Amigo-A

Visiting Expert
  • Content Count

    1171
  • Joined

  • Last visited

  • Days Won

    19

Amigo-A last won the day on January 23

Amigo-A had the most liked content!

Community Reputation

65 Excellent

8 Followers

About Amigo-A

  • Rank
    Ransomware Expert
  • Birthday August 1

Contact Methods

  • Website URL
    https://id-ransomware.blogspot.com/

Profile Information

  • Gender
    Male
  • Location
    3st station from Sun
  • Interests
    Collection, catalogization and publication of information about Ransomware. Cooperating support of 'ID Ransomware' (in English and Russian). I work without off-time days and holidays. Пишите мне на русском, если знаете этот язык.

Recent Profile Visitors

3163 profile views
  1. .id[XXXXXXXX-2704].[[email protected]].Devos - this is the file format encrypted by Phobos Ransomware file. Probably Michael wanted to say Phobos Ransomware is not decryptable without paying a ransom, which we do not recommend.
  2. Here are answers to questions that you may have.
  3. Yes. This is a newer variant of STOP Ransomware , and if your identifier is a offline identifier (t1 in end), it means that in the future it will be possible to decrypt your files. At the moment no key to decrypt. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  4. Hello, @Behnia This will be possible after the decryptor supports this variant. To do this, you first need to get the key and add it to the decryptor. Check once a week.
  5. Hello One word 'If' is lost, it should be like this: If your ID is an online ID, so there is currently no way to decrypt your files. It was assumed that you be read the link
  6. This is a newer variant of STOP Ransomware , and if your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  7. This is a newer variant of STOP Ransomware , and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  8. This is a newer variant of STOP Ransomware , and if your identifier is a offline identifier, it means that in the future it will be possible to decrypt your files. There is more information at the following link: https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  9. This is a result of attack of STOP Ransomware v.215 (0215) with .npsk extension for encrypted files This is a good sign, and in the future, when encryption keys are received, probably, your files can be decrypted. Up to this point, your PC should be checked for the presence of an active infection and cleaned of harmful elements. Otherwise, repeated encryption may.
  10. Emsisoft Decryptor for with "NamPoHyu Virus" only. https://www.emsisoft.com/ransomware-decryption-tools/megalocker
  11. Attach _readme.txt file to your message.
  12. Need a ransom note file and several encrypted files. They need to be attached to the message. Quoting is not necessary.
  13. Attach a ransom note and several encrypted files to message. If nothing has changed, then this is Phobos Ransomware. But we need to look at the files to confirm this.
  14. Attach several encrypted files to message.