Spyware, Viruses, & Security forum

Question

Decrypting decrypthelp@qq.com

My computer was inflicted with this virus. I see every of the file has been encrypted and its name changed to something
email-decrypthelp@qq.com_.....

It is huge mess and I dont have much needed data on that (I store everything on NAS at home and gladly fuckers has not been able to touch it) but there is no HYPERV HDD file on which I stored 1-2 years of project involving linux kernel development. I'd rather recover it.

Quick google search shows some sites offering help and some offering wipe-a-new but I am not sure which one is reliable. Some site points that the perpetrators promise to help is a hoax. Another site says, remedy is not available yet. Currently disk is in cold storage.

Any solution available? Thanks!

Answer This Ask For Clarification
Discussion is locked
You are posting a reply to: Decrypting decrypthelp@qq.com
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: Decrypting decrypthelp@qq.com
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.

All Answers

Collapse -
Answer
cont-d

In reply to: Decrypting decrypthelp@qq.com

Collapse -
While I would not need the duplicator

In reply to: cont-d

Since there are many ways to duplicate a drive without, I think some folk would like that method.

As to the ransomware, be sure to ask in Bleepingcomputer.com as well.
My answer is we only lose what we don't backup. Most of what folk need to backup fits on the usual 1TB USB HDD which is fairly cheap today. Far cheaper than any data recovery house charge.

Collapse -
Answer
Anything Important Here, We Backup At Least Monthly

In reply to: Decrypting decrypthelp@qq.com

As such, whether it's ransomware or a failed hard drive, we simply use the System Image backup we made and any other current backed up files and reinstall everything. Our concern is the probability of other malware being on the computer if the user already "allowed" one type to install itself.

Hope this helps.

Grif

Collapse -
Answer
Data Recovery Pro Maybe?

In reply to: Decrypting decrypthelp@qq.com

This is a variant of CrySis/Dharma that is not a joke and unfortunately not decryptable.
I guess the best solution for you is to get rid of the ransomware, then try some of the file restoring tools you can find online.

ShadowExplorer perhaps could work too? At least try.

Popular Forums

icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

REVIEW

Sublime suburban chariot

High on style and technology, the 2019 Volvo XC90 is an incredibly satisfying everyday crossover.