Frequently asked questions

Everything you need to know before starting a ransomware analysis with us.

Common questions about ransomware decryption service

Why does the analysis have a cost?+

Our analysis is a deep forensic investigation — not an automated scan. An engineer manually reviews your encrypted files and maps the encryption pattern. This typically takes 4–8 hours. If we cannot recover your data, the analysis fee is refunded as part of our no-recovery, no-fee guarantee.

Can you guarantee 100% recovery?+

No company can honestly guarantee 100% recovery — anyone who claims otherwise is misleading you. What we guarantee: if we cannot decrypt your files to a readable state, you do not pay for the recovery service. Our average success rate is 78%, and over 90% for common strains like STOP/Djvu and WannaCry.

How long does ransomware recovery take?+

Analysis: under 24 hours for Premium, 3 days for Free. Recovery: typically 48–72 hours once decryption begins. Complex database or large-volume cases may take up to 2 weeks.

Is my data safe with you?+

We operate under strict confidentiality agreements and Indonesian data protection laws. Files are transmitted over encrypted channels and stored in isolated environments accessible only to your assigned engineer. We have never had a data breach in our 5-year history.

Do I need to send my hard drive anywhere?+

No. We work entirely remotely using secure tools (TeamViewer, AnyDesk, or similar). No hardware shipping required. Most cases are resolved without the client leaving their office.

Which ransomware types can you handle?+

We handle 700+ known strains including LockBit, STOP/Djvu, Dharma/CrySiS, Phobos, WannaCry, Conti, REvil, and many others. For unknown strains, our engineers perform manual analysis to develop a custom recovery approach.

Your data is recoverable. Don't wait.

Every hour of delay increases the risk of permanent data loss. Engineers on call 24/7.