Jump to content

No key for New Variant offline ID

Recommended Posts

Hello @Harshpatel,


Welcome to the Emsisoft Support Forums.


I understand it is frustrating, but currently, we cannot decrypt files with an Offline-ID that we do not have the Private Encryption Key in our Database.


Please read this Topic. It contains information about your situation and whether or not your files can be decrypted.


Link to comment
Share on other sites

4 hours ago, Harshpatel said:

No key for New Variant offline ID: vkkerIMedP7WK1ZhHOAlJV10Wxn9fHEbEQbgait1
this ID appears be an offline ID, decryption MAY be possible in the future

Hello @Harshpatel

There are 't1' characters at the end of the identifier, this usually means that the 'offline ID' is being used and the files can be decrypted in the future when the decryption key for this variant is loaded into the 'Emsisoft Decryptor'. This event depends on the voluntary transfer of the key by someone who bought the key from the extortionists. This may happen or may never happen. 

The appearance of a new key is not reported anywhere. The work is done every day. It is recommended to save the encrypted files on an external drive, download the 'Emsisoft Decryptor' once a week and check the decryption capability.

Link to comment
Share on other sites

What to do? Everything is lost?
No, there is currently no way to decrypt files, but in the future, in theory, extortionists can publish keys to all of their victims. This does not happen often, but this year we have seen such cases several times.

Why did this happen?

This 'STOP Ransomware' enters the PC due to the fact that computer is poorly protected. People often use free antivirus programs with the 'Free' label in the name. None of these programs will protect PC from programs similar to 'STOP Ransomware', because basic protection is not capable of this feat.
If users used comprehensive protection of the 'Internet Security' class, then it would help protect PC from ransomware attacks.

There is no 100% protection against malware, but what the 'Free' antivirus gives is 1-2 percent protection. 

After this attack, PCs could have stayed other malware elements. This maybe is an info-stealer and something else. Therefore, it is urgent to conduct a full check and destroy malware.

Use an comprehensive anti-virus software such as Emsisoft Anti-Malware to effectively remove the malware. 
You can get a free trial 30-days version of Emsisoft Anti-Malware here: https://www.emsisoft.com/en/home/antimalware/

It will help you clean your PC from other malware for free.

!!! You need to neutralize all malicious files in the system. This should be done as quickly as possible. 

Link to comment
Share on other sites

This topic is now closed to further replies.

  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...