Helping a friend with this shit

i did. used it for a few months, then updated again to linux

Fabian?

VM starting up boys

How do you even get this stuff

The legend

im game.

ill be at the cardstand in 30 minutes

he can easily get his files out and reset his computer by literally installing gentoo.

i tried linux for a couple months loved it but not enough game support and program compatibility. 10/10 for cheap laptop though

Muh nigga

Do it.

Don't be an idiot. If you have anything valuable, online backups. If its more private or business related, offline physical backups on separate hard drives/external systems.

This shit is only going to become more and more common in the coming years. Protect yourself while you can, be ready to format your Desktop with a fresh start at all times basically.

>Start in safe mode
>Reset pc 24 hours
>???
>Profit

Delivering

...

Boot in safemode w/o or w/ networking, can't remember, and run HitmanPro, MalwareBytes, etc.

i wanna see where this goes

>55
>dubs
nice

burn it before it infects your phone and tv and dog

Are you retarded? It encrypts the files, no way to realistically decrypt without a fucking supercomputer. Even then, once they crack their encryption, they just change their methods again.

trips of truth

That is fucking stupid. Don't ever pay these niggers.
You have no guarantee that youll get your shit back.

What this user said should actually work just fine. Maybe reset the pc 72 h or a week. Hard to know when you got the fbimoneypack style virus.

I'm happy to see they are security conscious.

...

*on screen*
-RANSOM NOT PAID
-DOGGER HACKED

Don't be stupid. This shit is only software side. Highly unlikely for it to have gotten to the bios. It's likely they're encrypted only within Windows.

Delete the folder system 32, its an dangerous virus.

Tape paper over the camera, that's all I can offer for you. If they have that much control they most likely have control of the webcam.

My god, that's a lot of cash.

>delivering webm

mah nigga

sooo just reinstall windows?

OP uses linux tho

you got a webm, i'm flattered

Yeah but youd lose all your shit

only way to fix it is to delete it than butter and microwave computer

>That is fucking stupid. Don't ever pay these niggers.
>You have no guarantee that youll get your shit back.
not op, not paying them. however if upu get hit with ransomware and *need* the files, upu may as well pay them. most active ransomware operators do good on their promise to fix it simply because if they didn't, the scam wouldn't pay as well.

pic related

was quicker than taking two or three screenshots :^)

You're the best

yeh, you can tell because of the white on black text

welp this is why you always have an external hhd or ssd

No. Install gentoo, or mint or ubuntu whatever dirstro. you can just run it from a flash drive. Get your shit out, and reinstall windows.

Only way to get the files without paying is to remove the malware, then system restore and hope your backups didn't get fucked.

If it was as easy as installing some Linux distro to get your files back, it would be plastered all over the web to put PuppyLinux on a CD/flash drive and plug it in.

You da man user

GET 1 PORN FILE OUT

HOPE OP WASN'T HOPING TO USE THE "DECRYPT ONE FILE FOR FREE" FEATURE :^)

Check the source code of the site. It might give hints on what the process is or possibly even isolate the software.

i'm very proud of you i feel like i'm getting a tour

>Mastertroll.

>Anonymous 07/01/16(Fri)05:34:43 No.692447192 ▶
>File: 5823.png (205 KB, 994x769)
>
>HOPE OP WASN'T HOPING TO USE THE "DECRYPT ONE FILE FOR FREE" FEATURE :^)
OH NO

fucking kek

Or stop being retarded and google the name you see on the front? These guys are asking $500 per person, its obvious they had the funds to pay whoever made a public facing website for them secure as fuck

Cerber ransomware. Its one of the bigger ones going around right now. Its very well known how it works, only problem is its just not viable to try to crack the encryption

Yeah you may be right. If that is the case, it is highly unlikely for OP to be able to remove the malware.

Keked

oops wrong file extension, trying again

decryption is all gonna be server-side. I have js disabled so there's no chance that they're doing client-side, not that any malware operator would be that fucking stupid (i hope).

Good point

if you can find the program couldn't you just reverse the steps it takes to decrypt the files? i'm not computer whiz kid but it seems pretty obvious to me

Also, how do you figure this shit is being spread around?`

I've only ever seen this this from bad firewalls or pirating games.

