We have run; malwarebytes, NPE.exe, Kaspersky security scan, and trojan remover 6.9.4. Now I need help decrypting the files it added the above name in the subject of this post. Looks like most files it hit were renamed with the extension like the one in the brackets. Any ideas?
I was infected by this Ransomwere on November (First Version) . If ypu have any news about the decrypter let me now.
I was hit by the version named firstname.lastname@example.org and the exe was aamanda.exe. I cannot afford the 7BTC to get the decryption so I am holding files for analysis to help get this solved.
so to finish my story after paying bitcoin to the perps.. that did not work... then a deposit to an american specialist who after looking at the encryption wanted a lot of money... then went on a gut call to a European specialist that required two payments as the first try only half was retrieved and finally this weekend after 6 weeks of turmoil we now have all the data. The whole issue here was that the backups were useless and we had no choice but to try all options and yes it did work for us a few thousand later. You are right we should not pay them... what would you do... sink the company.... thats all and well but we have to be realistic here....the company cannot operate so eventually people loose there jobs... and backups now... through the roof... What would you do?
you should not pay the ransomware creators
Companies, which promise to decrypt your files are usually a scam
I see business paying, because they need their files to keep the business running, but that should not be an excuse or at least, not the first thing you do.