There are several ransomware infections which utilize a random 6-7 character extension.CTB-Locker
(aka Critroni, Onion) and Maktub Locker
are the two most common ransomware infections which use these random 6-7 character extension for files.
CTB-Locker will leave files (ransom notes) with names like DecryptAllFiles.txt and DecryptAllFiles_<user name>.txt that contains ransom instructions but the newer variants do not always leave a ransom note
if the malware fails to change the background like it typically does. An AllFilesAreLocked_<user name>.bmp image file may be left in the My Documents folder which contains further instructions on how to pay the ransom. Maktub Locker displays a ransom note named _DECRYPT_INFO_[random].html.
Based on infection rates we see, it is most likely you are dealing with CTB-Locker. There is an ongoing discussion in this topic where you can ask questions and seek further assistance but as noted above there is no solution to fix your encrypted files.
Rather than have everyone with individual topics, it would be best (and more manageable for staff) if you posted any more questions, comments or requests for assistance in the above support topic discussion...it includes experiences by experts, a variety of IT consultants, end users and company reps who have been affected by ransomware infections. Doing that will also ensure you receive proper assistance from our crypto malware experts since they may not see this thread. To avoid unnecessary confusion, this topic is closed.
The BC Staff