Monthly Archives: June 2017 - Page 7

A black desktop wallpaper and a warning saying that all your disks are encrypted are the features of the CryptoViki ransomware. The infection encrypts numerous files and demands for a ransom. After making the data inaccessible, the CryptoViki ransomware deletes itself, but that does not solve your problems. Some files associated with the infection still remain on the computer, so it is important to terminate them too. It is also worth paying more attention to the system security to prevent similar incidents in the future as your data may get stolen one day. Read more »

A new ransomware infection Ramsey Ransomware has been recently spotted by malware researchers. Since the primary language of this malicious application is Turkish, specialists at anti-spyware-101.com are sure that this threat is spread in Turkey the most actively. Unfortunately, it does not mean that it cannot show up on users’ who live on the other side of the world too. It is because it is spread using deceptive methods and is known to be a sneaky threat. You will find out soon about its presence if it ever enters your computer because it is a typical ransomware infection, i.e. it finds valuable users’ files and then locks them all. You will not be allowed to open a bunch of files, and, on top of that, you will see a window opened on your Desktop. Close it and go to remove Ramsey Ransomware from your computer. It might threaten you to delete your files permanently if you do not send the money required, but you should not make a payment to cyber criminals by any means because the developer of this infection might not have a decryption key either. That is, you might not get your files back even if you pay a ransom required by the ransomware infection. The final word is, of course, yours, but we hope that you will arrive at a sensible decision. Read more »

Anti-Spyware-101.com malware research team warns about a new infection that goes by the name CVLocker Ransomware. This threat is not a fully-fledged infection that encrypts files, but that does not make it any less dangerous. In fact, our research team is more worried about this infection than other well-known threats because it is so mysterious and unpredictable. According to the latest information, this threat could be upgraded at any point, and new, more powerful versions could emerge. If this malicious threat has not slithered into your operating system yet, you need to read this report to find out how to protect yourself against it. In case, you have found this infection on your PC, you need to learn how to delete it, and that is something we cover in this report as well. Even if it has not encrypted any files yet, you must remove CVLocker Ransomware because this threat might be much more harmful than you can imagine. Read the report carefully, and make sure to post questions – if you have any – in the comments section below. Read more »

SucyLocker Ransomware is yet another malicious threat to come from the Hidden Tear family. The infections within this family are built using the same open source code that is available to anyone who is willing to invest some money. Although all threats from this group are similar, they are unique in their own ways because they are built by different parties. For example, it is unlikely that the developer of this ransomware is also the developer of Kindest Ransomware, Kampret Ransomware, or other well-known infections. Of course, these ransomware threats are not equal, and some are more dangerous and aggressive than others. The good news is that the one we are discussing in this report is unlikely to be extremely dangerous. In fact, you might find that it does not encrypt important files at all. Unfortunately, if important files are locked by this threat, it is unlikely that you will be able to save them. Even if you remove SucyLocker Ransomware right away, the files will remain encrypted. That being said, deleting this infection is crucial, and that is what we discuss in this report. Read more »

Smartransom Ransomware is a Chinese-developed ransomware that was designed to encrypt your files and also lock your PC entirely so that you could not use it. Its creators use an innovative technique for receiving ransom payments. However, we do not recommend that you comply with their demands because you might not get the promoted decryption key. You may lose not only your files but also your money. In this short article, we will discuss how this program is disseminated, how it is distributed and how you can remove it from your PC safely. Read more »

Do NOT open random spam emails because you might invite GrodexCrypt Ransomware by doing so. If you let this infection into your operating system and allow it to encrypt your files, you will find yourself in a predicament. This threat encrypts files, and it demands for a ransom to be paid. Well, can you just pay the ransom and be done with the whole thing? Unfortunately, we cannot guarantee this because, in most cases, ransomware creators do not care about providing their victims with decryptors. All they care about is the money, and they are likely to disappear once they get it. The information that the creator of the threat displays using a window entitled “GrodexCrypt” is meant to make you think that the devious infection will disappear once you pay the ransom as well. Of course, that is not the case, and even if you get your files decrypted, you must not forget to delete GrodexCrypt Ransomware. Anti-Spyware-101.com research team has thoroughly researched this malicious threat in our internal lab, and the information in this article represents the findings. Read more »

TeslaWare Ransomware is a malicious threat that employs AES encryption algorithm to lock its targeted files. The hackers behind the malware give their victims seven days to pay a ransom of 0.425 BTC that is approximately one thousand euros, although it is uncertain if this is the real price since the infection’s window suggests the victim should transfer only 300 euros. Strangely, the accounts for transferring the money are different in the ransom note and the malicious application’s window too. Under such circumstances, we urge you not to risk your money as it is unclear what the correct price is and where it should be transferred. Not to mention, there are no guarantees TeslaWare Ransomware’s creators will not scam you and provide the decryption key. Consequently, we would encourage users to refuse to pay the ransom and get rid of the threat as soon as possible. To help you handle this task, we are placing removal instructions just below the report. Read more »

Look1213@protonmail.com Ransomware is a new threat spreading on the web that you should take very seriously. In fact, you may lose all your important personal files in this malicious attack. This is why we keep emphasizing the need for a backup copy of your files. You can either use the trendy cloud storage places or a portable hard drive. As a matter of fact, it is hard to choose between these two because both have their pros and cons. Still, it is much safer and better to have a backup than risking losing your files. This ransomware encrypt your files as soon as it is initiated and offers you a decryption tool for a ransom fee. It is always risky to pay such a fee because you can never know whether your attackers will really send you the tool or not. The truth is that our experience shows that it is quite rare that cyber criminals bother at all to send you anything after receiving your money. We advise you to remove Look1213@protonmail.com Ransomware even if it means losing your files. Read more »