Sitaram108 Ransomware is a malicious computer infection that comes from a notorious group of cyber threats. This program will deny file access, saying that you can decrypt your files if you contact the “technical support.” Needless to say, this technical support thing is a scam devised to trick unsuspecting users into giving away their money. You should never pay a single cent to the criminals who have created this infection. Rather than that, remove Sitaram108 Ransomware at once, and then look for ways to restore your files. Dealing with cyber criminals is never an option because you cannot trust them, and you can never know what other trick they might pull off.
We have mentioned that this program belongs to a group of similar infections. To name just a few, there are Alex.firstname.lastname@example.org Ransomware, Meldonii@india.com ransomware, Radxlove7@india.com Ransomware, and others in the roster. All of these programs share infection symptoms and behavioral patterns. For instance, when you get infected with these applications, they change your background by modifying Wallpaper entry in the Windows Registry. Then, of course, they connect to the Internet without your permission, and they cannot be removed via Control Panel. Everything is done to make an impression there is no other way out of this situation but to pay.
Just like most of the other programs in the group, Sitaram108 Ransomware uses two email addresses for communication with the infected users: email@example.com and firstname.lastname@example.org. We would like to point out that the servers used by this infection to host their inboxes barely have anything to do with it. The cyber criminals simply make use of the service, most probably without permission. That is why the connection between the program and its command and control center is really shaky, and it might be impossible to receive the decryption tool necessary if the server goes down.
Unfortunately, it is virtually impossible to restore the files on your own because Sitaram108 Ransomware uses the RSA-2048 encryption algorithm. It is one of the most complicated algorithms out there, and unless you have the original decryption key, the decryption is out of the question. Needless to say, only the criminals (in theory) have the decryption key, but it is very likely a public decryption tool would soon appear for this and other similar infections. Computer security specialists already know that Sitaram108 Ransomware is based on the CrySiS ransomware engine, so they have a lead they can work on.
In the meantime, it is your job to make sure you delete Sitaram108 Ransomware and everything associated with it from your system. You will find manual removal instructions right below this paragraph. Do not feel discouraged if the instructions seem really long. Everything is doable!
Nevertheless, if you are not use to working with the Registry Editor, then perhaps it would be for the best to turn to the professionals. Using a licensed antispyware tool is one of the most efficient ways to solve such problem. Not to mention that a computer security application will also protect your PC from other threats in the future. Should you have any further questions regarding your computer’s security or your file decryption, please leave us a comment.
*could also be titled Payload1.exe or Payload_c.exe.