6
Around 90% files of my files, including *.doc
, *.jpg
,
got converted into *.micro
!
There are two files left:
help_recover_instructions+iyf.html
help_recover_instructions+iyf.txt
These files say:
*What happened to your files?
All of your files were protected by a strong encryption with RSA-4096. More information about the encryption RSA-4096 can be found here: http://en.wikipedia.org/wiki/RSA_(cryptosystem)What does this mean?
This means that the structure and data within your files have been irrevocably changed, you will not be able to work with them, read them or see them, it is the same thing as losing them forever, but with our help, you can restore them.How did this happen?
Especially for you, on our server was generated the secret keypair RSA-4096 – public and private. All your files were encrypted with the public key, which has been transferred to your computer via the Internet. Decrypting of YOUR FILES is only possible with the help of the private key and decrypt program, which is on our Secret Server!!!What do I do?
Alas, if you do not take the necessary measures for the specified time then the conditions for obtaining the private key will be changed. If you really need your data, then we suggest you do not waste valuable time searching for other solutions because they do not exist.
Does anyone know what is going on?
Your files are encrypted, they cannot be recovered unless you get the key, to reverse the process. Format your machine and restore from a backup. – Ramhound – 2016-01-27T11:57:12.657
@Ramhound, I think this is bad advise. First make a backup of the encrypted files, than format the machine and restore from backup. Because the encryption key might become public in the future and files can still be saved as I explained in my answer (http://superuser.com/a/1031984/246895).
– CousinCocaine – 2016-01-27T12:23:46.153@CousinCocaine - The moment he attaches an external drive, the malware will likely infect it, if he has a current backup he doesn't need to backup the encrypted files. – Ramhound – 2016-01-27T13:15:21.177
http://www.bleepingcomputer.com/news/security/teslacrypt-3-0-released-with-new-encryption-algorithm-and-xxx-file-extensions/ – hkguie – 2016-01-29T13:40:21.340