Also how to prevent getting ransomware: 1. Run a modern operating system. 2. Make sure you’re running the latest version with the latest security patches. 3. Run a AV with behavior detection and keep it up to date. 4. Don’t click on links you don't trust. 5. Have some common sense. Bill gates didn't choose to give you 1 million dollars.
@fares ayham That's why you use trusted and updated AV. Anyone who says AV doesn't work is a fucking retard and their computer is probably filled with malware that they aren't even aware they have.
so our pcs at work got ransomware. i got lucky and shutdown pc. i popped out harddrive and browsed files on another pc and noticed half my files were encrypted and the other half were ok...i could open them fine. question is there a possibility the ransomware could re infect another pc if i copy the un encrypted files to a new pc? what would be the best way to verify the non-encrypted files are safe?
Prevention and Backup are equally important. If you value your data and don't use both, you're negligent. Be sure to use a backup solution that protects your backup files from deletion, such as Macrium Reflect.
There is another option often not mentioned, data recovery from the hard disk. Generally the ransomware will read a file encrypt it and delete the source, leaving this way the data on the disk.
Hello, my pc just encrypted by MKP ransomware and i lost all of my data Since i didn't have any back up from last year. Can you decrypting MKP files too?
Greetings, i got infected with a new version of Stop / djvu (.powd) with encryption key online, so emisoft decryotor does not go. Digging a bit, I managed to recover two text files, one with the "public key" and one with the personal id (not the ransom note id), the file is called personalID.txt. Having these two pieces of information, can I get to the private key? Or, when the virus does all its work, is there an exact moment when it creates the private key in some file (like for the public one) and sends it to its server before deleting it? Thank you.
Or just have a number of backups of the critical data, and you won't even care if it gets encrypted. Just annoying to have to reinstall the os and restore the data, but that's all.
Be careful when you call one of the guys from the comment. I called and pay 100 CAD$ and he did not do anything on the end he told that I should pay another 100CAD$
Good evening guys. Please I need help, some virus infected my computer but I deleted it. However I can't read all my files because they extend to .ytbn PLEASE HELP ME.
Loved the LotR reference! On a different note, could you do a series on the effectiveness of different AV recovery CD (when you need to desinfect a critically infected computer)? Could you start with Kaspersky's tool? Thanks
Thanks for sharing the guide. -- It's simple; > Dont click on dodgy links ; Helpful extensions; Emsisoft Browser Security , Https Everywhere & Ublock Origin > Always enable '' Ask where to save each file before downloading '' on web browsers > Make sure AV & OS is fully updated > Always backup data via Cloud
My files cannot be encrypted 😭 im stressed out since I cannot open my school files on online clase because of this .wrui. i dont have any more choice but to format my laptop huhu 😭😭
I clean installed windows 10 twice now this week. Im getting malware that disables windows update and windows defender and uninstalled my antivirus kaspersky and bitdefender. i found out that Hitman Pro removal tool gave me the virus. idk why virus removal giving me virus lmao
Tall Paul PDK i think its the samsung magician app for my ssd. When i install it, smartscreen will prompt like do u need to run this? As i thought why wouldnt i? I downloaded it from official website then i installed that shit and after i restart my computer i got malwares i noticed when my antivirus is not opening. I dont even have pirated games
My external hard drive was affected back in 2016 by CryptXXX. I have the tools but it said I need the original files for it to work. That I do not have because they're on my external hard drive. is there another way to get them decrypted? All of these are photos and videos from a good chunk of my life.
Most malware can be circumvented with some relatively sly computing skills, but an rsa encrypted ransomware is the real deal. There really isn’t much that can be done for that. Even if you pay the ransom, the attacker has no obligation to give you your files back.
@@harshitmakwana3515 if they give you the private key to unlock all your stuff then that’s great. But that does not speak to their trustworthiness. Again, they have no obligation to help you at all. If you pay, they win. If you dont, your stuff is deleted and they move on. There’s nothing for them to lose in the transaction and that is what makes them untrustworthy.
