Recommended Posts

On 11/15/2018 at 3:34 PM, GT500 said:

I recommend uploading a copy of the ransom note along with an encrypted file to ID Ransomware so that you can verify which ransomware you are dealing with:

You can paste a link to the results into a reply if you would like for me to review them.

Hi GT500;

     I also have being attacked by this same virus and all my system is encrypted and inaccessible.  I am desperately in need of some help in decrypting my files as I have checked on your existing decrytor and havent found a matching one for this file type. 

    Please help.  much appreciated.


Anyhour_vpn_access.txt - Copy.DATAWAIT


Share this post

Link to post
Share on other sites

I did some searching for information on decrypting files, however I wasn't able to find anything. I've asked some ransomware decryption experts to see what can be done.

Share this post

Link to post
Share on other sites

I thank you soo much GT500 for you pushing this along for me, much appreciated, as this virus has wiped out 5 computer worth of data files and documents.  Unfortunately my backup (passport drive) external disk as attached to the machine and it got encrypted as well.  So now i have nothing .

Share this post

Link to post
Share on other sites

I was told that this was more than likely an alternate extension used by SaveFiles:

There doesn't appear to be a known way to decrypt files without first obtaining the private key from the criminals who made/distributed the ransomware.

Share this post

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.