I got attacked, How to remove the ransomware WannaCry?

By Shekhar Sahu on 17 May 2017 8:12 PM

, , , , ,

WannaCry ransomware has been giving nightmares to many of us now. If you got hit by it and lost the access to your data, chances are there that you didn't take the preventive measures. If the data is of the utmost value to you, I may understand your pain. My external HDD got corrupt two years ago. I had lost all my photographs, some of important client's. I approached the data recovery center in my city. They charged me over USD1000  for the recovery. Hell! it was a nightmare.

How to remove the ransomware WannaCry?

4. If you have been attacked by WannaCry and the device is connected to the internet.  the first thing you should do is disconnect from any network to avoid further spreading of the virus. 

3. If you have the data backups in the cloud or another storage medium, the best thing to do is clean format your system and restore the data from the backups.

2. If the data is of high importance to you or your business. Paying the ransom would be the best option for you or your firm right now. But I would not advise you to do so, because there is no guaranty that you will get your files back after meeting their demands.

1. Use a decryption tool designed for the ransomware. 
As of now, there isn't any decryption method or decryptor available for WannaCry ransomware. Point to note is they will be available soon and we will notify you. 

There have been different decryption tool available for the previous ransomware like 

Locky Ransomware [.Locky], Troldesh Ransomware [.xtbl], Crysis Ransomware [.CrySiS], Cryptxxx Ransomware [.crypt], Ninja Ransomware [@aol.com$.777],Opentoyou Ransomware [.-opentoyou@india.com], Globe3 Ransomware [.globe & .happydayzz], Troldesh Ransomware [.dharma]  Apocalypse Ransomware [.encrypted], Nemucod Ransomware [.crypted], ODC Ransomware [.odcodc], LeChiffre Ransomware [.LeChiffre] Globe1 Ransomware [.hnyear], Globe2 Ransomware [.blt], Globe3 Ransomware [.decrypt2017], DeriaLock Ransomware [.deria] etc.

But you need to be cautious before trusting any ransomware decryptor because many fake tools are circulating on the internet right now. Hackers are taking the best advantage of the situation.


One initiative is NO MORE RANSOM by Kaspersky, Intel Security, the National High Tech Crime Unit of the Netherlands’ police and Europol’s European Cybercrime Centre. 
The goal of the initiative is to educate people about prevention of ransomware attacks and help them unlock their files without paying a ransom to the hacker groups.

Related Posts

0 comments for this post