All Activity

This stream auto-updates     

  1. Today
  2. Hello , can any one help me please very important files and i don't have a restore point Decrypted 0 files, skipped 3 Unidentified ID: djDiPvX8ToOOfCxFpcDgiqBOPoynVE0KTLZAAJH2 (.hrosas ) Unidentified ID: ew6T2U0TjoPxUd7IDWtHv376ibb45SvHiOiHVrhs (.verasto ) MAC: 00:E1:8C:E4:27:2B .verasto Simple https://id-ransomware.malwarehunterteam.com/identify.php?case=a9b615f03eba76aff8b26b07080c063f5c19bccb .hrosas Simple https://id-ransomware.malwarehunterteam.com/identify.php?case=58857e2fea005b68a7db0c6510a8edef58fe56af _readme.txt simple ATTENTION! Don't worry my friend, you can return all your files! All your files like photos, databases, documents and other important are encrypted with strongest encryption and unique key. The only method of recovering files is to purchase decrypt tool and unique key for you. This software will decrypt all your encrypted files. What guarantees you have? You can send one of your encrypted file from your PC and we decrypt it for free. But we can decrypt only 1 file for free. File must not contain valuable information. You can get and look video overview decrypt tool: https://we.tl/t-oEUEuysYiZ Price of private key and decrypt software is $980. Discount 50% available if you contact us first 72 hours, that's price for you is $490. Please note that you'll never restore your data without payment. Check your e-mail "Spam" or "Junk" folder if you don't get answer more than 6 hours. To get this software you need write on our e-mail: [email protected] Reserve e-mail address to contact us: [email protected] Support Telegram account: @datarestore Your personal ID: 070bfydGdbfsew6T2U0TjoPxUd7IDWtHv376ibb45SvHiOiHVrhs
  3. Yesterday
  4. ATTENTION! Don't worry my friend, you can return all your files! All your files like photos, databases, documents and other important are encrypted with strongest encryption and unique key. The only method of recovering files is to purchase decrypt tool and unique key for you. This software will decrypt all your encrypted files. What guarantees you have? You can send one of your encrypted file from your PC and we decrypt it for free. But we can decrypt only 1 file for free. File must not contain valuable information. You can get and look video overview decrypt tool: https://we.tl/t-oEUEuysYiZ Price of private key and decrypt software is $980. Discount 50% available if you contact us first 72 hours, that's price for you is $490. Please note that you'll never restore your data without payment. Check your e-mail "Spam" or "Junk" folder if you don't get answer more than 6 hours. To get this software you need write on our e-mail: [email protected] Reserve e-mail address to contact us: [email protected] Support Telegram account: @datarestore Your personal ID: 070bfydGdbfsznTKjJ3zXyCAeOyov8jJqOhR3wWnqQuq8LRetIDY
  5. GT500

    Salman

    I've been told that the creator of STOPDecrypter should still be able to figure out your decryption keys if you get him the information he needs quickly. @Kareem if STOPDecrypter doesn't show you your ID and MAC, then just attach a copy of the ransom note to a reply, and get us the MAC addresses from the infected computer. You can do the following to have them saved in a file on your Desktop: Hold down the Windows logo key on your keyboard (the one with the Windows logo on it) and tap R to open the Run dialog. Copy and paste CMD into the field, and then click OK. In the Command Prompt that opens, copy and paste the following command (to paste something into the Command Prompt, simply right-click anywhere in the empty black space), and then press Enter on your keyboard to run it: getmac.exe /v > %UserProfile%\Desktop\MAC_Addresses.txt Look for a file named MAC_Addresses on your Desktop, and attach it to a reply here along with the ransom note. @Salman I've been told that Demonslay335 is already in contact with you. If you can get him the MAC Address of the infected computer as soon as possible, then he should still be able to help you. You can follow the instructions above if you think that's easier.
  6. GT500

    Salman

    Those errors were on things that can't be processed by the decrypter. Considering that both of your ID's are online ID's, STOPDecrypter shouldn't have been able to decrypt any of your files. I've forwarded your information to the maker of STOPDecrypter, however I would believe you sent us the information too late to be able to figure out your decryption key. Unfortunately the ability to figure out the keys is time limited, and he probably needed the ID and MAC addresses last night. Regardless, he will probably still archive your ID and MAC addresses in case there is a possibility of figuring out your decryption key latter.
  7. GT500

    Salman

    Don't try random keys. They won't work, and you risk losing files. It's not supposed to work unless you have an offline ID, or unless you already know your decryption key. Note that you can send us the ID and MAC address that STOPDecrypter shows in its log, and the maker of STOPDecrypter can archive it for latter, however there's a limited amount of time that he can figure out decryption keys in and that time has already passed for this variant of STOP/Djvu. Instructions for using STOPDecrypter can be found at the following link: https://kb.gt500.org/stopdecrypter
  8. Thanks Amigo. All of your work into this ransomware is much appreciated. I am already down the path - talking with Emmanuel and seeing if DrWeb will work for us. Again - much appreciated. I will keep everyone in the loop.
  9. I can supplement the information, as I observe the development of this Ransomware-project from the very beginning and from from previous versions. If your files were encrypted with the original Amnesia or Amnesia-2 Ransomware, then they can be decrypted with free Emsisoft tools. If your files were encrypted with the Scarab-Amnesia Ransomware before June 18-19, 2018, they can be decrypted. [I gave this 'Scarab-Amnesia' name to this ransomware, but other sites can borrow it for their own purposes, forgetting to make references to the original source.] But, to our regret, there is no free decryptor, there is only a decryption method that DrWeb offers - a free test-check and the subsequent payment of 150 euro for a Rescue Package with a personalized decryption, which does not work for other victims. Later versions cannot be decrypted in the same way, since the version of the criminal encoder has been updated and the encryption method has changed. If you view the encrypted file using Notepad, then at the end you will see a code that is different from earlier versions.
  10. Vielen Dank für die Rückmeldung. Der Thread kann dann geschlossen werden.
  11. thank you look forward it,
  12. Kareem

