Jump to content

Amigo-A

Member
  • Posts

    2187
  • Joined

  • Last visited

  • Days Won

    55

Posts posted by Amigo-A

  1. Only after neutralizing all malicious files ...

    This is not the decryption, it is the recovery of certain types of files using the features of these files.

    1) If you have encrypted ZIP/RAR archives, you can partially recover them. Only 1-2 files are damaged there. Remove the extension that the ransomware added to the archives, and extract the files in the usual way. Everything except 1-2 files will be fixed. If there is only 1 file in the archive, then it will most likely be unrecoverable.

    2) There is an alternative (additional) way to recover some media files:
    WAV, MP3, MP4, M4V, MOV, 3GP.

    https://www.disktuna.com/media_repair-file-repair-for-stop-djvu-mp3-mp4-3gp

    But before trying the alternative variant with media files, it is recommended that you make a copy of the encrypted files. Something will be restored better, something will be restored worse. 

    Some types of files can be opened (restored) using the application in which they were created. To do this, you must first remove the extension added by the ransomware. Then can try to open the file from the program in which it was created. If you open audio and video files in the editor, it will restore the structure, and upon closing it will offer to save the changes in the file.

    3) If you have PDFs or files of other e-books, then they may suffer in part if they were not protected from manual modification. Therefore, after removing the added extension, they can be partially read (~ 80%).

    Unfortunately, it is not yet possible to recover files created in MS Office applications due to their sensitivity to any damage. They can be easily damaged without encryption. It is easier to recover and read text written on paper or on the stone than one created in MS Office.

    An alternative method for other files has not yet been found. I understand that this will not be enough, but recovering some of the files is better than to lose everything...

  2. 2 hours ago, Souvik Saha said:

    t1
    Notice: this ID appears be an offline ID, decryption MAY be possible in the future

    t1 at the end of the identifier usually tells us that the files can be decrypted, but only in the future when someone with a generous hand send a decryption key with the developers of the decryptor.

    It may not happen soon or unexpectedly. Usually, victims cannot wait that long, they want to return everything as soon as possible.  
    Emsisoft is the only company trying to create and provide decryptors to victims for free. If it can be done, it will be done. If the victim is a business company, then there is another solution for this. A detailed investigation of the incident will be required.

    In some cases, when there is no other way to return files, I suggest the following methods. You can try them now.

    ---

    Why did this happen?

    This 'STOP Ransomware' enters the PC due to the fact that computer is poorly protected. People often use free antivirus programs with the 'Free' label in the name. None of these programs will protect PC from programs similar to 'STOP Ransomware', because basic protection is not capable of this feat.
    If users used comprehensive protection of the 'Internet Security' class, then it would help protect PC from ransomware attacks.

    There is no 100% protection against malware, but what the 'Free' antivirus gives is 1-2 percent protection. 

    After this attack, PCs could have stayed other malware elements. This maybe is an info-stealer and something else. Therefore, it is urgent to conduct a full check and destroy malware.

    Use an comprehensive anti-virus software such as Emsisoft Anti-Malware to effectively remove the malware. 
    You can get a free trial 30-days version of Emsisoft Anti-Malware here: https://www.emsisoft.com/en/home/antimalware/

    It will help you clean your PC from other malware for free.

    !!! You need to neutralize all malicious files in the system. This should be done as quickly as possible. Otherwise, the files may be encrypted using the online ID and decryption will never be possible.

  3. Only after neutralizing all malicious files ...

    I recommend this following method only when there is no other way... 

    This is not the decryption, it is the recovery of certain types of files using the features of these files.

    1) If you have encrypted ZIP/RAR archives, you can partially recover them. Only 1-2 files are damaged there. Remove the extension that the ransomware added to the archives, and extract the files in the usual way. Everything except 1-2 files will be fixed. If there is only 1 file in the archive, then it will most likely be unrecoverable.

