Jump to content


Emsisoft Employee
  • Content Count

  • Joined

  • Days Won


Posts posted by GT500

  1. 11 hours ago, dkds said:

    even if silent mode is disabled on workspace and locally?

    You can turn off the various effects that Silent Mode has, however you can't actually prevent Emsisoft Anti-Malware from enabling Silent Mode. If you disable all of the things that Silent Mode does, then it just does nothing when it turns on automatically.

  2. 20 hours ago, redvet said:

    Is that all that is necessary please ?

    Yes, as long as Emsisoft Anti-Malware and Emsisoft Browser Security are working, then your computer should be protected.


    18 hours ago, puanpuan said:

    Is virual keyoard necessary also ?

    Virtual keyboards often work by simulating keyboard input, and it may be possible for keyloggers to read what you type on them like with a real keyboard.

    Emsisoft Anti-Malware's Behavior Blocker will automatically quarantine anything trying to log keystrokes.

  3. 18 hours ago, DJSteve said:

    please help in decrypt my file its .coos extension with on offline key please help ASAP

    This is a newer variant of STOP/Djvu. If you have an offline ID, then once we can find the decryption key for this variant and add it to our database you should be able to recover your files. However, if you have an online ID (which is more likely) then it will not be possible to recover your files. There is more information at the following link:

  4. 18 hours ago, dm7 said:

    one last question, Is it possible for a encrypted file(offline key) to be encrypted again with online key?

    I don't think STOP/Djvu will usually double-encrypt files, however it's still technically possible because the ransomware is known to be buggy and sometimes it just does weird and unexplainable things. It's best to get it off of the system and then avoid any pirated software, movies, music, etc. after that to help prevent it from happening again.

    • Like 1
  5. It looks like this extension is being used by both GlobeImposter 2.0 and MedusaLocker, both of which are not decryptable.

    Our recommendation is to save a backup of your encrypted files and keep it in a safe place in case decryption is possible at some point in the future.

    We also recommend keeping an eye on BleepingComputer's newsfeed, as they will usually report on new developments with ransomware decrypters:

    If you have an RSS feed reader, then they also have an RSS feed so that you don't have to manually check for news:

  6. Is your processor (aka. "CPU") overheating? You can try one of the following utilities to check it (be careful of the ads on the download pages):

    Modern processors can often handle running up to 90°C to 100°C depending on the model and manufacturer, however some older processors may have trouble at lower temperatures than that.

    Note: Processor temperatures are rarely measured in anything other than Celsius, even in the United States (which still predominantly uses Fahrenheit).

  7. 3 hours ago, redvet said:

    Thank you for your helpful information.  Sorry for asking basic questions but I am 88 years old now and not to high on I.T. knowledge.

    That's understandable. There's a lot of confusing marketing out there.

    We wrote an article when we discontinued our Internet Security software, which further explains why we believe the Windows Firewall is a good enough firewall these days:

  8. There is no issue with decrypting the file. It's probably something preventing the decrypter from accessing the file, and since we removed all I/O errors from the output (people didn't understand what they meant) the decrypter just isn't displaying an error that it is unable to access the file.

    Try adding the decrypter to the exclusions in your Anti-Virus software.

    • Like 1
  9. On 1/20/2021 at 12:02 AM, redvet said:

    I have been using Kaspersky for some time now and am not entirely convinced that it gives any more protection with its 'Safe Money" . My subscription is about to expire and I am looking at Emisoft to trial.  The one thing that concerns me about Emisoft is that it is said that it does not have a firewall, which means I guess that it relies on Windows Security.  I do lots of Online Banking and want to be sure that I am protected as much as I can be, would appreciate any suggestions/advice.

    We discontinued our Internet Security product that contained a firewall a few years ago.

    A firewall doesn't keep your banking safe. Sometimes third-party firewall software has gimmicky features that make it sound like it does, but they don't really provide good protection against the biggest threats to online banking.

  10. 11 hours ago, efecash said:

    Your personal ID:

    You need to upload file pairs via our online submission form so that the decrypter can be "trained" how to decrypt your files. There is more information at the following link:


    Google tarafından sağlanan çeviri:
    Dosya çiftlerini çevrimiçi gönderim formumuz aracılığıyla yüklemeniz gerekir, böylece şifre çözücü dosyalarınızın şifresini nasıl çözeceği konusunda "eğitilebilir". Aşağıdaki bağlantıda daha fazla bilgi var:

  11. 21 hours ago, .coos said:

    my question is what should i do and how much time it takes to find the decryption key?

    Our recommendation is to save a backup of your encrypted files and keep it in a safe place until we can get the private key.

    Private keys for offline ID's are donated by victims who have paid the ransom, so there's no way to know when we'll receive one. The best way for you to find out when this happens is just to run the decrypter once every week or two until it's able to decrypt your files.

  12. On 1/17/2021 at 6:28 AM, Bahas said:

    Thanks for the reply but how can i know if it's an offline or online one.

    Offline ID's end in t1 whereas online ID's don't.

    If you're not sure, just run the decrypter. It will tell you the ID for each file, and whether it's online or offline. It will also tell you whether or not the files can be decrypted.

  • Create New...