Questions tagged [ransomware]
A type of malicious software designed to block access to a computer system until a sum of money is paid.
47
questions
5
votes
2
answers
774
views
How to remove BUYUNLOCKCODE Ransomware [duplicate]
A ransomware appears to have been circulating for the past few weeks. It encrypts data files and creates a BUYUNLOCKCODE.txt ransom note in all directories where a file was encrypted.
This ...
5
votes
0
answers
2k
views
Is this a ransomware?
I just got this window on my main computer:
Apparently, it's from Windows. I checked, and the process EXE file is the original one (efsui.exe or something like that). However, I don't use EFS (I ...
3
votes
3
answers
3k
views
How to wipe a disk completely that has been encrypted by ransomware
Recently my HDD was encrypted by a ransomware attack (I have no idea which encryption method has been used) and as a result I cannot access the contents of my HDD (see how Disk 1 seems in the first ...
2
votes
1
answer
296
views
Can ransomware affect ejected external hard drive? [closed]
Can ransomware affect an external hard disk on Windows that has been ejected using "Safely remove" feature while keeping the drive plugged into my PC?
2
votes
1
answer
2k
views
Access Windows 10 Safe Mode from startup
I have an Asus machine running up-to-date Windows 10. With all the Ransomware panic going around ittakes me back to when I was victim of a type-3 Ransomware attack (lockout). The way I managed to ...
2
votes
1
answer
2k
views
How to recover files encrypted by norvas ramsomware
I just caught a ransomware that encrypted many of my files and I need to get them back. Now they all end in .NORVAS and I can't find a way to decrypt them back. I tried with data recovery pro, shadow ...
2
votes
0
answers
962
views
Allow rundll32.exe in Windows 10 ransomware protection settings?
When trying to import photos from my phone, Windows' ransomware protection (controlled folder access) blocked rundll32.exe from writing to my Pictures photo.
Would it be OK to put rundll32.exe on ...
2
votes
0
answers
148
views
Duplicate files with weird extensions – ransomware?
I'm a little afraid to get bashed since this is super non-specific but this is exactly my problem. I'm finding weird file duplicates on my computer – with the same name as the original file but an ...
1
vote
3
answers
2k
views
How do I check if files have been encrypted by Ransomware?
Is there any way to check if the current files (files of a computer/user/hard disk/NAS ) have been encrypted with ransomware by a third party?
Would it be possible to open all files according to their ...
1
vote
1
answer
174
views
Do ransomware decryption tool really work and what's proper way to fix it? [closed]
My laptop got infected with ransomware, files got encrypted and it tells me to pay to them.
As I know I have a few options:
Pay the ransom and hope the cybercriminals keep their word and
decrypt the ...
1
vote
1
answer
324
views
How to have an app be trusted by Windows to bypass the "Ransomeware protection"?
I have a Windows desktop software that needs to write new folder/files into the %USERPROFILE%\Documents\ folder.
There is a Windows option, under "Ransomware protection", that protects "...
1
vote
1
answer
128
views
Is situation (with GPG) possibly a malware attack?
I am taking care of an ubuntu server (22.04) and suddenly I was not able to access some files via FTP. I checked a few things and noticed a gpg root process consuming a lot of CPU. It kept restarting ...
1
vote
1
answer
230
views
How to protect data on connected pendrive from Ransomware?
This question is specific to some measures that I have already taken with a pen drive as described below. I have a pendrive that’s always connected to my Windows PC. I run a script at logon that takes ...
1
vote
1
answer
166
views
How does ransomware work? [closed]
If it's possible to get a full rundown on how ransomware usually works in encrypting files, that would be nice.
I know ransomware encrypts all files with AES-256 for speed, but where does RSA come in?...
1
vote
0
answers
134
views
How do I recover files on a Linux web server after an attack by Makop Ransomware?
My web server was running a critical web service for my company network and was attacked by the Makop Ransomware. The majority of the php files and the databases have all been encrypted. Is there a ...