    2) There is an alternative (additional) way to recover some media files:
    WAV, MP3, MP4, M4V, MOV, 3GP.

    https://www.disktuna.com/media_repair-file-repair-for-stop-djvu-mp3-mp4-3gp

    But before trying the alternative variant with media files, it is recommended that you make a copy of the encrypted files. Something will be restored better, something will be restored worse. 

    Some types of files can be opened (restored) using the application in which they were created. To do this, you must first remove the extension added by the ransomware. Then can try to open the file from the program in which it was created. If you open audio and video files in the editor, it will restore the structure, and upon closing it will offer to save the changes in the file.

    3) If you have PDFs or files of other e-books, then they may suffer in part if they were not protected from manual modification. Therefore, after removing the added extension, they can be partially read (~ 80%).

    Unfortunately, it is not yet possible to recover files created in MS Office applications due to their sensitivity to any damage. They can be easily damaged without encryption. It is easier to recover and read text written on paper or on the stone than one created in MS Office.

    An alternative method for other files has not yet been found. I understand that this will not be enough, but recovering some of the files is better than to lose everything...

  4. Quote

    an online ID, decryption is impossible

    Why did this happen?

    This 'STOP Ransomware' enters the PC due to the fact that computer is poorly protected. People often use free antivirus programs with the 'Free' label in the name. None of these programs will protect PC from programs similar to 'STOP Ransomware', because basic protection is not capable of this feat.
    If users used comprehensive protection of the 'Internet Security' class, then it would help protect PC from ransomware attacks.

    There is no 100% protection against malware, but what the 'Free' antivirus gives is 1-2 percent protection. 

    After this attack, PCs could have stayed other malware elements. This maybe is an info-stealer and something else. Therefore, it is urgent to conduct a full check and destroy malware.

    Use an comprehensive anti-virus software such as Emsisoft Anti-Malware to effectively remove the malware. 
    You can get a free trial 30-days version of Emsisoft Anti-Malware here: https://www.emsisoft.com/en/home/antimalware/

    It will help you clean your PC from other malware for free.

    !!! You need to neutralize all malicious files in the system. This should be done as quickly as possible. Otherwise, the files may be encrypted using the online ID and decryption will never be possible.

  5. Only after neutralizing all malicious files ...

    I recommend this following method only when there is no other way... 

    This is not the decryption, it is the recovery of certain types of files using the features of these files.

    1) If you have encrypted ZIP/RAR archives, you can partially recover them. Only 1-2 files are damaged there. Remove the extension that the ransomware added to the archives, and extract the files in the usual way. Everything except 1-2 files will be fixed. If there is only 1 file in the archive, then it will most likely be unrecoverable.

    2) There is an alternative (additional) way to recover some media files:
    WAV, MP3, MP4, M4V, MOV, 3GP.

    https://www.disktuna.com/media_repair-file-repair-for-stop-djvu-mp3-mp4-3gp

    But before trying the alternative variant with media files, it is recommended that you make a copy of the encrypted files. Something will be restored better, something will be restored worse. 

    Some types of files can be opened (restored) using the application in which they were created. To do this, you must first remove the extension added by the ransomware. Then can try to open the file from the program in which it was created. If you open audio and video files in the editor, it will restore the structure, and upon closing it will offer to save the changes in the file.

    3) If you have PDFs or files of other e-books, then they may suffer in part if they were not protected from manual modification. Therefore, after removing the added extension, they can be partially read (~ 80%).

    Unfortunately, it is not yet possible to recover files created in MS Office applications due to their sensitivity to any damage. They can be easily damaged without encryption. It is easier to recover and read text written on paper or on the stone than one created in MS Office.

    An alternative method for other files has not yet been found. I understand that this will not be enough, but recovering some of the files is better than to lose everything...

    • Like 1
  6. On 10/18/2021 at 6:29 AM, Seyox said:

    an online ID, decryption is impossible

    Why did this happen?

    This 'STOP Ransomware' enters the PC due to the fact that computer is poorly protected. People often use free antivirus programs with the 'Free' label in the name. None of these programs will protect PC from programs similar to 'STOP Ransomware', because basic protection is not capable of this feat.
    If users used comprehensive protection of the 'Internet Security' class, then it would help protect PC from ransomware attacks.

