GT500

Emsisoft Employee
  • Content Count

    12226
  • Joined

  • Days Won

    362

Everything posted by GT500

  1. This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  2. Google Chrome probably starts the service itself the first time you launch it.
  3. Did you also see a larger dialog informing you of a crash that allowed you to submit a report?
  4. Correct, this is the Patreon page for the developer who created the decrypter and maintains ID Ransomware.
  5. If the files have online ID's, then that's correct.
  6. This is a newer variant of STOP/Djvu. If you have an offline ID, then once we can find the decryption key for this variant and add it to our database you should be able to recover your files. However, if you have an online ID (which is more likely) then it will not be possible to recover your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  7. This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  8. Your ID is an online ID, so the decrypter won't be able to decrypt your files.
  9. It appears to be The DMR ransomware: https://id-ransomware.malwarehunterteam.com/identify.php?case=f547c3019c7c2ea110350d3bb779f65b98ff0aaa Unfortunately we still don't know much about it.
  10. This is a newer variant of STOP/Djvu. Fortunately your ID is an offline ID, however we don't yet have the private key for it. I recommend running the decrypter once every week or two so that you can see when we've been able to add the private key for your variant. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  11. There has been no new news. If you want to keep up-to-date on developments in regards to this ransomware, the I recommend following BleepingComputer's forum topic about it: https://www.bleepingcomputer.com/forums/t/671473/stop-ransomware-stop-puma-djvu-promo-drume-help-support-topic/
  12. Phobos has been around for a long time, and has proven to be secure, so while decryption may be possible at some point in the future I doubt it will be soon.
  13. That looks like the scheduled tasks are just disabled. If you check that box, I think Autoruns will re-enable it.
  14. Coveware is technically a service for businesses, and the prices they charge are set accordingly. Unfortunately our malware analysts don't seem to know any other companies that aren't shady. There are a number of them that will pay the ransom and lie to you, claiming they cracked the encryption themselves, and then charge you at least several times the cost of the ransom for their services.
  15. This is a newer variant of STOP/Djvu. If you have an offline ID, then once we can find the decryption key for this variant and add it to our database you should be able to recover your files. However, if you have an online ID (which is more likely) then it will not be possible to recover your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  16. What does the decrypter say? Does it show an error message? Does it print something in its log output?
  17. OK. If you run into the issue again, then let us know.
  18. That's correct. Did you save copies of files to external hard drives, flash drives, DVD's, etc? Did you send files via e-mail and/or social media sites, or give files to friends or family members? Are any of your encrypted files one that were downloaded from the Internet that you can simply redownload?
  19. This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  20. This is a newer variant of STOP/Djvu. If you have an offline ID, then once we can find the decryption key for this variant and add it to our database you should be able to recover your files. However, if you have an online ID (which is more likely) then it will not be possible to recover your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/ Traducción proporcionada por Google: Esta es una variante más nueva de STOP / Djvu. Si tiene una ID sin conexión, una vez que podamos encontrar la clave de descifrado para esta variante y agregarla a nuestra base de datos, podrá recuperar sus archivos. Sin embargo, si tiene una identificación en línea (que es más probable), entonces no será posible recuperar sus archivos. Hay más información en el siguiente enlace: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  21. This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  22. Offline ID's end in t1 however online ID's do not. When in doubt, the decrypter will tell you which files have online ID's and which files have offline ID's.
  23. This is a newer variant of STOP/Djvu. If you have an offline ID, then once we can find the decryption key for this variant and add it to our database you should be able to recover your files. However, if you have an online ID (which is more likely) then it will not be possible to recover your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  24. This is a newer variant of STOP/Djvu. Fortunately your ID is an offline ID, however we don't yet have the private key for it. I recommend running the decrypter once every week or two so that you can see when we've been able to add the private key for your variant. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  25. You're welcome. Be sure to keep your computer and your data safe going forward. 👍