<\/strong>QH Ransom Decryptor Tool<\/a><\/p>\n
As of now, the decryption tool works on files affected by the below-listed ransomware families.<\/p>\n
1. Troldesh Ransomware [.xtbl]
2. Crysis Ransomware [.CrySiS]
3. Cryptxxx Ransomware [.crypt]
4. Ninja Ransomware [@aol.com$.777]
5. Apocalypse Ransomware [.encrypted]
6. Nemucod Ransomware [.crypted]
7. ODC Ransomware [.odcodc]
8. LeChiffre Ransomware [.LeChiffre]<\/p>\n
Note:
A Crysis\/XTBL encryption can be identified from the below pattern of encrypted file extension:<\/p>\n
- \n
- File name.<extension>.<id-number>.<email>.xtbl\/.CrySiS)<\/li>\n<\/ul>\n
Example – \u201cavailable.txt.id-340D4C04.{green_ray@india.com}.xtbl”<\/p>\n
Instructions to use the QH-Ransom-Decryptor<\/u><\/strong>:<\/u><\/strong><\/p>\n
- \n
- Download the QH-Ransom_Decryptor_v1.0.zip<\/strong> from the link shared earlier and extract it in the system having the encrypted files.<\/li>\n<\/ol>\n
- \n
- Right click on the \u201cQH-Ransom_Decryptor_v1.0.exe\u201d file and Run it as ‘Administrator’ to view the Decryption Window.<\/li>\n<\/ol>\n
- \n
- Press Y<\/strong> to start the scan. The tool will automatically scan the entire system for supported encrypted files. When an encrypted file is found, the tool will decrypt the file in its respective folder while keeping a copy of the encrypted file at the same time.<\/li>\n<\/ol>\n
![\"decryption-tool-for-crysis-ransomware\"](\"http:\/\/blogs_admin.quickheal.com\/wp-content\/uploads\/2016\/12\/Decryption-Tool-for-CrySiS-Ransomware.jpg\")
<\/p>\nFig1. Decrypted files will be present in the same folder along with their encrypted copies.<\/p>\n<\/div>\n
- \n
- After the scanning is complete, the decryption tool will show the final status displaying the number of encrypted files found and how many were successfully decrypted. The detailed information about the decryption status of each file can be obtained from the \u2018Decryption.log\u2019 generated in the same folder of the tool.<\/li>\n<\/ol>\n
- \n
- Thereafter, you can open the decrypted files and verify if they are accessible\/readable again.<\/li>\n<\/ol>\n
If you come across any difficulty in using the decryption tool, kindly give us a call on 1800-121-7377<\/strong> or visit our Support Center<\/a> for further assistance.<\/p>\n
The post Decryption Tool for CrySiS\/XTBL Ransomware<\/a> appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice<\/a>.<\/p>\n
http:\/\/blogs.quickheal.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"
The decryption of CrySiS\/XTBL Ransomware is now possible thanks to the recent release of its master decryption keys needed to recover the files encrypted by the ransomware. While we couldn\u2019t guess the apparent reason behind the release, we decided to use this opportunity to help those who were affected by…<\/p>\n
The post Decryption Tool for CrySiS\/XTBL Ransomware<\/a> appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10459,10378],"tags":[10486,3765,10487],"class_list":["post-5860","post","type-post","status-publish","format-standard","hentry","category-quickheal","category-security","tag-decryption-tool","tag-ransomware","tag-ransomware-decryption"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/5860","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=5860"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/5860\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=5860"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=5860"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=5860"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
- Thereafter, you can open the decrypted files and verify if they are accessible\/readable again.<\/li>\n<\/ol>\n
- After the scanning is complete, the decryption tool will show the final status displaying the number of encrypted files found and how many were successfully decrypted. The detailed information about the decryption status of each file can be obtained from the \u2018Decryption.log\u2019 generated in the same folder of the tool.<\/li>\n<\/ol>\n
- Press Y<\/strong> to start the scan. The tool will automatically scan the entire system for supported encrypted files. When an encrypted file is found, the tool will decrypt the file in its respective folder while keeping a copy of the encrypted file at the same time.<\/li>\n<\/ol>\n
- Right click on the \u201cQH-Ransom_Decryptor_v1.0.exe\u201d file and Run it as ‘Administrator’ to view the Decryption Window.<\/li>\n<\/ol>\n
- Download the QH-Ransom_Decryptor_v1.0.zip<\/strong> from the link shared earlier and extract it in the system having the encrypted files.<\/li>\n<\/ol>\n