DANGEROUS! Do not try to modify files or use your own private key - this will result in the loss of your data forever! GDCB

***SHINOBI NINJA*** · 02-15-2018, 02:36 AM

I somehow recovery pc with http://bestblackhatforum.com/Thread-Malw...pid2030283
but all my files is encrypted can't reinstall windows guys be careful when downloads something

Code:

---= GANDCRAB =--- 

Attention! 

All your files documents, photos, databases and other important files are encrypted and have the extension: .GDCB 

The only method of recovering files is to purchase a private key. It is on our server and only we can recover your files. 

The server with your key is in a closed network TOR. You can get there by the following ways: 

1. Download Tor browser - https://www.torproject.org/ 

2. Install Tor browser 

3. Open Tor Browser 

4. Open link in tor browser: http://gdcbghvjyqy7jclk.onion/73454a2cbc960aec                        

5. Follow the instructions on this page 

If Tor/Tor browser is locked in your country or you can not install it, open one of the following links in your regular browser: 

1. http://gdcbghvjyqy7jclk.onion.casa/73454a2cbc960aec                          

2. http://gdcbghvjyqy7jclk.onion.guide/73454a2cbc960aec             

3. http://gdcbghvjyqy7jclk.onion.rip/73454a2cbc960aec              

4. http://gdcbghvjyqy7jclk.onion.plus/73454a2cbc960aec                          

On our page you will see instructions on payment and get the opportunity to decrypt 1 file for free. 

If you have difficulties with TOR or you have any problems, please use this online messenger : https://bitmsg.me/ (PC version - https://bitmessage.org.)

It is absolutely free and anonymous service.

Register, generate address, and write to our address : BM-2cXeGxpYz3MuccD4v8Szw4zwc8HyE25qK4 , in the subject please write your ID - 73454a2cbc960aec          

We will answer in a short time.

DANGEROUS! 

Do not try to modify files or use your own private key - this will result in the loss of your data forever!

***darkweb*** · 04-12-2018, 11:06 AM

Do you have any ideas on what you downloaded that caused this?

***SHINOBI NINJA*** · 04-16-2018, 06:06 PM

(04-12-2018 11:06 AM)darkweb Wrote: Do you have any ideas on what you downloaded that caused this?

Now it's all ok I repair my computer installing again windows and deleted all corupted files I have to much files on pc but all gone corupted with that extension .GDCB
i know what it is I wanted to download some file for my need when I CLICK on download I see something like survey but not exactly like that when you download that you need first to instal that than you expected to that download your file for you automatically
I think that file like DLL something like that.
NEVER AGAIN

***feefiefohfum*** · 04-17-2018, 08:09 PM

Well, the malware writers are getting sneakier by the day - in addition to software protection (anti virus, firewall, anti-malware), one needs to be very vigilant in what they download - payload would be displayed prominently as file to be downloaded, whereas actual download files would be hidden away in some corner of the page.

Disguising malware as a site-specific download manager is becoming more and more common, many times without the website owner being aware that their website has been compromised!