F5F Stay Refreshed Software Operating Systems I contracted a virus and my files became infected with Gandcrab.

I contracted a virus and my files became infected with Gandcrab.

I contracted a virus and my files became infected with Gandcrab.

Pages (2): 1 2 Next
H
HBROS1245
Member
Find
179
07-26-2019, 05:33 AM
#1
Last week I attempted to download a patch for the new 2019 Creative Cloud versions because the original version was removed. I accidentally infected my system with a virus, wiped the hard drive on my PC, and reinstalled Windows immediately. I left several external drives connected without realizing it. The following day I connected one of them to my Mac for photo editing and found that Finder showed half of my files were infected by Gandcrab version 5.0.4. I returned home and discovered the 4 terabyte external drive I had used was partially infected as well. I’m considering using a Gandcrab decrypter from Bitdefender once it’s released. My concerns are whether there are other methods that could help recover my files, and whether it’s feasible to decrypt them after completely erasing the drives on both PC and Mac. Additionally, if I reset everything again after getting the decrypted files, would those computers be fully virus-free and would the external drives remain safe to use?
Reply
Reply
H
HBROS1245
07-26-2019, 05:33 AM #1

Last week I attempted to download a patch for the new 2019 Creative Cloud versions because the original version was removed. I accidentally infected my system with a virus, wiped the hard drive on my PC, and reinstalled Windows immediately. I left several external drives connected without realizing it. The following day I connected one of them to my Mac for photo editing and found that Finder showed half of my files were infected by Gandcrab version 5.0.4. I returned home and discovered the 4 terabyte external drive I had used was partially infected as well. I’m considering using a Gandcrab decrypter from Bitdefender once it’s released. My concerns are whether there are other methods that could help recover my files, and whether it’s feasible to decrypt them after completely erasing the drives on both PC and Mac. Additionally, if I reset everything again after getting the decrypted files, would those computers be fully virus-free and would the external drives remain safe to use?

Reply
Reply
S
Summerbirth
Member
Find
142
07-26-2019, 07:23 AM
#2
Take a walk on the beam.
Reply
Reply
S
Summerbirth
07-26-2019, 07:23 AM #2

Take a walk on the beam.

Reply
Reply
M
MegaDisco
Senior Member
Find
352
07-26-2019, 01:31 PM
#3
It seems like you're suggesting that software costs should be considered.
Reply
Reply
M
MegaDisco
07-26-2019, 01:31 PM #3

It seems like you're suggesting that software costs should be considered.

Reply
Reply
A
Alicante38
Junior Member
Find
46
07-26-2019, 04:32 PM
#4
I wouldn't trust your PC to be safe if you decrypt them, once they are decrypted, I'd defenitly do a virus scanner sweep and then reinstall your OS again. Decryption is pretty secure, so there is not much you can do to crack it. There are some decrypter tools that just try a bunch of passcodes, but I don't know what they are called.(Google it, but ask here before trying them, incase of Viruses)
Reply
Reply
A
Alicante38
07-26-2019, 04:32 PM #4

I wouldn't trust your PC to be safe if you decrypt them, once they are decrypted, I'd defenitly do a virus scanner sweep and then reinstall your OS again. Decryption is pretty secure, so there is not much you can do to crack it. There are some decrypter tools that just try a bunch of passcodes, but I don't know what they are called.(Google it, but ask here before trying them, incase of Viruses)

Reply
Reply
P
perrinoid
Member
Find
137
07-28-2019, 10:54 AM
#5
Shut down the system and let it resolve itself using solutions like Bitdefender. Grandcrab can trigger itself with less effective programs.
Reply
Reply
P
perrinoid
07-28-2019, 10:54 AM #5

Shut down the system and let it resolve itself using solutions like Bitdefender. Grandcrab can trigger itself with less effective programs.

Reply
Reply
A
ADIR_4444
Senior Member
Find
417
07-28-2019, 11:06 AM
#6
You might not be able to unlock your files without the right tool. You could keep them secured and hope Bitdefender adds a decryption feature later, or you could abandon the information, restore unprotected files, and wipe the drive.
Reply
Reply
A
ADIR_4444
07-28-2019, 11:06 AM #6

You might not be able to unlock your files without the right tool. You could keep them secured and hope Bitdefender adds a decryption feature later, or you could abandon the information, restore unprotected files, and wipe the drive.

Reply
Reply
Z
ZProGaming
Junior Member
Find
5
07-28-2019, 01:06 PM
#7
Don't try to bypass copyright protections without understanding how. Searching for 'cracks' usually brings you to unsafe or fake content. The proper way is to purchase the official version, as legitimate copies are secure and reliable. Free alternatives are unlikely to work and could damage your system.
Reply
Reply
Z
ZProGaming
07-28-2019, 01:06 PM #7

Don't try to bypass copyright protections without understanding how. Searching for 'cracks' usually brings you to unsafe or fake content. The proper way is to purchase the official version, as legitimate copies are secure and reliable. Free alternatives are unlikely to work and could damage your system.

Reply
Reply
X
XDDanyXD
Junior Member
Find
40
08-05-2019, 01:12 AM
#8
Yup I'm in high school and creative cloud is a good chunk of money for me but I'm going to find a way to pay for it and whenever I need to pirate software in the future I'm going to use a VM or an old machine without any drives plugged in.
Reply
Reply
X
XDDanyXD
08-05-2019, 01:12 AM #8

Yup I'm in high school and creative cloud is a good chunk of money for me but I'm going to find a way to pay for it and whenever I need to pirate software in the future I'm going to use a VM or an old machine without any drives plugged in.

Reply
Reply
T
Tounohoshi
Member
Find
53
08-05-2019, 02:55 AM
#9
I’m not aiming to come across as rude, but I’d like to review the guidelines below. They should help you enjoy these forums more. Now, about your other issue—there’s already a method for decrypting those files. Here’s the link: https://labs.bitdefender.com/2018/10/gan...CqEALw_wcB.

Keep in mind you’ll need a solid plan to scan the drives and eliminate any remnants of the ransomware. In reality, it seems you might not have the documentation left, so you’re likely in a good position. If that’s the case, you should consider wiping the drives or storing them safely until a fix is available.
Reply
Reply
T
Tounohoshi
08-05-2019, 02:55 AM #9

I’m not aiming to come across as rude, but I’d like to review the guidelines below. They should help you enjoy these forums more. Now, about your other issue—there’s already a method for decrypting those files. Here’s the link: https://labs.bitdefender.com/2018/10/gan...CqEALw_wcB.

Keep in mind you’ll need a solid plan to scan the drives and eliminate any remnants of the ransomware. In reality, it seems you might not have the documentation left, so you’re likely in a good position. If that’s the case, you should consider wiping the drives or storing them safely until a fix is available.

Reply
Reply
C
CaptanJim
Member
Find
160
08-06-2019, 04:42 AM
#10
Sounds fine. To be clear, the external drives are the only ones affected by Gandcrab since I first opened them, and there are around a few hundred copies of the note on each.
Reply
Reply
C
CaptanJim
08-06-2019, 04:42 AM #10

Sounds fine. To be clear, the external drives are the only ones affected by Gandcrab since I first opened them, and there are around a few hundred copies of the note on each.

Reply
Reply
Pages (2): 1 2 Next