Use the Kaspersky RakhniDecryptor tool in case you files were encrypted by the following ransomware:
The Kaspersky RakhniDecryptor tool decrypts files that have been changed according to the following patterns:
Examples of some e-mail addresses used to spread malware:
Trojan-Ransom.Win32.Cryakl: email-<...>.ver-<...>.id-<...>.randomname-<...>.<randomextension>
CL 1.0.0.0
cryptolocker@aol.com
iizomer@aol.com
seven_Legion2@aol.com
oduvansh@aol.com
ivanivanov34@aol.com
trojanencoder@aol.com
load180@aol.com
moshiax@aol.com
vpupkin3@aol.com
watnik91@aol.com
1.0.0.0.u
cryptolocker@aol.com_graf1
cryptolocker@aol.com_mod
byaki_buki@aol.com_mod2
CL 1.2.0.0
CL 1.3.0.0
CL 1.3.1.0
byaki_buki@aol.com
byaki_buki@aol.com_grafdrkula@gmail.com
To learn more about technologies Kaspersky Lab uses for malware protection, go to this page.
Files will be decrypted.
File with CRYPT extension might be encrypted more than once. For example, if test.doc file was encrypted twice, the tool will decipher the first layer into the file test.1.doc.layerDecryptedKLR. In the tool performance report you will see: «Decryption success: disk:\path\test.doc_crypt -> dish:\path\test.1.doc.layerDecryptedKLR». You will need to decrypt this file once again. In case of successful decryption, the file will be saved under the original name test.doc.
For the sake of convenience and time saving, Kaspersky RakhniDecryptor supports the following command line parameters:
To resume password cracking from a certain value. The lowest value is 0.
To stop password cracking at a certain value. The highest value is 1 000 000.
To crack the password in a range between two values.
RakhniDecryptor.exe –start 123
RakhniDecryptor.exe –end 123
RakhniDecryptor.exe –start 100 –end 50000
If the utility did not help, send a request to technical support through My Kaspersky with a detailed description of the issue.
For instructions on using My Kaspersky, see Online Help.
In addition to antivirus protection, Kaspersky Internet Security provides protection of network connection, web camera, online payments, children from unwanted information, as well as the ability to block advertising banners, prevent data collection, search and install updates, delete unused applications.
Buy other Kaspersky applications
Please let us know how we can make this website more comfortable for you
Thank you for submitting your feedback. We will review your feedback shortly.
Your feedback will be used for content improvement purposes only. If you need assistance, please contact technical support.
Your suggestions will help improve this article.
