Jump to content

Karel Szkandera

  • Posts

  • Joined

  • Last visited


0 Neutral
  1. I think for the variant "[email protected]" I found a pair of files for decryptor, but for the second variant "[email protected]" I did not find a suitable pair. There are about 56 files that have been encrypted only by this variant, but they are mostly log files to which I do not have an unencrypted files. There are also several dll libraries, but libraries with the same name that I have on my computer have a different size. Is there any other way to deal with it? At attachment, there is list of files which was decrypt only by variant [email protected] list of files_qq.csv
  2. Thank you for your answer, however unpleasant. I suppose that such couples will probably not be found. So I'm going to look.
  3. Hi, our server was attacked by ransomware. Website https://id-ransomware.malwarehunterteam.com/identify.php? says, it should be Xorist. I tried your Emsisoft Decrypter for Xorist, but i think, the results is not correct. It generated "decryption.key", but after decrypting of selected files, these files couldn't be open. In attachments is sample. Could you give me any advice? attachments: sample.zip not attacked file "DocExcel - not attacked.png" attacked file result file from decrypter "DocExcel.png" - it could be open notes from ransomware (HOW TO DECRYPT FILES) decryption_key system Logs: Emsisoft Emergency Kit log FRST.txt Addition.txt Thank you, Karel sample.zip FRST.txt Addition.txt scan_170613-170721.txt
  • Create New...