Pdfhelp@india.com is a crypto-virus that encrypts files on the target PC and demands ransom to be paid by the victim to free the files. Pdfhelp@india.com may attack any sort of window’s OS like Vista, Windows 7, Win 8 and Win 10. Once installed, this Ransomware uses strong encryption algorithm combination of RSA-2048 key and AES CBC 256-bit. This means files are locked with public and private key. Thus users are left with no option except to pay the ransom and get their files back. Pdfhelp@india.com may drop malicious payloads and entries in the windows’s registry to auto-launch its program. It searches for various important files like Documents, PDF, photos, music, videos, databases, etc to encrypt them. After encrypting the files, the ransomware changes the desktop wallpaper to ransom note:
The ransom Note says:
Your files have been encrypted ransomware!
Your personal Id:
Pdfhelp@india.com ransomware is a free open source software.
The program is designed to test the protection of OS Windows against ransomware.
The developer of this software is not responsible for any damage caused by the program.
The program is experimental and the entire responsibility for use lies with the user.
HOW TO USE:
To decrypt your files, you need the program Pdfhelp@india.com _decryptor.exe
In the letter, send your personal id and two small encrypted files for trial decryption.
If you don’t get answer from email@example.com or firstname.lastname@example.org in 72 hours,
you need to install tor browser, you can download it here:
After installation, open the tor browser to website:
Register on the site a new email address and write to us with his letter to our address: