rizkyismail

help my pc :(( infected with .madek virus

Recommended Posts

extension .madek

This is the result of the STOP Ransomware attack. I have been tracking the malicious work of this program since December 2017. 
Now on the forum a lot of victims from different variants of this Ransomware. In some cases, the files can be decrypted. 

I do not see here a ransom note _readme.txt with your ID here that I can say something. You need to attach a ransom note to the message, or farther act by himself.

@Demonslay335  (the developer of the STOPDecrypter) collects information from the victims, writes data and tries to update the STOP Decrypter. After that, victims can try to decrypt the files. A positive result and a lucky chance are not always possible. 

Download STOP Decrypter now >>>

First you need to try to decrypt a small group of files, but first you need to make copies of these files.

If STOPDecrypter won't be able to recover your files yet, it can still be used to get information that may be able to help the creator of STOPDecrypter figure out your decryption key. Here's a link to instructions on how to get this information with STOPDecrypter:
https://kb.gt500.org/stopdecrypter 

Share this post


Link to post
Share on other sites

Hello, I need some help. My PC also encrypted by this ransomware. the readme.txt shows something like this.

 

ATTENTION!

Don't worry, you can return all your files!
All your files like photos, databases, documents and other important are encrypted with strongest encryption and unique key.
The only method of recovering files is to purchase decrypt tool and unique key for you.
This software will decrypt all your encrypted files.
What guarantees you have?
You can send one of your encrypted file from your PC and we decrypt it for free.
But we can decrypt only 1 file for free. File must not contain valuable information.
You can get and look video overview decrypt tool:
https://we.tl/t-JBwR4re7bR
Price of private key and decrypt software is $980.
Discount 50% available if you contact us first 72 hours, that's price for you is $490.
Please note that you'll never restore your data without payment.
Check your e-mail "Spam" or "Junk" folder if you don't get answer more than 6 hours.


To get this software you need write on our e-mail:
[email protected]

Reserve e-mail address to contact us:
[email protected]

Our Telegram account:
@datarestore
Mark Data Restore

Your personal ID:
120Asdu374idfgZ1onKhyqPlWSwvAiopzKCHo0LbnWictyaEZHRD2L

Could somebody update the decryption tool with this ID? Thank you very much. I would appreciate any input too.

 

By the way here the result from the decryption tool

[+] Loaded 57 offline keys
Please archive the following info in case of future decryption:
[*] ID: Z1onKhyqPlWSwvAiopzKCHo0LbnWictyaEZHRD2L
[*] ID: 68O9eTFDNbn8z2O956vweaL1v2GY5gvWBYMKcmt1
[*] MACs: 08:3E:8E:A5:AC:43
This info has also been logged to STOPDecrypter-log.txt

 

Share this post


Link to post
Share on other sites
On 7/20/2019 at 3:10 PM, anandafa said:

[+] Loaded 57 offline keys
Please archive the following info in case of future decryption:
[*] ID: Z1onKhyqPlWSwvAiopzKCHo0LbnWictyaEZHRD2L
[*] ID: 68O9eTFDNbn8z2O956vweaL1v2GY5gvWBYMKcmt1
[*] MACs: 08:3E:8E:A5:AC:43
This info has also been logged to STOPDecrypter-log.txt

I've forwarded your ID and MAC addresses to the creator of STOPDecrypter so that he can archive them in case he is able to figure out your decryption key at some point in the future.

All you have to do now is give us some time, and we'll do what we can for you.

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    No registered users viewing this page.