Hi .. does this work for hoop virus i was attacked by online id and emisoft cant decrypt the files .. so my question can i get the key this way from online attacker ? And then use emisoft ? Note: i installed new windows to remove the virus as it got my whole system
I have a question... What if (as a prevention) we keep a copies of a few files in our PC. Is there like a program that can (when we get ransomware) compare 2 of the same file (maybe even multiple pairs) and figure out the key ?
What should I do if the encrypted files are with Online-ID?? I have asked the support assistant of emsisoft and spyhunter and they can't decrypt it. Any suggestion before I format and reinstall my pc? The infection is already quarantined by spyhunter and I just need to get my files back.
@The PC Security Channel It's been more than 6 months i guess and i am still waiting for the decryptor of Lolkek/Bitransomare from Emsisoft or any other source. I hope someone is on it and creates one soon enough :(
they have me a pc and hdd with a 2016 cryptlocker ransomware (yes the owners never noticed, until I told them it was a virus), who still struggle to recover the files, the pc has been infected 03/02/2016 and I realized why even the recovery image of windows 7 from 12gb, has been infected with. encrypted, and although the pc has avas installed, bitdefender.mcfee. they caught the virus, I tried various file recovery and decrypt tools, but nothing doesn't work, this 2016 cryptolocker that encrypts files with the .encrypted extension is among the deadliest they have created and not even bleeping computer ones have managed to decrypt the files, if they have created something to do decrypt for .encrypted I want to know, jigasaw and other recovery tools have not succeeded, also before I was using PHOTREC testdisk and at the moment of saving the file from error, however I just have to recover the photos from that hdd always if possible
Hello, on 19.11.2020 I was infected with .makop virus and all my childhood photos were encrypted. I sent a decryption file to the hackers and they returned it fixed for me. For other information, they asked me for an unaffordable amount of money, which I did not pay. I copied all the infected files to an external hard drive. I bought a new hard drive and installed a new Windows. Is it possible to decrypt encrypted photos from childhood?
It says that the “ Id appears to be an online ID , Decryption is impossible “ Can you suggest something please ? There are some important in files in there .
Also how to prevent getting ransomware:
1. Run a modern operating system.
2. Make sure you’re running the latest version with the latest security patches.
3. Run a AV with behavior detection and keep it up to date.
4. Don’t click on links you don't trust.
5. Have some common sense. Bill gates didn't choose to give you 1 million dollars.
dont use pirated stuff
@@starnice5559 TLauncher? Hell yeah... Oh, wait! Virus? Jigsaw? Noooooo!
@@starnice5559 impossible to not use pirated stuff , not everyone is rich to buy every game and software they need
fares ayham Yeah but at that time Windows 7 was still being supported. And avast most likely had wannacry in their signatures pretty fast.
@fares ayham That's why you use trusted and updated AV.
Anyone who says AV doesn't work is a fucking retard and their computer is probably filled with malware that they aren't even aware they have.
Joke's on them, I needed those files destroyed anyway.
That's the spirit.
WWG1WGA UK exactly
nooooooo my homework folder
You're lucky in this situation but for most people this is really depressing.
@jiya sharma omg just happend to me a few mins ago hahah
so our pcs at work got ransomware. i got lucky and shutdown pc. i popped out harddrive and browsed files on another pc and noticed half my files were encrypted and the other half were ok...i could open them fine. question is there a possibility the ransomware could re infect another pc if i copy the un encrypted files to a new pc? what would be the best way to verify the non-encrypted files are safe?
Prevention and Backup are equally important. If you value your data and don't use both, you're negligent. Be sure to use a backup solution that protects your backup files from deletion, such as Macrium Reflect.
I can read ransomware infected files. It says, uh, give me like 50 yrs
ScytheBlader ツ lol
ツ
My Man Says GTX 2080! 🤣🤣🤣 Great video though!!!
Great Information, and loved the Humor as well.
There is another option often not mentioned, data recovery from the hard disk. Generally the ransomware will read a file encrypt it and delete the source, leaving this way the data on the disk.
I always keep a copy of my data in an external HDD, not one but 2. Just encase....
If it is plugged and the ransomware gets permissions to it. It is not going to help.
