There are several ransomware infections that do not append an obvious extension
to the end of encrypted filenames. The best way to identify the different ransomwares that do not append an extension is the ransom note (including it's name), the malware file itself or at least information related to the email address used by the cyber-criminals. Without any of that other information it is difficult to determine what you are dealing with.
If you can find the malicious executable that you suspect was involved in causing the infection, it can be submitted here
) with a link to this topic. There is a "Link to topic where this file was requested
" box under the Browse... button. Doing that will be helpful with analyzing and investigating by our crypto malware experts.
These are some common folder variable
locations malicious executables and .dlls hide:
- %SystemDrive%\ (C:\)
- %SystemRoot%\ (C:\Windows, %WinDir%\)
Check the history logs and quarantine folders for your anti-virus and other security scanning tools to see if they found and removed any malware possibly related to the ransomare.