53.gif
Best Blackhat Forum / Freebies / Miscellaneous Products / .GDCB file extension virus. How to remove? (Uninstall guide) DANGEROUS! GDCB extension

Search (advanced search)
Use this Search form before posting, asking or make a new thread.
Tips: Use Quotation mark to search words (eg. "How To Make Money Online")

New Reply
 
02-15-2018, 04:15 AM
Post: #1
SHINOBI NINJA Online
Shadow
********
Posts: 7,306
Joined: Dec 2015

Reputation: 9792
.GDCB file extension virus. How to remove? (Uninstall guide) DANGEROUS! GDCB extension
I HAVES BIG BIG PROBLEM TODAY HARD DAMAGES I RECOVERY MY PC TODAY THANKS GOD FOR THIS
http://bestblackhatforum.com/Thread-Malw...pid2030283
http://bestblackhatforum.com/Thread-Get-...covery+Pro
AND THIS GUIDE
.GDCB file extension virus. How to remove? (Uninstall guide)
https://www.2-spyware.com/remove-gdcb-fi...l#method-1

GAYS AND GIRLS BE CAREFUL WHEN DOWNLOAD ANYTHING FROM INTERNET


THIS IS GDCB file extension virus I GOT IN MY PC

Code:
---= GANDCRAB =---



Attention!

All your files documents, photos, databases and other important files are encrypted and have the extension: .GDCB

The only method of recovering files is to purchase a private key. It is on our server and only we can recover your files.

The server with your key is in a closed network TOR. You can get there by the following ways:

1. Download Tor browser - https://www.torproject.org/

2. Install Tor browser

3. Open Tor Browser

4. Open link in tor browser: http://gdcbghvjyqy7jclk.onion/73454a2cbc960aec                        

5. Follow the instructions on this page





If Tor/Tor browser is locked in your country or you can not install it, open one of the following links in your regular browser:

            

1. http://gdcbghvjyqy7jclk.onion.casa/73454a2cbc960aec                          

2. http://gdcbghvjyqy7jclk.onion.guide/73454a2cbc960aec            

3. http://gdcbghvjyqy7jclk.onion.rip/73454a2cbc960aec              

4. http://gdcbghvjyqy7jclk.onion.plus/73454a2cbc960aec                          



On our page you will see instructions on payment and get the opportunity to decrypt 1 file for free.



If you have difficulties with TOR or you have any problems, please use this online messenger : https://bitmsg.me/ (PC version - https://bitmessage.org.)
It is absolutely free and anonymous service.


Register, generate address, and write to our address : BM-2cXeGxpYz3MuccD4v8Szw4zwc8HyE25qK4 , in the subject please write your ID - 73454a2cbc960aec          
We will answer in a short time.



DANGEROUS!

Do not try to modify files or use your own private key - this will result in the loss of your data forever!
find Quote
02-15-2018, 05:11 AM (This post was last modified: 02-15-2018 05:17 AM by feefiefohfum.)
Post: #2
feefiefohfum Offline
Senior Member
**********
Posts: 394
Joined: Oct 2016

Reputation: 9063
RE: .GDCB file extension virus. How to remove? (Uninstall guide) DANGEROUS! GDCB extension
Man, that sucks!!!

Any ideas how it infected your system? Mail attachment\running suspect exe\... ?

Also, were you able to recover data or needed to restore from backups?

If you see unusual network activity (continuous data transfer even if you are not doing anything and it is not system\app update, better to disconnect from net and investigate.

For suspect apps, better to try in a virtual machine along with strong protection (anti-malware + av + HIPS) and use on other systems only if found to be safe, but with the recently revealed processor exploits which could theoretically compromise host running VM, even that may not be enough!

To others reading of SHINOBI NINJA's predicament, be very careful as such ransomware would typically encrypt files (usually text, ms office, pdf, etc.) and ask the victim to pay ransom to get decryption key. Pay and you are further strengthening the malware spreaders - hence, better have a proper offline backups to avoid such nasty surprises!
find Quote
New Reply
 




73.gif
Contact Us | BestBlackhatForum | Return to Top | Return to Content | Lite (Archive) Mode