Who you lieing
Having my MS Paint-Projects in a separate 20TB Raid5 Storage. Just in case.
"encase" LULW
@@babulsingh7521 "who you lieing" OMEGALUL
the first method is literally:meet the engineer
Thanks! Will narrow down the time of the attack to minutes and do a memory dump. Sadly decryptor is not jet available.
Hello, my pc just encrypted by MKP ransomware and i lost all of my data
Since i didn't have any back up from last year. Can you decrypting MKP files too?
Hello Leo! Can you make a video of how to make your own VM for testing whiteout damage your PC or Network?
Greetings,
i got infected with a new version of Stop / djvu (.powd) with encryption key online, so emisoft decryotor does not go. Digging a bit, I managed to recover two text files, one with the "public key" and one with the personal id (not the ransom note id), the file is called personalID.txt. Having these two pieces of information, can I get to the private key? Or, when the virus does all its work, is there an exact moment when it creates the private key in some file (like for the public one) and sends it to its server before deleting it? Thank you.
I got a .kasp virus on ALL my files, and scanned with Emsisoft and sadly did not work. Great explanation though, and are there any fixes for me?
Ransomeware: I'm gonna encrypt your files.
Me: I have Kaspersky.
@Emme jac Of course, AVs are after all an add-on.
BITDEFENDER
Great video. Appreciate the info.
I’m interested in practicing this, where did you download the jigsaw ransomware from and did you run it in a vm?
Or just have a number of backups of the critical data, and you won't even care if it gets encrypted. Just annoying to have to reinstall the os and restore the data, but that's all.
thanks so much u just saved me from my moms belt since she uses my pc to use her Pc files (shes a teacher and uses my pc to do her job)
Thanks again!
Hello can you help me i lost all of dnSpy options and i cant recover them ??
Be careful when you call one of the guys from the comment. I called and pay 100 CAD$ and he did not do anything on the end he told that I should pay another 100CAD$
Instagram windows 11. In a virtual machine and still got ransom wear with protection
Good evening guys. Please I need help, some virus infected my computer but I deleted it. However I can't read all my files because they extend to .ytbn PLEASE HELP ME.
I used decrypSTOPDjvu like Emsisoft but no action, the App says " Decrypt files is impossible"
In my case file extension is. moqs how decrypt?? Plz hlp
Loved the LotR reference! On a different note, could you do a series on the effectiveness of different AV recovery CD (when you need to desinfect a critically infected computer)? Could you start with Kaspersky's tool? Thanks
Hey how do I decrypt .BbEADDcCbB files please respond for me
Who told you to install 3rd party unsecured files ... You never get your files back... Forget it.....😭
@@jugal6378 your mother told him
@@julikb Find your lost files at Atlantic sea.
please help for .rrbb ransome
Thanks for sharing the guide.
--
It's simple;
> Dont click on dodgy links ; Helpful extensions; Emsisoft Browser Security , Https Everywhere & Ublock Origin
> Always enable '' Ask where to save each file before downloading
'' on web browsers
> Make sure AV & OS is fully updated
> Always backup data via Cloud
Why should I do the second one?
@@tesohh So files aren't shadow downloaded and autorun
If you have a exact unencrypted copy of a file, could you somehow find the key with it?
Yesn't
If the malware author has not randomized the IV or uses ECB, or uses XOR then it may work, i think.
Depends on the ransomware. If they implement crypto properly, then no. This is already something we factor when trying to develop decryptors.
@@malwaretestingfan Just because it's ECB block mode or a static IV doesn't mean you can recover the key thru a known-plaintext attack.
