Jump to content
Posted 29 December 2015 - 05:37 PM
Posted 29 December 2015 - 09:12 PM
HELP_DECRYPT.TXT, HELP_YOUR_FILES.TXT, HELP_TO_DECRYPT_YOUR_FILES.txt HELP_RESTORE_FILES.txt, HELP_TO_SAVE_FILES.txt, RECOVERY_KEY.txt, DecryptAllFiles.txt DECRYPT_INSTRUCTIONS.TXT, INSTRUCCIONES_DESCIFRADO.TXT, How_To_Recover_Files.txt DECRYPT_INSTRUCTION.TXT, HOW_TO_DECRYPT_FILES.TXT, ReadDecryptFilesHere.txt, About_Files.txt, FILESAREGONE.TXT, IHAVEYOURSECRET.KEY, HELLOTHERE.TXT, SECRETIDHERE.KEY, READTHISNOW!!!.TXT, SECRET.KEY, HELPDECYPRT_YOUR_FILES.HTML, Help_Decrypt.txt YOUR_FILES.HTML, DecryptAllFiles_<user name>.txt, encryptor_raas_readme_liesmich.txt DecryptAllFiles_.txt, RECOVERY_FILES.txt, help_decrypt_your_files.html Howto_RESTORE_FILES_.txt, RECOVERY_FILE_.txt, restore_files_.txt, _how_recover_.txt howto_recover_file_.txt, how_recover+****.txt, recover_file_*****.txt Note: The (*) represents random characters which some ransom notes names may include.Once you have identified which particular ransomware you are dealing with, I can direct you to the appropriate discussion topic for further assistance.
Posted 30 December 2015 - 01:49 AM
The file name was changed from WP_20151023_003.jpg to WP_20151023_003.firstname.lastname@example.org
There are not any adding files about ransom info. The only things is a desktop background image
Edited by Thoro, 30 December 2015 - 03:30 AM.
Posted 30 December 2015 - 03:11 AM
The same virus encrypted embedded my files about two weeks ago . I tried the tool rakhnidecryptor several times but got neither could find the key, it must be a new variant that has changed encryption.
I would be grateful for any help that you can give us.
Thank you very much for your attention.
Posted 30 December 2015 - 07:53 AM
0 members, 0 guests, 0 anonymous users