Jump to content

GT500

Emsisoft Employee
  • Content Count

    13805
  • Joined

  • Days Won

    433

Everything posted by GT500

  1. I'll ask the developer who wrote the decrypter if he can find anything wrong with the file.
  2. This is a newer variant of STOP/Djvu. Fortunately your ID is an offline ID, however we don't yet have the private key for it. I recommend running the decrypter once every week or two so that you can see when we've been able to add the private key for your variant. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  3. You need to upload file pairs via our online submission form so that the decrypter can be "trained" how to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/ Google tarafından sağlanan çeviri: Dosya çiftlerini çevrimiçi gönderim formumuz aracılığıyla yüklemeniz gerekir, böylece şifre çözücü dosyalarınızın şifresini nasıl çözeceği konusunda "eğitilebilir". Aşağıdaki bağlantıda daha fazla bilgi var: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  4. Our recommendation is to save a backup of your encrypted files and keep it in a safe place until we can get the private key. Private keys for offline ID's are donated by victims who have paid the ransom, so there's no way to know when we'll receive one. The best way for you to find out when this happens is just to run the decrypter once every week or two until it's able to decrypt your files.
  5. This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  6. That usually means the decrypter was able to decrypt the file. Was there any other output?
  7. Offline ID's end in t1 whereas online ID's don't. If you're not sure, just run the decrypter. It will tell you the ID for each file, and whether it's online or offline. It will also tell you whether or not the files can be decrypted.
  8. That means the decrypter is still searching for encrypted files. Try selecting just one file, and see if it finds it without getting stuck like that. If it still gets stuck, then something else (such as an Anti-Virus software) may be interfering with the decrypter.
  9. This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  10. File pairs don't work with newer variants like .coos as those variants use RSA encryption.
  11. This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  12. Newer variants of the STOP/Djvu ransomware use RSA encryption, which isn't susceptible to most forms of attacks.
  13. Well, your ID for STOP/Djvu (.coos) is an offline ID, however we don't yet have the private key for it. I recommend running the decrypter once every week or two so that you can see when we've been able to add the private key for your variant. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/ As for files with .ROGER added to their names, those were encrypted by Dharma, and there's no way to decrypt them without paying the ransom.
  14. This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  15. This is a newer variant of STOP/Djvu. If you have an offline ID, then once we can find the decryption key for this variant and add it to our database you should be able to recover your files. However, if you have an online ID (which is more likely) then it will not be possible to recover your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  16. Someone posted a link to something called "DiskTuna" claiming it can recover files. The post has since been hidden, and I have asked our lab team to look at the program as it seems a bit fishy (as in potentially unsafe) to me.
  17. This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/ Emsisoft Internet Security is a discontinued product, and hasn't been updated in years. If you really do have it installed, note that it won't be able to detect the STOP/Djvu ransomware, and that it is too old to receive database updates. Here are links to our currently available products which we still maintain: Emsisoft Anti-Malwa
  18. This is a newer variant of STOP/Djvu. If you have an offline ID, then once we can find the decryption key for this variant and add it to our database you should be able to recover your files. However, if you have an online ID (which is more likely) then it will not be possible to recover your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/ The information at the link includes this, but the ransomware also downloads and runs the Azorult trojan, which steals your passwords.
  19. Can you copy the output from the decrypter and paste it into a reply?
  20. This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  21. Assuming this is a newer variant of STOP/Djvu, if you have an offline ID then once we can find the decryption key for this variant and add it to our database you should be able to recover your files. However, if you have an online ID (which is more likely) then it will not be possible to recover your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  22. This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  23. This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  24. Our recommendation is to save a backup of your encrypted files and keep it in a safe place in case decryption is possible at some point in the future. We also recommend keeping an eye on BleepingComputer's newsfeed, as they will usually report on new developments with ransomware decrypters: https://www.bleepingcomputer.com/ If you have an RSS feed reader, then they also have an RSS feed so that you don't have to manually check for news: https://www.bleepingcomputer.com/feed/
×
×
  • Create New...