Hey, great video Leo! You showcase and review a lot of antiviruses and stuff, but what antivirus do you personally use? Thanks.
i think he uses Emsisoft Anti-malware, according to his Windows Defender and some other videos.
any way to decrypt makop ransomware?
please tell about .docx,jpj etc .mrv ransomeware
You might be able to recover the files if the program didn't overwrite them, or get a kernel extension that stores files after they are deleted
Amazing Video, I am already using EMSISOFT so i am not worried about Ransomware :)
@Emme jac more like not having single digit iq
I run all of my files in a VM to hopefully stop ransoms and viruses and stuff
It is perfect that people are still finding ways to go through ransomware lets teach them to stop missing with innocent people
Pls help me on this Virus - Stop (Djvu). It's in .enfp format
My files cannot be encrypted 😭 im stressed out since I cannot open my school files on online clase because of this .wrui. i dont have any more choice but to format my laptop huhu 😭😭
I had same issues, a friend introduced me to LULZSECHACKS on Instagram who helped me fix the issue
yeah same happened to mine, I got some of my files back, use file recovery on your hardrive after disinfecting all the ransomeware, it will find them
Online key,
Moqs ransomvirus attrack.what i do for decript
Emisoft says online id and impossible decryption !any help for me to save my files?
I clean installed windows 10 twice now this week. Im getting malware that disables windows update and windows defender and uninstalled my antivirus kaspersky and bitdefender.
i found out that Hitman Pro removal tool gave me the virus. idk why virus removal giving me virus lmao
What are you doing to get malware on your system? Turn on Windows Firewall, and get a good router firewall.
Tall Paul PDK i think its the samsung magician app for my ssd. When i install it, smartscreen will prompt like do u need to run this? As i thought why wouldnt i? I downloaded it from official website then i installed that shit and after i restart my computer i got malwares i noticed when my antivirus is not opening. I dont even have pirated games
@@TheKillerZmile that's funny, since I have that same software on three systems for years without a problem yet
@@TheKillerZmile worth testing malware bytes. that has good reviews. although I use webroot and heimdal together and I can get up to all sorts.
Good way don't open unknowns email. If accidently you open then don't click any unknown link..
The dealing with ransonware video is on up next lol
How to decrypt repp. Files
My external hard drive was affected back in 2016 by CryptXXX. I have the tools but it said I need the original files for it to work. That I do not have because they're on my external hard drive. is there another way to get them decrypted? All of these are photos and videos from a good chunk of my life.
Most malware can be circumvented with some relatively sly computing skills, but an rsa encrypted ransomware is the real deal. There really isn’t much that can be done for that. Even if you pay the ransom, the attacker has no obligation to give you your files back.
What's a rsa ransomware?
@@harshitmakwana3515 if they give you the private key to unlock all your stuff then that’s great. But that does not speak to their trustworthiness. Again, they have no obligation to help you at all. If you pay, they win. If you dont, your stuff is deleted and they move on. There’s nothing for them to lose in the transaction and that is what makes them untrustworthy.
Hi .. does this work for hoop virus i was attacked by online id and emisoft cant decrypt the files .. so my question can i get the key this way from online attacker ? And then use emisoft ?
Note: i installed new windows to remove the virus as it got my whole system
Detailed and informative guide.
Uninstalling all my programs that are infected. Will that recover from the Ransomware Virus? Also, is Restarting my PC in Safe Mode, safe?
How come all these video explanations are hell blur?
I have a question...
What if (as a prevention) we keep a copies of a few files in our PC.
Is there like a program that can (when we get ransomware) compare 2 of the same file (maybe even multiple pairs) and figure out the key ?
No. You can’t find an encryption key just by comparing changes.
im not able to decrypt .voom extension files its an offline type of key i used emisoft still its is not decrypting help me please
can .plam file be recovered? please help
I have the key! Now how do I decrypt files ?
Where did you get the sample malwares? Need to get for my lab study.
So much spammer in the comments
What should I do if the encrypted files are with Online-ID?? I have asked the support assistant of emsisoft and spyhunter and they can't decrypt it. Any suggestion before I format and reinstall my pc? The infection is already quarantined by spyhunter and I just need to get my files back.
2:00 i only get the folder "PE"
I've been thinking and wouldn't a database of all known encryption results of a standard system file allow you to brute force ransomware?
@The PC Security Channel It's been more than 6 months i guess and i am still waiting for the decryptor of Lolkek/Bitransomare from Emsisoft or any other source. I hope someone is on it and creates one soon enough :(
when i clicking the .exe nothing happen, even i run it as administrator, Please help!
