Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Latest News:    Ethereum mailing list breach exposes 35,000 to crypto draining attack

Featured Deal: Upgrade your iPad with an Apple Magic Keyboard Folio for under $90

Latest Buyer's Guide:    Best web browsers with built in VPN: Boost online privacy

Generic User Avatar

International Police Association / Sopa/ PIPA Ransomware easily decrypted

Started by Grinler , May 05 2015 03:55 PM

  • Please log in to reply
17 replies to this topic

#16 jzimmerman56301

jzimmerman56301

  • Avatar image
  • Members
  • 1 posts
  • OFFLINE
    •  
  • Local time:08:21 AM

Posted 27 May 2015 - 08:39 AM

This program worked great (I was the one working on cosmic's laptop).  The program recovered all 35000+ of the encrypted files.There were a few left behind that were under 100 bytes in size. I'm assuming they were just too small to encrypt. I took the 335495 extension off a couple of them and they opened just fine. So after the whole process was through, I ran   

forfiles /S /M *.335495 /C "cmd /c rename @file @fname" to restore the file names of the ones that were left over. Thanks much for your help


Edited by jzimmerman56301, 27 May 2015 - 08:40 AM.

BC AdBot (Login to Remove)

 

#17 Nathan

Nathan

    DecrypterFixer


  • Avatar image
  • Security Colleague
  • 1,617 posts
  • OFFLINE
    •  
  • Gender:Male
  • Location:Florida
  • Local time:09:21 AM

Posted 27 May 2015 - 08:43 AM

Glad everything worked out :)


Have you performed a routine backup today?

#18 thanhforce

thanhforce

  • Avatar image
  • Members
  • 6 posts
  • OFFLINE
    •  
  • Gender:Male
  • Local time:08:21 PM

Posted 02 December 2015 - 11:07 PM

Glad everything worked out :)

I tried using the software "stop private" but apparently the decoding process problem so I could not see his entire file. Here are some examples. Please help me. Thanks HVdGdFw.png6wm3jWG.png


Back to Archived News


1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users


  1. BleepingComputer Forums
  2. General Topics
  3. Archived News
  4. Privacy Policy
  5. Rules ·