GT500

Emsisoft Employee
  • Content Count

    12543
  • Joined

  • Days Won

    375

Everything posted by GT500

  1. It's unfortunate, but that's always a risk that people take when they decide to pay the ransom.
  2. Try the following, and let me know if it helps: Open Emsisoft Anti-Malware. Click on Settings. Click on Advanced in the menu at the top. Turn off the option that says Start on Windows startup. Turn the Start on Windows startup option back on. Restart your computer.
  3. You have Adguard for Windows installed? It's WFP driver may cause issues when used alongside of ours. Adguard for Windows has an option to help prevent such issues, however I don't remember what it's called. You can contact their support if necessary, and they can let you know.
  4. The files you uploaded to Google Drive require you to grant access to download them. As for the file you attached previously, the developer who made the decrypter says it has been encrypted by something other than STOP/Djvu.
  5. You're welcome. Note that being one of the newest variants of STOP/Djvu, it may take some time for someone to donate the private key for this variant's offline ID to us. Unfortunately since we're dependent on victims to do this for us, there's no way to estimate how long it will take.
  6. That's probably your ad blocker. Some filter lists cause problems with the attachment function on the forums. I'll forward your files to the developer who made our decrypter, and see what he says.
  7. This is a newer variant of STOP/Djvu. If you have an offline ID, then once we can find the decryption key for this variant and add it to our database you should be able to recover your files. However, if you have an online ID (which is more likely) then it will not be possible to recover your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  8. @Amigo-A doesn't work for Emsisoft, and we don't necessarily agree that Norton's software is good. We don't usually give opinions about products made by our competitors, as we don't spend time trying them to compare to our own software.
  9. It's a long story. All versions of the Windows need comprehensive antiviral/antimalware protection. There is not one Windows that would defend itself without outside help. Just to add to this, Windows 7 is no longer receiving security updates, and will no longer be as safe to use as versions of Windows that are still being updated by Microsoft. Right now it isn't very bad, but as time goes on and more security issues are discovered in Windows 7, it's going to become unsafe to use. If you are still using Windows 7 and have the option to upgrade to a newer Operating System (it can be anything you want as long as it receives security updates) then I would recommend doing so in the near future.
  10. This is a newer variant of STOP/Djvu. Fortunately your ID is an offline ID, however we don't yet have the private key for it. I recommend running the decrypter once every week or two so that you can see when we've been able to add the private key for your variant. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  11. Don't reinstall Windows until we know for certain what is needed to decrypt files. If there is something other than what's contained in the encrypted files and the ransom notes that's necessary for decryption, then you could wipe that out by reinstalling Windows, thus making it impossible to decrypt your files. For now just rely on Anti-Virus software to clean up the system. If you're not certain if it's clean, then let us know, and we can assist you.
  12. Could you copy the output from the decrypter and paste it here?
  13. This is a newer variant of STOP/Djvu. Fortunately your ID is an offline ID, however we don't yet have the private key for it. I recommend running the decrypter once every week or two so that you can see when we've been able to add the private key for your variant. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  14. This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  15. This is a newer variant of STOP/Djvu. If you have an offline ID, then once we can find the decryption key for this variant and add it to our database you should be able to recover your files. However, if you have an online ID (which is more likely) then it will not be possible to recover your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  16. Most ransomwares delete backups so that things like this won't work. Sometimes ransomwares will fail to do this properly, however this is the exception rather than the rule (meaning it's uncommon).
  17. This is a newer variant of STOP/Djvu. Fortunately your ID is an offline ID, however we don't yet have the private key for it. I recommend running the decrypter once every week or two so that you can see when we've been able to add the private key for your variant. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  18. You don't have to reinstall everything if you don't want to. The STOP/Djvu ransomware is particularly easy to remove, and most Anti-Virus software has no trouble with it. You can even use our Emergency Kit (free for home/non-commercial use): https://www.emsisoft.com/en/home/emergencykit/
  19. This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  20. OK. If it happens again and you have a full application crash dump, then let me know.
  21. One of our developers asked me for a crash dump for this issue. Assuming you have one, could you go ahead and ZIP it, and send it to me?
  22. Can you ZIP a few of the files you're trying to use as file pairs, and attach them to a reply? I can forward them to our malware analysts.
  23. It's possible the file is corrupt. Do you have any other file pairs you can use?
  24. This is a newer variant of STOP/Djvu. If you have an offline ID, then once we can find the decryption key for this variant and add it to our database you should be able to recover your files. However, if you have an online ID (which is more likely) then it will not be possible to recover your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/ Traducción proporcionada por Google: Esta es una variante más nueva de STOP / Djvu. Si tiene una identificación sin conexión, una vez que podamos encontrar la clave de descifrado para esta variante y agregarla a nuestra base de datos, podrá recuperar sus archivos. Sin embargo, si tiene una identificación en línea (que es más probable), entonces no será posible recuperar sus archivos. Hay más información en el siguiente enlace: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  25. This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/