virus that renamed to .id-0668630339_bingo@opensourcemail.org

Hello, i need talk to virus d.

I have read, that your are a person, that can solve a problem with a virus, that encrypted my pc en few days ago. I'm from spain, I have a big problem, because a lot of importans files, now are encrypted. 

I read in a forum that if I'll send you some infected files, you can help me to solve my problem.

 

thanks.

Edited by Chris Cosgrove, 22 February 2016 - 08:26 AM.
Moved to 'General security'

It is believed these infections are part of a ransomware kit that different affiliates utilize with their own payment email addresses which explains all the "@" ransomwares which have been reported.

Kaspersky Lab has a utility called RakhniDecryptor that is able to brute force the decryption key for some of these <filename>.<extension>."@" and <filename>.<extension>.id-random number_"@"variants but not all of them. Instructions for using RakhniDecryptor can be found here.

Kaspersky Lab also has a RannohDecryptor utility for decrypting some other types of these <filename>"@".<random characters> and locked-<filename>.random letters."@" variants.

There are going discussions in these related topics where you can ask questions and seek further assistance. Other victims have been directed there to share information, experiences and suggestions.

• <extension>.<id-number>_av666@weekendwarrior55.com Ransomware Support Topic
• Crypto ransomware <extension>.<id-number>_fud@india.com

Rather than have everyone start individual topics, it would be best (and more manageable for staff) if you posted any questions, comments or requests for assistance in one of the above topic discussions. Doing that will also ensure you receive proper assistance from our crypto malware experts since they may not see this thread. To avoid unnecessary confusion...this topic is closed.

Thanks
The BC Staff