I have windows 10 installed in my PC and 2 days ago it was affected by Ransomware which encrypt my data files with extension ‘firstname.lastname@example.org’. A html file named ‘HOWTODECRYPTFILES’ shows it’s a CryptON encryption and obviously need to pay through Tor browser to get my files back.
I have three partitions C, D, E in my desktop hard-drive. I have formatted C: drive (my system drive) with my OS to stop the infection. But all the files in D: and E: remain encrypted.
I have tried the process explained in ‘nomoreransom.org’. It showed my PC attacked by ‘cryptXXX v1’ and can be decrypted by ‘Kaspersky’ or ‘Trend Micro’ decrypter. I have also tried emsisoft decrypter for cryptON. I have some backup files in my Onedrive so I provide them for reference as the decryption software asked. But failed to get any results
Even Recuva deep scan failed to recover data. and ID Ransomware link:
Please Help. Ransom note given below