.meds Virus - STOP Ransomware

Hi Hrishikesh. I'm Greg, an installation specialist, 10 year Windows MVP, and Volunteer Guardian Moderator here to help you.

The best guide I found for removing this Ransomware is here:
https://malwaretips.com/blogs/remove-meds/

Run a full scan with the most powerful on-demand free scanner Malwarebytes:
https://www.malwarebytes.com/mwb-download/.

In the Scan Settings first set it to include scanning for Rootkits.

If necessary run it in Safe Mode with Networking, or Safe Mode accessed by one of these methods: https://www.digitalcitizen.life/4-ways-boot-saf...

Clean up anything found, restart PC and then run again until it comes up clean.

Check for any remainders in Settings > Apps > Apps & Features, and also in each of your browser's Extensions, Home Page settings, Search service or Add-On's as shown here: https://community.box.com/t5/How-to-Guides-for-...

Then check for damaged System Files: https://www.lifewire.com/how-to-use-sfc-scannow...
If it cannot repair them see Step 10 here to continue: http://answers.microsoft.com/en-us/windows/wiki...

If you want to keep Malwarebytes as an on-demand scanner then you can turn off its Real Time trial version in it's Settings > Account Details tab.

I hope this helps. Feel free to ask back any questions and let us know how it goes. I will keep working with you until it's resolved.

______________________________________________
Standard Disclaimer: There are links to non-Microsoft websites. The pages appear to be providing accurate, safe information. Watch out for ads on the sites that may advertise products frequently classified as a PUP (Potentially Unwanted Products). Thoroughly research any product advertised on the sites before you decide to download and install it.

I have windows 10. My laptop is affected by MEDS virus which encrypt all the data along with Recovery Drive (D:). I want to install again windows 10 in my laptop so that recovery files become a new files without MEDS encryption. Windows Reset is done but still there is MEDS encryption. So I try for re-installation of win 10 through media creation tool. it shows Error Code 0x80190197-0x90019.

Hi Hrishikesh

You can reinstall Windows 10 at any time and it will not cost you anything !

Click this link:
https://www.microsoft.com/en-us/software-downlo...
to download the Media Creation Tool (Click on Download Tool Now), with that you can download the latest Windows 10 ISO (Select Create Installation Media for Another PC), you can create a bootable USB flash drive (min 8GB) using that tool

Then, Boot your PC from the Installation Media you just created (change Boot Order in your BIOS) to begin installing Windows 10

If you are having difficulty creating bootable Windows 10 media with the Media Creation tool, here is a reliable and safe alternate method to create that:

Click this link to download the Windows 10 ISO

https://tb.rg-adguard.net/public.php

Then use Rufus to create the bootable media from that ISO

https://rufus.ie


Since you previously had Windows 10 installed and activated on that PC during the installation process skip the steps which ask for a product key and select the option 'I am Reinstalling Windows 10 on this PC', and activation will not be an issue, your PC will have a digital entitlement stored on the Microsoft Activation Servers

Make sure you install the same Edition of Windows 10 (Home, Pro . . . etc.) you previously had installed to avoid Activation issues

________________________________________________________
Standard Disclaimer: This is a non-Microsoft website. The page appears to be providing accurate, safe information. Watch out for ads on the site that may advertise products frequently classified as a PUP (Potentially Unwanted Products). Thoroughly research any product advertised on the site before you decide to download and install it.

.

Same problem (same Error code) arises when I have tried through First option (by using media creation tool for another PC). 

In second option: My Windows version 1709 (OS Build 16299.492)

but in the link I have found version 1709 - Redstone 3 (build no 16299.15), so build no is not matched.

is it problematic?

There is also no Windows 10 Home Single Language

Hi Hrishikesh

If you need the Single language version of Windows 10, from that website, download version 1703 and install that, then Windows 10 will upgrade itself once it is installed . . .

Hi, HrishikeshBhunia:

The offline decrypted key for the .meds variant has been published today and there is already some possibility of you can recover your files. A free decryptor with the .meds offline key will soon be available:

Twitter Emmanuel_ADC-Soft - #Stop (Djvu) #Ransomware extension .meds The offline key is available.

Greetings.

Make sure to read especially this first page:  #1 [STOP Ransomware (.STOP, .Puma, .Djvu, .Promo, .Drume) Help & Support Topic: post #1]

 

How to use this decryption?

notice invalid id

Please help me