TROJ_CRYPTLOCK.AB is spread across all computers!
I would like to help please. I am with this infection cripitografia in preliminary research found that
W32.FasmetLTE.Trojan
(Suspicious) - DNAScan
TrojWare.Win32.Banbra.~dy002
HEUR/QVM18.1.Malware.Gen
WS.Reputation.1
TROJ_CRYPTLOCK.AB
What is TROJ_CRYPTLOCK.AB?
When you are infected with TROJ_CRYPTLOCK.AB, you will receive these message:
WARNING!!! All Your files are encrypted
Payment REQUIRED
Price: 300$, Wallet: 15CJrHjwbHFYLi78iuqjPyfHg38r8tiZut
Payment Instructions
Open one of following URLs in your browser
hxxps://www.bitin.co/buy
hxxps://indacoin.com/change
hxxps://www.trucoin.com/
hxxps://coin.mx/landing/pay?address=15CJrHjwbHFYLi78iuqjPyfHg38r8tiZut&amount=1
hxxps://money2btc.com/
Fill Payment Form:
1. Select payment method: Visa, Paypal...
2. Enter Bitcoin(BTC) wallet for money transfer: 15CJrHjwbHFYLi78iuqjPyfHg38r8tiZut
3. Set payment amount: 300$ USD or 1 BTC
4. Complete your payment and decrypt your files
Decryption instructions:
Decription Application: http://tiny.cc/ucnzux
Download it with TOR Browser (https://www.torproject.org/projects/torbrowser.html)
TOR Download Link: bvzil4dajvfjs6yg.onion
Decryption softvare available in an hour after payment
You might have a chance to get back your files without paying by doing these:
Step 1: block and remove TROJ_CRYPTLOCK.AB from second infection and avoid other infections brought by the malicious trojan, like browser hijacker, rogueware, adware and trojan.
Please download and install the official and powerful TROJ_CRYPTLOCK.AB removal tool to block it:
(You have 2 options for you: click Save or Run to install the program. You are suggested to save it on the desktop if you choose Save so that you can immediately start the free scan by clicking the desktop icon.)
2. The pop-up window box below needs your permission for the setup wizard. Please click Run.
Continue to follow the setup wizard to install the Automatic Removal Tool.
It may take a while to download all the files. Please be patient.
No More Hesitation. Time to scan your PC. Please click Start New Scan/ Scan Computer Now!
Scanning your PC now <<<<<<<<
This is what you should do for so many reasons: click Fix Threats.
( Friendly Tip: blocking TROJ_CRYPTLOCK.AB is very necessary for getting back your files. If you skip the blocking, the chance of restoring your files is almost zero.Download and install the strong virus removal tool to help you out.)
Step 2: after you blocking TROJ_CRYPTLOCK.AB, try these 3 options to restore your files.
Option 1: try backups
If you have been performing backups, then it the first and best method to restore your files from a the latest backup.
Option 2: try recovery software
Before delete the original files, TROJ_CRYPTLOCK.AB makes a copy before it encrypts. Due to this you are able to use the file recovery software like Photorec or R-Studio to possibly get back some of your original files.
Option 3: try shadow volume copies
As of now, if TROJ_CRYPTLOCK.AB doesn't delete your 'shadow volume copies, it may be a chance to restore your original files from them.
( Reminder Again: don't give up easily. At least try to download the security tool to block TROJ_CRYPTLOCK.AB and try the 3 options to get your files. The options are really worthy your trying.)
No comments:
Post a Comment