I'm working on a computer for a client with CryptoWall. I'm aware there's no hope at all for Brute Force decryption. I may try Shadow Copy solutions and some others, but I was wondering if I could find an intact file that's "clean" and the same file encrypted, if there's a utility to compare and generate the key from that? Or is this a waste of time also?
The virus itself is already gone, but the files are still locked of course.