I was just hit with Cerber Ransomware this morning, saw Gabriel Mar’s comments on Quora that landed me on this website. Would be nice if any help could be found here.
I was infected with Cerber Ransomware
Umer Farooq, | Cerber virus |
Ask a question
Community Answers
Your opinion regarding I was infected with Cerber Ransomware
You must be logged in to post a comment.
We are sorry that you had to experience Cerber virus attack. Fortunately, you were directed to the right place. We have prepared an overview of Cerber, its features and how to eliminate it from the computer. Before starting the elimination process, we highly recommend reading it here.
We want to stress out that the first task what you have to do is to remove ransomware from the computer without thinking about encrypted files. Do not try to eliminate the virus from the computer manually because you damage the system even more. You have to perform virus elimination using professional malware removal tools. We recommend installing FortectIntego, SpyHunter 5Combo Cleaner or Malwarebytes. After installation, update your chosen software and run a full system scan. Though, we have to warn that Cerber ransomware may prevent you from installing, updating and scanning security tools. In this case, you should follow the instructions in the previously mentioned article. The guidelines will help you to reboot the computer to the Safe Mode with networking which may be necessary for starting the automatic removal.
After ransomware removal, you can restore encrypted files from data backups. Hopefully, you have at least some of your files backed up! If not, try additional data recovery methods presented here. Sadly, there are no free decryption tools created yet. However, it is not a reason to pay the ransom for the cyber criminals! Finally, you can always backup encrypted files and wait for the release of the decryption tool.
Sincerely,
2-spyware team
- OpenSans_Regular.tff
These aren't exactly the files that I uploaded myself but simply did a Google search for the filename of, 'OpenSans_Regular.tff' and came across this. I just finished watching a movie and saw some files being changed and some of the encrypted files in one of the drive when it hit me, so I quickly opened Task Manager and closed the task that was running under the same name of that font, font wasn't exactly a valid one but just to appear as one, I know this because I tried to install it manually and it'd give me an invalid option. It was my mistake to run a .bat file that came with this eBook to install fonts, I went ahead in a hurry against my better judgement and now I have oodles of data that's on my drive offline which wasn't protected by dropbox cloud, sadly.
I also did a computer restore to yesterday, I was hit with this about 9hrs ago as of writing this, therefore chances of that ransomware existing on the system are null, I also removed that ransomware font file from %appdata% and removed the folders created in %temp% today before doing a restore as well, but I will still go ahead and run a full malware and virus scan on my system.
I would not pay the ransom not just because of it being unethical, but also that there are no guarantees that my files will be back with me safely for obvious reasons. Now the last part is all about backing up the encrypted file and waiting for the release of some decryption tool for this, by any chance can you give me an ETA how long usually does it take for these to happen? Just so I know where to keep the wanted data backed up accordingly on many of my external storage.
Thank you.