    There is no 100% protection against malware, but what the 'Free' antivirus gives is 1-2 percent protection. 

    After this attack, PCs could have stayed other malware elements. This maybe is an info-stealer and something else. Therefore, it is urgent to conduct a full check and destroy malware.

    Use an comprehensive anti-virus software such as Emsisoft Anti-Malware to effectively remove the malware. 
    You can get a free trial 30-days version of Emsisoft Anti-Malware here: https://www.emsisoft.com/en/home/antimalware/

    It will help you clean your PC from other malware for free.

    !!! You need to neutralize all malicious files in the system. This should be done as quickly as possible. Otherwise, the files may be encrypted using the online ID and decryption will never be possible.

    • Like 1
  7. Only after neutralizing all malicious files ...

    I recommend this following method only when there is no other way... 

    This is not the decryption, it is the recovery of certain types of files using the features of these files.

    1) If you have encrypted ZIP/RAR archives, you can partially recover them. Only 1-2 files are damaged there. Remove the extension that the ransomware added to the archives, and extract the files in the usual way. Everything except 1-2 files will be fixed. If there is only 1 file in the archive, then it will most likely be unrecoverable.

    2) There is an alternative (additional) way to recover some media files:
    WAV, MP3, MP4, M4V, MOV, 3GP.

    https://www.disktuna.com/media_repair-file-repair-for-stop-djvu-mp3-mp4-3gp

    But before trying the alternative variant with media files, it is recommended that you make a copy of the encrypted files. Something will be restored better, something will be restored worse. 

    Some types of files can be opened (restored) using the application in which they were created. To do this, you must first remove the extension added by the ransomware. Then can try to open the file from the program in which it was created. If you open audio and video files in the editor, it will restore the structure, and upon closing it will offer to save the changes in the file.

    3) If you have PDFs or files of other e-books, then they may suffer in part if they were not protected from manual modification. Therefore, after removing the added extension, they can be partially read (~ 80%).

    Unfortunately, it is not yet possible to recover files created in MS Office applications due to their sensitivity to any damage. They can be easily damaged without encryption. It is easier to recover and read text written on paper or on the stone than one created in MS Office.

    An alternative method for other files has not yet been found. I understand that this will not be enough, but recovering some of the files is better than to lose everything...

  8. 2 hours ago, kathir said:

    this ID appears to be an online ID, decryption is impossible

    Why did this happen?

    This 'STOP Ransomware' enters the PC due to the fact that computer is poorly protected. People often use free antivirus programs with the 'Free' label in the name. None of these programs will protect PC from programs similar to 'STOP Ransomware', because basic protection is not capable of this feat.
    If users used comprehensive protection of the 'Internet Security' class, then it would help protect PC from ransomware attacks.

    There is no 100% protection against malware, but what the 'Free' antivirus gives is 1-2 percent protection. 

    After this attack, PCs could have stayed other malware elements. This maybe is an info-stealer and something else. Therefore, it is urgent to conduct a full check and destroy malware.

    Use an comprehensive anti-virus software such as Emsisoft Anti-Malware to effectively remove the malware. 
    You can get a free trial 30-days version of Emsisoft Anti-Malware here: https://www.emsisoft.com/en/home/antimalware/

    It will help you clean your PC from other malware for free.

    !!! You need to neutralize all malicious files in the system. This should be done as quickly as possible. Otherwise, the files may be encrypted using the online ID and decryption will never be possible.

  9. Only after neutralizing all malicious files ...

    I recommend this following method only when there is no other way... 

    This is not the decryption, it is the recovery of certain types of files using the features of these files.

    1) If you have encrypted ZIP/RAR archives, you can partially recover them. Only 1-2 files are damaged there. Remove the extension that the ransomware added to the archives, and extract the files in the usual way. Everything except 1-2 files will be fixed. If there is only 1 file in the archive, then it will most likely be unrecoverable.

