Jump to content

ShadowPuterDude

Emsisoft Employee
  • Posts

    19501
  • Joined

  • Last visited

  • Days Won

    201

ShadowPuterDude last won the day on November 26

ShadowPuterDude had the most liked content!

Reputation

343 Excellent

About ShadowPuterDude

  • Birthday 12/04/1960

Contact Methods

  • Website URL
    http://www.malwareteks.com/

Profile Information

  • Gender
    Male
  • Location
    USA
  • Interests
    Computer Security, Malware Research, Malware Removal, Computer Programming, Website Design

Recent Profile Visitors

179004 profile views
  1. Hello @AntónioFidalgo, Welcome to the Emsisoft Support Forums. I understand it is frustrating, but currently, we are not aware of any ways to decrypt files with Online-ID and some recent forms of STOP(DJVU). Please read this Topic. It contains information about your situation and whether or not your files can be decrypted. https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  2. I understand it is frustrating, but currently, we cannot decrypt files that we do not have the Private Encryption Key in our Database. There's the possibility that law enforcement may be able to catch the criminals and release their database of private keys, meaning that you could try again using the tool in a few weeks in case something changed. We do not recommend paying the ransom unless there is absolutely no other choice. 22% of those who paid a ransom never got access to their data. 9% said they got hit with additional ransom demands after paying. We’re talking about criminals, after all. Our recommendation is to save a backup of your encrypted files and keep it in a safe place in case decryption is possible at some point in the future. Please review our Protection Guides at your leisure, they contain several tips on protecting your computer and data. https://blog.emsisoft.com/en/category/protection-guides/ We also recommend keeping an eye on BleepingComputer's newsfeed, as they will usually report on new developments with ransomware decrypters: https://www.bleepingcomputer.com/ If you have an RSS feed reader, then they also have an RSS feed so that you don't have to manually check for news: https://www.bleepingcomputer.com/feed/ Please consider subscribing to a reliable anti-malware application to avoid similar issues in the future. You can get our full version of Emsisoft Anti-Malware here: https://www.emsisoft.com/en/pricing/ I know it’s a big loss for you. We are glad to offer this service for free and help as much as we can, but there is not always an immediate resolution for all the cases.
  3. Old variant and new variant is the infection itself, not the decryption tool. Unless we have the Private Encryption Key, for your file ID, in our database; decryption is not possible. Only the criminals have that key.
  4. Hello @shashikant007, Welcome to the Emsisoft Support Forums. I understand it is frustrating, but currently, we cannot decrypt files with an Offline-ID that we do not have the Private Encryption Key in our Database. Please read this Topic. It contains information about your situation and whether or not your files can be decrypted. https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/
  5. Our developers are going to need some debugging logs. To enable debugging mode: Open Emsisoft Anti-Malware, then click the settings tile, then the 'Advanced' tab. Scroll down a bit, then use the last option in the advanced section, 'Debug logging', to enable debug logging for one day. Leaving it on always isn't recommended because logs will fill the hard drive eventually. Close the Emsisoft Anti-Malware window after making your selection. Restart the computer. This is mandatory for the logs to be created completely. Reproduce the issue you are having, twice if possible. The issue must occur, or the logs won't be of any use. (Please read the note below before continuing) Once you have reproduced the issue, open Emsisoft Anti-Malware again, and click on the Support icon which is the chat bubble in the lower left corner, then click on the button that says "Send an email". Select everything in the right hand column that shows today's dates. Fill in the e-mail contact form, then click on "Send now" at the bottom once you are ready to send the logs. If the logs are too large to send my email, you can use WeTransfer to send us the logs. Note: If you like, you may just compress and email or upload to a file sharing location the following folder instead of using the in-program form, skipping step 3: C:\ProgramData\Emsisoft\Logs\ (note ProgramData is a hidden folder) and also C:\Program Files\Emsisoft Anti-Malware\Logs\Logs.db3. *Important* Please be sure to turn debug logging back off after sending us the logs. There are some negative effects to having debug logging turned on, such as reduced performance and wasting hard drive space, and it is not recommended to leave debug logging turned on for a long period of time unless it is necessary to collect debug logs.
  6. Hello @Lynk, Anything you schedule to start during Windows startup will slow down the startup process. Especially, scheduling a scan to run during Windows startup. Scans are resource intensive and depending on how large the hard drive and the amount of files it could take hours to complete the scan. Making it very difficult to use the system for anything while the scan is running.
  7. Hello @Yellowstone Computing, I have replicated the issue and am forwarding this to our labteam for further investigation.
×
×
  • Create New...