I am Karsten and will gladly help you with any malware-related problems.
Please familiarize yourself with the following
ground rules before you start.
- Read my instructions thoroughly, carry out each step in the given order.
- Do not make any changes to your system, or run any tools other than those I provided. Do not delete, fix, uninstall, or install anything unless I tell you to.
- If you are unsure about anything or if you encounter any problems, please stop and inform me about it.
- Stick with me until I tell you that your computer is clean. Absence of symptoms does not mean that your computer is free of malware.
- Back up important files before we start.
- Note: On weekends I might be slow to reply
-------------------------------------------------------------------
The file extension
.MPPQ has been used by
STOP/DJVU ransomware. STOP/DJVU ransomware variants after August 2019 are only decryptable if an
offline key was used which is rarely the case. For variants with an
online key you cannot decrypt files.
Please provide the following logs for initial analysis.
Farbar Recovery Scan Tool (FRST) Scan
- Please download Farbar Recovery Scan Tool and save the file to your Desktop. (Note: choose the right version, 64 or 32 bit, for your operating system, only one will run)
- Double-click FRST64.exe to run the programme.
- Click Yes to the disclaimer.
- Ensure the Addition.txt box is checked.
- Click the Scan button and let the programme run.
- Upon completion, click OK, then OK on the Addition.txt pop up screen.
- Two logs (FRST.txt & Addition.txt) will now be open on your Desktop. Attach both logs in your next reply.