    2) There is an alternative (additional) way to recover some media files:
    WAV, MP3, MP4, M4V, MOV, 3GP.

    https://www.disktuna.com/media_repair-file-repair-for-stop-djvu-mp3-mp4-3gp

    But before trying the alternative variant with media files, it is recommended that you make a copy of the encrypted files. Something will be restored better, something will be restored worse. 

    Some types of files can be opened (restored) using the application in which they were created. To do this, you must first remove the extension added by the ransomware. Then can try to open the file from the program in which it was created. If you open audio and video files in the editor, it will restore the structure, and upon closing it will offer to save the changes in the file.

    3) If you have PDFs or files of other e-books, then they may suffer in part if they were not protected from manual modification. Therefore, after removing the added extension, they can be partially read (~ 80%).

    Unfortunately, it is not yet possible to recover files created in MS Office applications due to their sensitivity to any damage. They can be easily damaged without encryption. It is easier to recover and read text written on paper or on the stone than one created in MS Office.

    An alternative method for other files has not yet been found. I understand that this will not be enough, but recovering some of the files is better than to lose everything...

  10. In some cases, when there is no other way to return files, I suggest the following methods. You can try them now.

    ---

    Why did this happen?

    This 'STOP Ransomware' enters the PC due to the fact that computer is poorly protected. People often use free antivirus programs with the 'Free' label in the name. None of these programs will protect PC from programs similar to 'STOP Ransomware', because basic protection is not capable of this feat.
    If users used comprehensive protection of the 'Internet Security' class, then it would help protect PC from ransomware attacks.

    There is no 100% protection against malware, but what the 'Free' antivirus gives is 1-2 percent protection. 

    After this attack, PCs could have stayed other malware elements. This maybe is an info-stealer and something else. Therefore, it is urgent to conduct a full check and destroy malware.

    Use an comprehensive anti-virus software such as Emsisoft Anti-Malware to effectively remove the malware. 
    You can get a free trial 30-days version of Emsisoft Anti-Malware here: https://www.emsisoft.com/en/home/antimalware/

    It will help you clean your PC from other malware for free.

    !!! You need to neutralize all malicious files in the system. This should be done as quickly as possible. Otherwise, the files may be encrypted using the online ID and decryption will never be possible.

  11. Only after neutralizing all malicious files ...

    I recommend this following method only when there is no other way... 

    This is not the decryption, it is the recovery of certain types of files using the features of these files.

    1) If you have encrypted ZIP/RAR archives, you can partially recover them. Only 1-2 files are damaged there. Remove the extension that the ransomware added to the archives, and extract the files in the usual way. Everything except 1-2 files will be fixed. If there is only 1 file in the archive, then it will most likely be unrecoverable.

    2) There is an alternative (additional) way to recover some media files:
    WAV, MP3, MP4, M4V, MOV, 3GP.

    https://www.disktuna.com/media_repair-file-repair-for-stop-djvu-mp3-mp4-3gp

    But before trying the alternative variant with media files, it is recommended that you make a copy of the encrypted files. Something will be restored better, something will be restored worse. 

    Some types of files can be opened (restored) using the application in which they were created. To do this, you must first remove the extension added by the ransomware. Then can try to open the file from the program in which it was created. If you open audio and video files in the editor, it will restore the structure, and upon closing it will offer to save the changes in the file.

    3) If you have PDFs or files of other e-books, then they may suffer in part if they were not protected from manual modification. Therefore, after removing the added extension, they can be partially read (~ 80%).

    Unfortunately, it is not yet possible to recover files created in MS Office applications due to their sensitivity to any damage. They can be easily damaged without encryption. It is easier to recover and read text written on paper or on the stone than one created in MS Office.

    An alternative method for other files has not yet been found. I understand that this will not be enough, but recovering some of the files is better than to lose everything...

  12. In some cases, when there is no other way to return files, I suggest the following methods. You can try them now.

    ---

    Why did this happen?

