Information Guide and FAQ

Reading that Guide will help you understand what CryptoLocker Ransomware does and provide information for how to deal with it...including prevention, and possibly recover your files. Please note that the guide was updated 08/06/14 to include the following information.

FireEye and Fox-IT have released a method of possibly retrieving your private decryption key and a decrypter to use to decrypt your files...To try and retrieve your key, please visit their site http://www.decryptcryptolocker.com/ and enter your email and upload a copy of one of your CryptoLocker encrypted files. The service will then try attempt to decrypt that file using all of the known encryption keys. If they are able to successfully decrypt your file, they will then email you the decryption key with instructions on how to use it.

* FireEye and Fox-IT have partnered to provide free keys designed to unlock systems infected by CryptoLocker
* CryptoUnlocker GUI
* CryptoUnlocker has been updated to utilize the CryptoLocker Database in the registry

There is also a lengthy ongoing discussion in this topic: Cryptolocker Hijack Program.

I want to make something very clear to any users just now getting to this thread because they were infected by "CryptoLocker"! The real Cryptolocker has been down, and has not returned for awhile now! This means that what ever infection you have, is a new one / Fake one! Before EVER considering paying for the ransom you should always make it first priority to ask on the thread first or PM any member to ask for help! Things that will help us identify your infection is Screenshots of any windows, The Ransom Note, and the EXE if you have it. I cannot stress this enough, you may not have to pay a DIME to get your files back if you take a few moments to ask before paying...

Nathan (DecrypterFixer), Security Colleague Post #3223

Since this infection is so widespread, rather than have everyone start individual topics, it would be best (and more manageable for staff) if you posted any questions, comments or requests for assistance in that topic discussion.

The BC Staff
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 Crazy Cat

Crazy Cat

  • Members
  • 808 posts
  • Gender:Male
  • Location:Lunatic Asylum
  • Local time:03:56 PM

Posted 27 September 2014 - 08:34 PM

Hi, I've been wanting to get CryptoLocker to work. Is there a way to get it to work?
I want to see it, but it wont run for some reason.
My files are still here, not encrypted, but it's running.
Any fixes for this?

The original "CryptoLocker" requires contact with the Command-&-Control server to get the public RSA key. There is a workaround to this, but I won't post it for obvious reasons. :crazy:

Edited by Crazy Cat, 27 September 2014 - 08:41 PM.


Two things are infinite: the universe and human stupidity; and I'm not sure about the universe. ― Albert Einstein ― Insanity is doing the same thing, over and over again, but expecting different results.



0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users