We got infected with ransomware back in June that changed all of the files to the following:
After scouring this site and others, we could not find any existing decryption tool and it totally wiped all of our backups - we now have cloud backup going forward to prevent this.
We paid the ransom and the criminal sent us the decryption tool which we ran but although it seemed to run for a while, nothing was decrypted.
When we told this to the criminal he said it should work and asked us to send a sample file for him to test on - I sent a generic JPG that comes with Windows and since then he has ignored our emails.
At first I thought that he just was playing with us but why would he ask for the sample file then? Just to continue playing with us?
If I post the decryption tool he gave us would anyone be able to help us?
The customer is a not for profit school that we provide IT support for free as a kindness to them.
Any help would be much appreciated.