Got a friends laptop here with web pages and notepad files opening all over the place saying that the files have been encrypted using a 2048 RSA public/private key and that in order to decrypt the file, visit this site on a secret server, pay this money and get the private key.
Obvs, that's not going to happen, but right enough, none of the files open. It appears like the headers have been altered. Even slaving the drive in another PC does not allow access.
Running malware bytes now, but that will only remove the virus, it's unlikely to decrypt the files if the messages are to be believed.
What's the process? Anyone had similar experiences?
Ta
Obvs, that's not going to happen, but right enough, none of the files open. It appears like the headers have been altered. Even slaving the drive in another PC does not allow access.
Running malware bytes now, but that will only remove the virus, it's unlikely to decrypt the files if the messages are to be believed.
What's the process? Anyone had similar experiences?
Ta