Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

infected file?


  • This topic is locked This topic is locked
5 replies to this topic

#1 szuja3

szuja3

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:20 AM

Posted 13 August 2016 - 06:50 PM

Hello all I need help I have a problem with files docx, pdf, jpeg added to them additional descriptions in the form of " CIMG5879.JPG.trfzfhl " I searched but did not find programs , sent a sample to the bleeping and that's it . sorry for the language he writes google translator . erase " trfzfhl " no help file is not readable.

 

print screen


Edited by szuja3, 13 August 2016 - 06:51 PM.


BC AdBot (Login to Remove)

 


#2 Demonslay335

Demonslay335

    Ransomware Hunter


  • Security Colleague
  • 3,472 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:06:20 PM

Posted 13 August 2016 - 07:08 PM

Judging by the random 7-character extension, you were most likely hit by CTB-Locker. You can visit the website in my signature (ID Ransomware), and upload a ransom note and encrypted file to identify the ransomware. It will give you more information based on what it detects.

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic]

ransomnotecleaner-25.png RansomNoteCleaner - Remove Ransom Notes Left Behind [Support Topic]

cryptosearch-25.pngCryptoSearch - Find Files Encrypted by Ransomware [Support Topic]

If I have helped you and you wish to support my ransomware fighting, you may support me here.


#3 szuja3

szuja3
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:20 AM

Posted 14 August 2016 - 05:04 AM

Yes that is CTB-Blocker now i must find a good software to decrypt this sh..t



#4 Demonslay335

Demonslay335

    Ransomware Hunter


  • Security Colleague
  • 3,472 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:06:20 PM

Posted 14 August 2016 - 08:54 AM

There is nothing to decrypt the data. You can only restore from backups, pay the ransom, or hold onto the data and hope for a solution in the future. See the support topic for more information.

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic]

ransomnotecleaner-25.png RansomNoteCleaner - Remove Ransom Notes Left Behind [Support Topic]

cryptosearch-25.pngCryptoSearch - Find Files Encrypted by Ransomware [Support Topic]

If I have helped you and you wish to support my ransomware fighting, you may support me here.


#5 szuja3

szuja3
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:20 AM

Posted 14 August 2016 - 12:18 PM

Comforted me :( let's wait and check information . Thanks



#6 xXToffeeXx

xXToffeeXx

    Bleepin' Polar Bear


  • Malware Response Instructor
  • 6,054 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Arctic Circle
  • Local time:12:20 AM

Posted 15 August 2016 - 12:22 PM

There is an ongoing discussion in this topic where you can ask questions and seek further assistance but as noted above there is no solution to fix your encrypted files.

When or if a solution is found, that information will be provided in this support topic and you will receive notification if subscribed to it. In addition, a news article most likely will be posted on the BleepingComputer front page.

Rather than have everyone with individual topics, it would be best (and more manageable for staff) if you posted any more questions, comments or requests for assistance in the above support topic discussion...it includes experiences by experts, a variety of IT consultants, end users and company reps who have been affected by ransomware infections. To avoid unnecessary confusion, this topic is closed.

Thanks
The BC Staff 


~If I am helping you and you have not had a reply from me in two days, please send me a PM~

 

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic] - If we have helped you out and you want to support what we do, you can do so here

 

 ~Twitter~ | ~Malware Analyst at Emsisoft~





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users