How To Remove Polezei Virus on an Encrypted Drive

hmig89 said:
This is going to sound completely crazy

If you turn on the clients computer let it go into 7 and let it sit there, then leave the power cable from the clients computer in but swap the sata cable from the clients computer and then slave the drive onto your computer (still leave their power cable in) and see if you do safe mode or live cd or flash drive removal.

Of course the above assumes that the hard drive will not go back into a 'locked' state.

Now I know I may get some people moaning or having a go because it dangerous or totally stupid and in one way it is and there are no guarantees. and I wont blame you for having a go at me.

I did this a few times before with IDE drives although with that we used the 'pause/break button at POST and had another working pc and was able to access locked drives this way, long shot and risky but you'll never know maybe just worth a try.
Click to expand...
Well... I won't have a go at you.
I would never attempt something that I consider risky like this without a full image backup which did not run successfully (see earlier in the thread).
 
ComputerRepairTech said:
what what? is that perhaps something that works on hard drives with built in hardware encryption?
Click to expand...

Possibly, it was a lot of years ago, and it worked on IDE drives. I suppose It wont work on SSD's as they differ.

Assuming a simple theory of when ProtectDrive comes into action? Is it on boot up? I know McAffee endpoint asks for a password before the windows password which then takes the drive off the encrypted state. IF the drive can be slaved keeping it powered to new PC it could be possibly, although suspect the encryption software maybe to smart not to come into play and detect the change.
 
hmig89 said:
Possibly, it was a lot of years ago, and it worked on IDE drives. I suppose It wont work on SSD's as they differ.

Assuming a simple theory of when ProtectDrive comes into action? Is it on boot up? I know McAffee endpoint asks for a password before the windows password which then takes the drive off the encrypted state. IF the drive can be slaved keeping it powered to new PC it could be possibly, although suspect the encryption software maybe to smart not to come into play and detect the change.
Click to expand...
Yes, the user enters a username and password before the Windows splash screen.
 
You must log in or register to reply here.

Similar threads

Velvis
Dell XPS CPU Fail Code & SSD Question
Replies
1
Views
268
Markverhyden
Markverhyden
YeOldeStonecat
Gaming rig...help with client computer with vid card issues.
2
Replies
25
Views
2K
Rosco
Rosco
thecomputerguy
What is the correct process to transplant an encrypted drive to an identical system?
Replies
17
Views
1K
Sky-Knight
Sky-Knight
HCHTech
Slow opening times for files on a network drive
Replies
10
Views
782
trevm999
trevm999
callthatgirl
How to Import and Export PST into New Outlook
Replies
0
Views
73
callthatgirl
callthatgirl
Back
Top