    This 'STOP Ransomware' enters the PC due to the fact that computer is poorly protected. People often use free antivirus programs with the 'Free' label in the name. None of these programs will protect PC from programs similar to 'STOP Ransomware', because basic protection is not capable of this feat.
    If users used comprehensive protection of the 'Internet Security' class, then it would help protect PC from ransomware attacks.

    There is no 100% protection against malware, but what the 'Free' antivirus gives is 1-2 percent protection. 

    After this attack, PCs could have stayed other malware elements. This maybe is an info-stealer and something else. Therefore, it is urgent to conduct a full check and destroy malware.

    Use an comprehensive anti-virus software such as Emsisoft Anti-Malware to effectively remove the malware. 
    You can get a free trial 30-days version of Emsisoft Anti-Malware here: https://www.emsisoft.com/en/home/antimalware/

    It will help you clean your PC from other malware for free.

    !!! You need to neutralize all malicious files in the system. This should be done as quickly as possible. Otherwise, the files may be encrypted using the online ID and decryption will never be possible.

  13. Only after neutralizing all malicious files ...

    I recommend this following method only when there is no other way... 

    This is not the decryption, it is the recovery of certain types of files using the features of these files.

    1) If you have encrypted ZIP/RAR archives, you can partially recover them. Only 1-2 files are damaged there. Remove the extension that the ransomware added to the archives, and extract the files in the usual way. Everything except 1-2 files will be fixed. If there is only 1 file in the archive, then it will most likely be unrecoverable.

    2) There is an alternative (additional) way to recover some media files:
    WAV, MP3, MP4, M4V, MOV, 3GP.

    https://www.disktuna.com/media_repair-file-repair-for-stop-djvu-mp3-mp4-3gp

    But before trying the alternative variant with media files, it is recommended that you make a copy of the encrypted files. Something will be restored better, something will be restored worse. 

    Some types of files can be opened (restored) using the application in which they were created. To do this, you must first remove the extension added by the ransomware. Then can try to open the file from the program in which it was created. If you open audio and video files in the editor, it will restore the structure, and upon closing it will offer to save the changes in the file.

    3) If you have PDFs or files of other e-books, then they may suffer in part if they were not protected from manual modification. Therefore, after removing the added extension, they can be partially read (~ 80%).

    Unfortunately, it is not yet possible to recover files created in MS Office applications due to their sensitivity to any damage. They can be easily damaged without encryption. It is easier to recover and read text written on paper or on the stone than one created in MS Office.

    An alternative method for other files has not yet been found. I understand that this will not be enough, but recovering some of the files is better than to lose everything...

  14. In some cases, when there is no other way to return files, I suggest the following methods. You can try them now.

    ---

    Why did this happen?

    This 'STOP Ransomware' enters the PC due to the fact that computer is poorly protected. People often use free antivirus programs with the 'Free' label in the name. None of these programs will protect PC from programs similar to 'STOP Ransomware', because basic protection is not capable of this feat.
    If users used comprehensive protection of the 'Internet Security' class, then it would help protect PC from ransomware attacks.

    There is no 100% protection against malware, but what the 'Free' antivirus gives is 1-2 percent protection. 

    After this attack, PCs could have stayed other malware elements. This maybe is an info-stealer and something else. Therefore, it is urgent to conduct a full check and destroy malware.

    Use an comprehensive anti-virus software such as Emsisoft Anti-Malware to effectively remove the malware. 
    You can get a free trial 30-days version of Emsisoft Anti-Malware here: https://www.emsisoft.com/en/home/antimalware/

    It will help you clean your PC from other malware for free.

    !!! You need to neutralize all malicious files in the system. This should be done as quickly as possible. Otherwise, the files may be encrypted using the online ID and decryption will never be possible.

  15. Only after neutralizing all malicious files ...

    I recommend this following method only when there is no other way... 

    This is not the decryption, it is the recovery of certain types of files using the features of these files.

    1) If you have encrypted ZIP/RAR archives, you can partially recover them. Only 1-2 files are damaged there. Remove the extension that the ransomware added to the archives, and extract the files in the usual way. Everything except 1-2 files will be fixed. If there is only 1 file in the archive, then it will most likely be unrecoverable.

