Jerica Schvolter

  • Content Count

  • Joined

  • Last visited

Community Reputation

0 Neutral

About Jerica Schvolter

  • Rank
    New Member
  1. I just have thousands of this file, this is the only .txt i have access for. Thanks for the assistance. HOW TO RECOVER ENCRYPTED FILES.TXT
  2. Thanks for your reply. I've already tried the ransomware identification page. For the .HRM extension i got HERMES 2.1, with no decrypt method at this time. For .GEFEST I got Scarab. The infected computer is at the office right now, I can only access it on Monday. Right now i have the 2 different extension files encrypted and just one note (i suppose the note is for the .HRM extension). I'll leave it here for you to analyse, if and when you can. I think i don't have any alternatives right now. And after long reading hours, i guess i'll have no lucky for the future with the HERMES 2.1... Best regards 3Maio2016.Sensei.pdf.GEFEST Aviso Recibo.pdf[[email protected]].HRM DECRYPT_INFORMATION.html
  3. I'm having the same unfortune here. I have 2 extension types, and I know for sure that they're both different. This ransomware deleted all of my disk's shadow copy's, all of my Windows restore points, and its even capable to encrypt the files in all $RECYCLE folders of all disks, so it leaves no way to get the files back. I contacted the hacker by the email that he os she provided, manifesting my intention to pay. He answerd me, and asked me to send him the unique ID (findable on .HTML or .TXT files) and some encrypted files so he can proof successfully decrypt. In my reply to him, i've attached a file with [[email protected]].HRM extension and another with the .GEFEST extension, and provided the .HTML file that he left on every fkng folder of every disk partition. Then he sent the [[email protected]].HRM file decrypted and asked me to look for another info (or openable .txt) files left on my computer with some kind of keys in it. That means 2 different encription types as they need 2 different unique keys. I'm not sharing publicly my files, nor my real identity or any personal info about me, just because (although I think I've kept my anonymity while talking to the hacker) he could probably trace me or something. I have my computer cleaned and offline, my files are backed up (THE ENCRYPTED ONES) and i'm getting a new network card. I really hope (and patiently wait) for a quick solution to this new Ransomware. And if there's anyone with encription knowlage reading this post, who think that it's possible to somehow catch the encription secrets with the 2 files I have (encrypted and decrypted version of the same file) please contact email address to avoid member being spammed.