    Salman

    I have this versto too it so bad I try alot of keys but no thing Stop decrypter doest work Only key is work is rectordecryptor but all file come with damge i cant open any one i dont know why Salman try use rectordecryptor from kaspersky toll maybe its work for u try it and tell me what happen files come with damge like me or what happen Gt500 what we can do nw bro we need this file rly we need it there is no other way to back it ???
  13. EAM beta's are usually released around day 25 of every month and stable builds one week later, although not on Fridays.
  14. Most of the time new beta's are coming end of every month 😋
  15. hi, not sure if i am allowed to ask this? will there be some more betas to test soon ? thank you,
  16. Hallo Icewolf, Mittlerweile lässt sich sagen dass es sich um eine falsche Erkennung handelt. Der Eintrag wird berichtigt und die Änderung bald in einem Update veröffentlicht werden. Vielen Dank für die Unterstützung. Ich wünsche einen schönen Tag!
  17. Hello and thank you for contacting us. You can use the license key again to re-install Emsisoft Anti-Malware and unlock the full version on the systems. If we can assist you any further, please just let me know.
  18. Hallo und vielen Dank für die Rückmeldungen mit Screenshots. Ich bitte um Entschuldigung für meine späte Antwort, ich war die letzte Tage leider nur eingeschränkt verfügbar und so blieb der Beitrag leider von mir unbemerkt. Die Thematik bespreche ich gerne gemeinsam mit meinen Kollegen und ich werde mich hier melden wenn ich weiteres dazu in Erfahrung bringen konnte.
  19. Salman

    Salman

    [!] No keys were found for the following IDs: [*] ID: O9eZw1aNwCAw3YuK8sTLTAHVJr149IdSKyj2Gmd5 (.verasto ) Please archive these IDs and the following MAC addresses in case of future decryption: [*] MAC: C8:3A:35:CB:F3:85 This info has also been logged to STOPDecrypter-log.txt[!] No keys were found for the following IDs: [*] ID: O9eZw1aNwCAw3YuK8sTLTAHVJr149IdSKyj2Gmd5 (.verasto ) Please archive these IDs and the following MAC addresses in case of future decryption: [*] MAC: C8:3A:35:CB:F3:85 This info has also been logged to STOPDecrypter-log.txt plz reply
  20. Hallo Icewolf, vielen Dank dass Sie unseren Support kontaktiert haben. Ich bitte um Verzeihung für die viel zu späte Antwort auf Ihre Anfrage, ich war die letzten Tage nur eingeschränkt verfügbar und so muss Ihr Beitrag untergegangen sein. Den Link werde ich an meine Kollegen weitergeben und berichten sobald ich weiteres in Erfahrung bringen konnte. Es ist auch der direkte Weg über [email protected] bzw. [email protected] möglich um mögliche Falschmeldungen oder Malware zu melden. Sie erhalten auch dann eine Antwort mit Resultat der Auswertung von uns. Zwischenzeitlich stehe ich für Ihre Anliegen gerne weiter zur Verfügung.
  21. Hi there, we have 2 customers that have experienced HDD failure. Can we use the License key that they already have or would we have to purchase another licensing key.
  22. Salman

    Salman

    6 fatal errors here
  23. Salman

    Salman

    nothing happened at the end [-] Fatal Error: (5) Access is denied: [C:\Users\Dell\Recent] [-] Aborting [-] Fatal Error: (5) Access is denied: [C:\Users\Dell\SendTo] [-] Aborting [-] Fatal Error: (5) Access is denied: [C:\Users\Dell\Start Menu] [-] Aborting [-] Fatal Error: (5) Access is denied: [C:\Users\Dell\Templates] [-] Aborting Decrypted 363 files! Skipped 133 files. nothing is ahed
  24. Last week
  25. GT500

    Salman

    That certainly appears to be a variant of the STOP/Djvu ransomware. Your ID doesn't appear to be an offline ID, so the chances of being able to decrypt your files is slim. That being said, if you download STOPDecrypter, run it, and copy and paste the ID and MAC it gives you into a reply then I can forward them to the create of STOPDecrypter in case he is able to figure out your decryption key at some point in the future. Here's a link to instructions on how to do that: https://kb.gt500.org/stopdecrypter
  1. Load more activity
  • Who's Online   0 Members, 0 Anonymous, 35 Guests (See full list)

    There are no registered users currently online

  • Newsletter

    Want to keep up to date with all our latest news and information?

    Sign Up