One of our computer has been infected by a ransom-ware and it has encrypted some files on desktop and changed the infected files to .encrypted extension. Looking at the microsoft security essential logs, it says it was the infected by
No ransom note was found and no desktop was locked with message. Have already scanned the computer with MBAM, Hitman Pro and nothing was detected.
I have attached the screenshot of the email from which the infection likely
originated and the link inside the email. I have attached screenshot of the quarantine logs from microsoft security essential as well.
I have submitted a file via this link http://www.bleepingcomputer.com/submit-malware.php?channel=3 under the topic title Ransom:Win32/Teerac.B!bit encrypted files changed to .encrypted extension.
I had contacted Dr. web decryption service and submitted some files and they said it can be decrypted for a fee of 150 EUR as i don't have a product with them.
I tried some of the decryption tools like TorrentUnlocker, decrypt_apocalypse,RannohDecryptor but have no success yet.
Edited by roshanrbb, 11 July 2016 - 06:57 PM.