Jump to content

romanul

Active Members
  • Content Count

    305
  • Joined

  • Last visited

  • Days Won

    1

romanul last won the day on December 21 2014

romanul had the most liked content!

Community Reputation

36 Excellent

About romanul

  • Rank
    Registered user
  • Birthday 06/15/1954

Converted

  • Location
    In a town.
  • Interests
    Nieting, brieting, kletcing.
  • Occupation
    Server administrator.

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. A new ransomware has been released that not only encrypts your files, but also deletes them if you take too long to make the ransom payment of $150 USD. The Jigsaw Ransomware, named after the iconic character that appears in the ransom note, will delete files every hour and each time the infection starts until you pay the ransom. At this time is currently unknown how this ransomware is distributed. This is the first time that we have seen these types of threats actually being carried out by a ransomware infection. The good news is that a method has been discovered that allows victims to decrypt their files for free. How to decrypt and remove the Jigsaw Ransomware Thankfully, through the analysis of MalwareHunterTeam, DemonSlay335, and myself it was discovered that it is possible to decrypt this ransomware for free. Using this information, Demonslay335 has released a decryptor that can decrypt files encrypted by the Jigsaw Ransomware. To decrypt your files, the first thing that you should do is terminate the firefox.exe and drpbx.exe processes in Task Manager to prevent any further files from being deleted. You should then run MSConfig and disable the startup entry called firefox.exe that points to the %UserProfile%\AppData\Roaming\Frfx\firefox.exe executable. Once you have terminated the ransomware and disabled its startup, let's proceed with decrypting the files. The first step is to download and extract the Jigsaw Decryptor from the following URL: https://download.bleepingcomputer.com/demonslay335/JigSawDecrypter.zip Then double-click on the JigSawDecrypter.exe file to launch the program. When the program launches you will be greeted with a screen similar to the one below. Jigsaw Ransomware Technical Details When the Jigsaw ransomware is launched it will scan your drives for certain file extension, encrypt them using AES encryption, and append a .FUN, .KKK, .GWS, or, .BTC extension to the filename depending on the version. The files targeted by the Jigsaw ransomware are: <code> .jpg, .jpeg, .raw, .tif, .gif, .png, .bmp , .3dm, .max, .accdb, .db, .dbf, .mdb, .pdb, .sql, .dwg, .dxf, .c, .cpp, .cs, .h, .php, .asp, .rb, .java, .jar, .class, .py, .js, .aaf, .aep, .aepx, .plb, .prel, .prproj, .aet, .ppj, .psd, .indd, .indl, .indt, .indb, .inx, .idml, .pmd, .xqx, .xqx, .ai, .eps, .ps, .svg, .swf, .fla, .as3, .as, .txt, .doc, .dot, .docx, .docm, .dotx, .dotm, .docb, .rtf, .wpd, .wps, .msg, .pdf, .xls, .xlt, .xlm, .xlsx, .xlsm, .xltx, .xltm, .xlsb, .xla, .xlam, .xll, .xlw, .ppt, .pot, .pps, .pptx, .pptm, .potx, .potm, .ppam, .ppsx, .ppsm, .sldx, .sldm, .wav, .mp3, .aif, .iff, .m3u, .m4u, .mid, .mpa, .wma, .ra, .avi, .mov, .mp4, .3gp, .mpeg, .3g2, .asf, .asx, .flv, .mpg, .wmv, .vob, .m3u8, .dat, .csv, .efx, .sdf, .vcf, .xml, .ses, .Qbw, .QBB, .QBM, .QBI, .QBR , .Cnt, .Des, .v30, .Qbo, .Ini, .Lgb, .Qwc, .Qbp, .Aif, .Qba, .Tlg, .Qbx, .Qby , .1pa, .Qpd, .Txt, .Set, .Iif , .Nd, .Rtp, .Tlg, .Wav, .Qsm, .Qss, .Qst, .Fx0, .Fx1, .Mx0, .FPx, .Fxr, .Fim, .ptb, .Ai, .Pfb, .Cgn, .Vsd, .Cdr, .Cmx, .Cpt, .Csl, .Cur, .Des, .Dsf, .Ds4, , .Drw, .Dwg.Eps, .Ps, .Prn, .Gif, .Pcd, .Pct, .Pcx, .Plt, .Rif, .Svg, .Swf, .Tga, .Tiff, .Psp, .Ttf, .Wpd, .Wpg, .Wi, .Raw, .Wmf, .Txt, .Cal, .Cpx, .Shw, .Clk, .Cdx, .Cdt, .Fpx, .Fmv, .Img, .Gem, .Xcf, .Pic, .Mac, .Met, .PP4, .Pp5, .Ppf, .Xls, .Xlsx, .Xlsm, .Ppt, .Nap, .Pat, .Ps, .Prn, .Sct, .Vsd, .wk3, .wk4, .XPM, .zip, .rar </code> VIDEO: Din ce am citit, in fiecare ora sterge cate un fisier din server, la fiecare restart sterge 1000 fisiere.
  2. Sa-mi bag pula-n concursu tau si-n tableta ta.
  3. contact@diicot.ro , ei te pot ajuta daca e..
  4. La cum il cunosc eu pe Dr.Mengele , te asigur ca nu se trage pe cur pentru $30.
  5. =))))))))))))))))))))))) MOR. A FACUT POZA LA TRANZACTIE. BA ESTI RATAT ? =)))) deci noi trebuie sa ne dam seama ca ala e @Dr.Mengele
  6. Bitlockeru pizdii. Cum sa-l folosesti ca encrypt cand stii ca e facut de microsoft?
  7. si Nicu Ceausescu e viu si Elvis Presley si Michael Jackson. Nu?
  8. Recomand. Seara am facut tranzactia , dimineata mi-au aparut banii in cont. Sincer, dupa ce am vazut ce reviews are aici i-am trimis banii fara scrupule. E si baiat de treaba.
  9. CRIMA. 1. Victima fumand cu mana stanga, este stangace da? Ne uitam unde e pus pixu, deci e clar a scris cu mana stanga. Fiind stangace nu cred ca sa sinucis cu mana dreapta. 2. Lampa e scoasa din priza, deci nu a scris nimic in timpul crimei. Facand astfel de greseli, nu este un criminal experimentat ci este iubitul sau ceva apropiat. Cred ca e bine.
  10. Am uitat sa precizez sa fie din RO.
  11. Ofer bitcoin pentru paysafe pana in 50 euro.
×
×
  • Create New...