ComputerDirect

Member
  • Content Count

    3
  • Joined

  • Last visited

Community Reputation

0 Neutral

About ComputerDirect

  • Rank
    New Member
  1. They have a remote support client system running for support from an offsite technical contact, so yes that is legitimate.
  2. Have attached the requested files. PostDecrypt was run in Safe Mode with Networking after applying the decryption key on the affected PC. PreDecrypt was run in Safe Mode with Networking prior to applying the decryption key on the infected PC. Decrypt Soft.exe is the decryption program that we were provided. key.txt is a text file I copied the key to, from the email we received. Hope this helps. Addition_PostDecrypt.txt Addition_PreDecrypt.txt FRST_PostDecrypt.txt FRST_PreDecrypt.txt decrypt soft.exe key.txt
  3. One of our clients has been infected with ransomware from an unknown source. All of their HDD data files have been encrypted and .ntfs has been appended to the end of the file names. I have attached the sample emails.txt.ntfs encrypted file as well as their decrypted emails.txt file. Every directory on the drive has a file named info.txt added into it, including the startup folder. This ransomware MO looks similar to the reported Stroman or FAT32 one. Any help would be much appreciated because I am doing this for a friend from a medical practice. [Below is the info.txt file] Your data set are encrypted. We can help decrypted files. Price for full decrypt all files 700$ You will get decrypt soft + personal key + manual. For recover your files - contact us email: [email protected] Please use public email for contact: gmail etc. For you to be sure, that we can decrypt your files You can send us 1-2 encrypted files and we will send back it in a decrypt format FREE. For download files use only dropmefiles.com not more then 10 Mb Send us an email: 1.Personal ID 2.link dropmefiles.com after wait decrypted files and further instructions. Personal ID: j2V5H5FAQ9OYZ7CAKAJIZ1AOHaUUu6 Do not rename encrypted files Not use false encryption key, it cause pernament data loss You must pay within 72 hours, or the price will be more. [Below is the response to my email with a sample encrypted file provided] your files http://dropmefiles.com/rG1Ua if you want get soft and personal key for decrypt all files, you need pay 0.067 btc ~ $700 wallet for payment: 1FJZU2o7EgMekErp3enPnpLpMU1cBHhAcv after payment, I send you soft,personal key,instruction for decrypt all files. The easiest way to buy bitcoin is LocalBitcoins site. You have to register, click Buy bitcoins and select the seller by payment method and price https://localbitcoins.com/buy_bitcoins or by any other means. if you not pay within 72 hours, price will be more. emails.txt emails.txt.ntfs info.txt