BigEyes Ransomware

Posted by Lisa Blanc on January 23, 2018

What is BigEyes Ransomware?

BigEyes Ransomware, also known as LimeDecryptor Ransomware, is a dangerous malicious application that belongs to the category of crypto-malware. If it ever infiltrates your computer, it will cause you a lot of trouble because it always encrypts a bunch of personal files on victims’ computers. This infection does not differ much from older threats even though it is new – it is also used to obtain money from users. Do not send a cent to malicious software developers even if your important files have been locked because they will never stop developing new infections if all victims send money to them. Also, we cannot promise that you could unlock your data after you pay a ransom, so it would be smart not to spend money on the tool that, theoretically, can unlock files. There is a small possibility that a free decryptor will be developed by specialists in the future, so remove the ransomware infection from your system completely but do not rush to remove all encrypted data, especially if there are extremely important files among those encrypted ones. Read this article till the end the end to find more about the BigEyes Ransomware removal.testtesttest

What does BigEyes Ransomware do?

BigEyes Ransomware was first discovered in January, 2018, so we still cannot call it a prevalent infection. Of course, it does not mean that it cannot slither onto your computer and cause problems. You will soon find out about the successful entrance of this ransomware infection if it ever shows up on your PC – you will discover a bunch of files encrypted on your computer. Our malware researchers say that it should only encrypt files located in %USERPROFILE%\Desktop, %USERPROFILE%\Videos, %USERPROFILE%\Documents, %USERPROFILE%\Pictures, and %USERPROFILE%\Music. This is good news because it means that it will not ruin any system files. You do not need to check all your files one by one to find out which of them have been encrypted. You will immediately see which files have been locked because they will have the .lime extension appended to them. After encryption of users’ personal files takes place, the ransomware infection drops two files #BackGround.png and #Decryptor.exe. The first one is set as Desktop background while the second one opens the main window of the ransomware infection. If you can locate any of these two files on your computer, there is no doubt that BigEyes Ransomware is the one responsible for encrypting your files.

You fill find a ransom note if you open the .png file or check the window opened by the ransomware infection. Its first sentence will tell you why files can no longer be opened. In addition, you will find out what you can do to unlock your encrypted files if you read it. Like similar threats, BigEyes Ransomware also demands money from users. They are told that they need to send 100 USD in Bitcoin to get files back. If you are going to make a payment, you have 30 days to do that (“Your files will be deleted after 30 days”), but you should not send a cent to crooks if you do not want to lose your money in exchange for nothing.

Where does BigEyes Ransomware come from?

It has turned out that BigEyes Ransomware is distributed exactly like a bunch of other ransomware infections. Specifically speaking, it is spread masqueraded as a .pdf or .doc document. Because of this, many users open it without fear and allow the ransomware infection to enter their computers themselves. Additionally, BigEyes Ransomware could have slithered onto your computer illegally if your RDP credentials are unsafe. Similar threats might show up on your system without your knowledge again if you keep your computer unprotected, so we highly recommend that you install security software to prevent malicious software from entering your computer again in the future.

How to remove BigEyes Ransomware

You must remove BigEyes Ransomware fully from your system if you are sure it is the one that has encrypted your files because this threat will stay active due to the entry in the Run registry key it creates upon the successful infiltration. This means that it might lock more files if it is not disabled soon. If below-provided instructions do not help you to delete BigEyes Ransomware, you can use an automated scanner to delete malicious software from your computer. Keep in mind that an automated malware remover is not capable of unlocking those encrypted files either.

BigEyes Ransomware removal guide

  1. Click X to close the window opened by BigEyes Ransomware.
  2. Press Win+R.
  3. Insert regedit and click OK.
  4. Move to HKCU\Software\Microsoft\Windows\CurrentVersion\Run.
  5. Locate the Value named #Decryptor.
  6. Right-click it and select Delete.
  7. Close Registry Editor.
  8. Remove #BackGround.png and #Decryptor.exe from Desktop.
  9. Delete all suspicious recently downloaded files.
  10. Empty Trash. 100% FREE spyware scan and
    tested removal of BigEyes Ransomware*
Disclaimer
Disclaimer
Trojans

Leave a Comment

Enter the numbers in the box to the right *