I wonder do they decrypt your files if you actually pay them?????
Usually, yes
I got a Trojan virus a few days ago and it got into my accounts but 2 minutes after it got in I deleted it but I think my files are encrypted
.rugj file, i cannot open my files, all files are rugj file, how to recover it, i am re istalled windows, but same issue
pls help me i got attack by nile my files i important how to i fix
I need help, i did decrypt the encrypted files but, nothing happens...its just says
Starting...
Finish!!!
What happens if they do something like salt the key or the info?
Hi
Please help me decrypt my files attacked by ransomware .zwer
Can I store some important "Ransomware (phobos) encrypted files" in another pc for further/future decryption without being infected??
id like to know this as well.i guess you could alqays store it on an external drive to be safe
infected by avaddon ransomeware....but no decryptor is available there plz help!
I got hit by Phobos a week ago. Couldn't I just run a recovery tool for instances Recuva?
My file encrypted with ransomware virus.. I cant do anything.. vvoa extention. Give me advice please
Can some files encrypted twice with different attacker?
Excellent. 👌🏻👍🏻
I have Boop file problem dear
Installed Manjaro 8months ago, using brain.exe,going well so far!
Need help just recently affected by ransomware .igdm, cant log in to emails and files were encrypted
Sir my all data encryted into davda file Please help me
Does online ID ransomware still have their keys hardcoded on the exe?
they have me a pc and hdd with a 2016 cryptlocker ransomware (yes the owners never noticed, until I told them it was a virus), who still struggle to recover the files, the pc has been infected 03/02/2016 and I realized why even the recovery image of windows 7 from 12gb, has been infected with. encrypted, and although the pc has avas installed, bitdefender.mcfee. they caught the virus, I tried various file recovery and decrypt tools, but nothing doesn't work, this 2016 cryptolocker that encrypts files with the .encrypted extension is among the deadliest they have created and not even bleeping computer ones have managed to decrypt the files, if they have created something to do decrypt for .encrypted I want to know, jigasaw and other recovery tools have not succeeded, also before I was using PHOTREC testdisk and at the moment of saving the file from error, however I just have to recover the photos from that hdd always if possible
Hello, on 19.11.2020 I was infected with .makop virus and all my childhood photos were encrypted. I sent a decryption file to the hackers and they returned it fixed for me. For other information, they asked me for an unaffordable amount of money, which I did not pay. I copied all the infected files to an external hard drive. I bought a new hard drive and installed a new Windows. Is it possible to decrypt encrypted photos from childhood?
@Message Raimotechnic on Instagram Thank you very much. I'll try. You are very good people. Can you tell me how to contact them?
I don't see any link to download this software. Please can anyone help me with it??
Yeah, uhm. You might just wanna hide the comments on this video to prevent people being fooled by these comments.
My company infected by exile ransomware. Are you able to help?
could you make a guide to decrypt rugj ransomware? it is quite new and all the videos are fake and full of bots
emisoft is not working for the extention i have
My system files is encrypted with ransomware mado file extension . please help me out to decrypt
Here i have STOP (DJVU) is it worse than Jigsaw?
sir what about .npsk Ransomewar it not remove my system how to remove it any tools for decrypt my all data ?
.nelasod virus file fix tutorial video
Please help me....
i can't get to the emsisoft site
Great video!
im currently dealing with this if any one is an expert on this please help me :(..
i might lose 4 years of university work
Maas ransomware
Can you do a bull guard av test with malware
Check this in the meantime ua-cam.com/video/245bNWGb7a4/v-deo.html
.ogdo file extension infected my system. Please give solution
Hello Leo, please review and test the new gdata internet security.
It says that the “ Id appears to be an online ID , Decryption is impossible “
Can you suggest something please ?
There are some important in files in there .
If you want you can use shadow explorar to recover some of thise files.
Dear sir... Can decrypt .wnln files...
Can u please tell me how to decrypt, .VARI files?
Wierd, I read about ransomware when i don't have one.
Any ways to decrypt sodinikibi ransomware infected files, please help thanks.