    2) There is an alternative (additional) way to recover some media files:
    WAV, MP3, MP4, M4V, MOV, 3GP.

    https://www.disktuna.com/media_repair-file-repair-for-stop-djvu-mp3-mp4-3gp

    But before trying the alternative variant with media files, it is recommended that you make a copy of the encrypted files. Something will be restored better, something will be restored worse. 

    Some types of files can be opened (restored) using the application in which they were created. To do this, you must first remove the extension added by the ransomware. Then can try to open the file from the program in which it was created. If you open audio and video files in the editor, it will restore the structure, and upon closing it will offer to save the changes in the file.

    3) If you have PDFs or files of other e-books, then they may suffer in part if they were not protected from manual modification. Therefore, after removing the added extension, they can be partially read (~ 80%).

    Unfortunately, it is not yet possible to recover files created in MS Office applications due to their sensitivity to any damage. They can be easily damaged without encryption. It is easier to recover and read text written on paper or on the stone than one created in MS Office.

    An alternative method for other files has not yet been found. I understand that this will not be enough, but recovering some of the files is better than to lose everything...

  16. Hello @feras

    In some cases, when there is no other way to return files, I suggest the following methods. You can try them now.

    Why did this happen?

    This 'STOP Ransomware' enters the PC due to the fact that computer is poorly protected. People often use free antivirus programs with the 'Free' label in the name. None of these programs will protect PC from programs similar to 'STOP Ransomware', because basic protection is not capable of this feat.
    If users used comprehensive protection of the 'Internet Security' class, then it would help protect PC from ransomware attacks.

    There is no 100% protection against malware, but what the 'Free' antivirus gives is 1-2 percent protection. 

    After this attack, PCs could have stayed other malware elements. This maybe is an info-stealer and something else. Therefore, it is urgent to conduct a full check and destroy malware.

    Use an comprehensive anti-virus software such as Emsisoft Anti-Malware to effectively remove the malware. 
    You can get a free trial 30-days version of Emsisoft Anti-Malware here: https://www.emsisoft.com/en/home/antimalware/

    It will help you clean your PC from other malware for free.

    !!! You need to neutralize all malicious files in the system. This should be done as quickly as possible. Otherwise, the files may be encrypted using the online ID and decryption will never be possible.

  17. Only after neutralizing all malicious files ...

    I recommend this following method only when there is no other way... 

    This is not the decryption, it is the recovery of certain types of files using the features of these files.

    1) If you have encrypted ZIP/RAR archives, you can partially recover them. Only 1-2 files are damaged there. Remove the extension that the ransomware added to the archives, and extract the files in the usual way. Everything except 1-2 files will be fixed. If there is only 1 file in the archive, then it will most likely be unrecoverable.

    2) There is an alternative (additional) way to recover some media files:
    WAV, MP3, MP4, M4V, MOV, 3GP.

    https://www.disktuna.com/media_repair-file-repair-for-stop-djvu-mp3-mp4-3gp

    But before trying the alternative variant with media files, it is recommended that you make a copy of the encrypted files. Something will be restored better, something will be restored worse. 

    Some types of files can be opened (restored) using the application in which they were created. To do this, you must first remove the extension added by the ransomware. Then can try to open the file from the program in which it was created. If you open audio and video files in the editor, it will restore the structure, and upon closing it will offer to save the changes in the file.

    3) If you have PDFs or files of other e-books, then they may suffer in part if they were not protected from manual modification. Therefore, after removing the added extension, they can be partially read (~ 80%).

    Unfortunately, it is not yet possible to recover files created in MS Office applications due to their sensitivity to any damage. They can be easily damaged without encryption. It is easier to recover and read text written on paper or on the stone than one created in MS Office.

    An alternative method for other files has not yet been found. I understand that this will not be enough, but recovering some of the files is better than to lose everything...

