I am hoping someone can help me out here, as most of the other sites out there keep pointing reference to this site. I am not 100% how we got this infection, but there was a file running "decrpytfiles.exe" that I was able to stop/delete before it actually started to create a ton of issues. But now my issue is that all the files are showing as a RSA-4096 file (with a .RSA-4096 extension). I went through the TelsaDecoder docs, but since my files are still in this form, not sure really what to do here. If anyone can please help, that would be awesome and save the day for me here.