Videos and pictures don't work for this

downloading taylor swift.mp3.rar.exe(NO VIRUS!!!)

every once in a while one of these funny clever nig/g/ers come to b and i have a good laugh because they are fearless and im a pussy

Nope not that easy, the decryption key is probably held server side and they probably send you a program pre-loaded with the right decryption key once you pay.

I had a quality Kek

I installed The Witness from TPB and got ransomware. I know it was The Witness because
1) The installer was written in russian.
2) I didn't pirate or install anything sketchy otherwise.

I don't usually pirate games, but he was whining about piracy on Twitter and it pissed me off.

decryption error :(

guess i can't cuck op out of his do it for free file decryption since idk the public cerber used which i'd need to make something the server can actually decrypt

no bc it uses public key encryption. Public key encryption is only reversible using the associated private key.

maybe if cerber used private key encryption, but it doesn't. ransomware is srs bsns

op is probably a pedophile who clicked on "ONLY-4-BUT-SUCH-A-WHORE.MP4.EXE"

the malware operators aren't gonna try to spread shit via this site bc then people wouldn't go to the site. its in their best interest to keep it clean.

plus im running linux and accessing the site via Tor through a sandboxed Tor browser so my risk would be low as fuck even if they were.

They know what it does. But without the key they use to encrypt the files, there could quite literally be more possible combinations than there are atoms in the entire universe. Brute forcing that obviously isn't viable for each Average Joe that gets his laptop stuck with this shit.

blog.malwarebytes.com/threat-analysis/2016/03/cerber-ransomware-new-but-mature/

the worst virus/malware I ever got disabled my keyboard and I couldn't right click as well as the general no internet connection and computer not being able to stay on for longer than 5min.

don't even ask me how i fucking fixed it. i didn't even restore windows or format. took me over a day though

Nice. Continue

Restore backups

how did you fix it man?
i need to know

Mine was it set my homepage to "lolitafap,com" or something like that, back when I was 12. We only had the one computer, and I was a single child and my mom was out of the picture. I don't recall how I fixed it. Magnets may have been involved.

How did you go about fucking fixing that?!

of course.

i opened a support ticket

>you understand all importance
Fucking dumbass indians

...

kekkle

...

the worst i had happend two days ago

it fucking took out my os and now im at my aunts to fix it and im still gonna lose all my porn

...

Ive "liberated" games off torrent sites in the tune of 4tbs, and never seen one of these, and i do download russian warez as well. Then again i have a professional grade firewall used on my home shit

Just rip out the HDD and transfer over your porn. No need to loose something so precious.

not a lot of faq questions.

hope they respond to my support question soon.

I got hit with some similar shit (Ransomware, but with a different warning/payment info. screen and .ccc file extensions that made all of the files on my hard drive inaccessible - and I had a fucking 1TB hard drive that was almost completely fully) and from what I gathered this shit is legitimate and was, at the time last year, basically impossible to decrypt without the decryption key. However, there are some awesome people on BleepinComputer dot com who have been working on this shit and they were able to crack/decrypt several of the encryptions for the Ransomware variation that was going around at the time.

So, I would suggest that you and/or your buddy get your ass over to the Bleepingcomputer forums and start asking for help and providing information about the particular Ransomware virus that your buddy got hit with, because this shit is no joke!

...

Oooh boy OP, your friend fucked up big time.

This was a very informative thread

mines a ssd so i cant
plus my main is a laptop so i can dowlnoad images on chrome and i have a cloud so im not worried

Keep creating tickets
>nice tabs

I don't get it, why does having a SSD mean you can't pull it out?

please dont advertise here go to tumblr

if this is legit call me a fag and a cuck

It's not the size, it's how you use it

I'm guessing the ssd is soldered into the thing. like flash memory on apple stuff

Yeah I was going to mention this but wasn't sure how reliable it would be. I've heard of a few having their keys released by Law Enforcement / Cracked by security experts/ or straight up leaked by the owner because he was done pulling the scam and sites being opened run by security experts to decrypt files for you, but its unknown how many of these will ever be made public before the vanish into history.

May be good to keep the encrypted files, maybe one day someone will release the keys