  18. Why did this happen?

    This 'STOP Ransomware' enters the PC due to the fact that computer is poorly protected. People often use free antivirus programs with the 'Free' label in the name. None of these programs will protect PC from programs similar to 'STOP Ransomware', because basic protection is not capable of this feat.
    If users used comprehensive protection of the 'Internet Security' class, then it would help protect PC from ransomware attacks.

    There is no 100% protection against malware, but what the 'Free' antivirus gives is 1-2 percent protection. 

    After this attack, PCs could have stayed other malware elements. This maybe is an info-stealer and something else. Therefore, it is urgent to conduct a full check and destroy malware.

    Use an comprehensive anti-virus software such as Emsisoft Anti-Malware to effectively remove the malware. 
    You can get a free trial 30-days version of Emsisoft Anti-Malware here: https://www.emsisoft.com/en/home/antimalware/

    It will help you clean your PC from other malware for free.

    !!! You need to neutralize all malicious files in the system. This should be done as quickly as possible. Otherwise, the files may be encrypted using the online ID and decryption will never be possible.

  19. Only after neutralizing all malicious files ...

    I recommend this following method only when there is no other way... 

    This is not the decryption, it is the recovery of certain types of files using the features of these files.

    1) If you have encrypted ZIP/RAR archives, you can partially recover them. Only 1-2 files are damaged there. Remove the extension that the ransomware added to the archives, and extract the files in the usual way. Everything except 1-2 files will be fixed. If there is only 1 file in the archive, then it will most likely be unrecoverable.

    2) There is an alternative (additional) way to recover some media files:
    WAV, MP3, MP4, M4V, MOV, 3GP.

    https://www.disktuna.com/media_repair-file-repair-for-stop-djvu-mp3-mp4-3gp

    But before trying the alternative variant with media files, it is recommended that you make a copy of the encrypted files. Something will be restored better, something will be restored worse. 

    Some types of files can be opened (restored) using the application in which they were created. To do this, you must first remove the extension added by the ransomware. Then can try to open the file from the program in which it was created. If you open audio and video files in the editor, it will restore the structure, and upon closing it will offer to save the changes in the file.

    3) If you have PDFs or files of other e-books, then they may suffer in part if they were not protected from manual modification. Therefore, after removing the added extension, they can be partially read (~ 80%).

    Unfortunately, it is not yet possible to recover files created in MS Office applications due to their sensitivity to any damage. They can be easily damaged without encryption. It is easier to recover and read text written on paper or on the stone than one created in MS Office.

    An alternative method for other files has not yet been found. I understand that this will not be enough, but recovering some of the files is better than to lose everything...

  20. On 10/17/2021 at 7:11 AM, D.Z said:

    Error: No key for New Variant offline ID: PUYef3QgyNaY7l8zzvWo4yIuFfw9blf3NZjYd3t1
    Notice: this ID appears be an offline ID, decryption MAY be possible in the future

    In some cases, when there is no other way to return files, I suggest the following methods. You can try them now.

    Why did this happen?

    This 'STOP Ransomware' enters the PC due to the fact that computer is poorly protected. People often use free antivirus programs with the 'Free' label in the name. None of these programs will protect PC from programs similar to 'STOP Ransomware', because basic protection is not capable of this feat.
    If users used comprehensive protection of the 'Internet Security' class, then it would help protect PC from ransomware attacks.

    There is no 100% protection against malware, but what the 'Free' antivirus gives is 1-2 percent protection. 

    After this attack, PCs could have stayed other malware elements. This maybe is an info-stealer and something else. Therefore, it is urgent to conduct a full check and destroy malware.

    Use an comprehensive anti-virus software such as Emsisoft Anti-Malware to effectively remove the malware. 
    You can get a free trial 30-days version of Emsisoft Anti-Malware here: https://www.emsisoft.com/en/home/antimalware/

    It will help you clean your PC from other malware for free.

    !!! You need to neutralize all malicious files in the system. This should be done as quickly as possible. Otherwise, the files may be encrypted using the online ID and decryption will never be possible.

×
×
  • Create New...