EnyBenied Ransomware

What is EnyBenied Ransomware?

EnyBenied Ransomware is a file-encrypting application that appends .EnyBenied extension to its affected files and drops a ransom note called ENYBENY.TXT. If you see the mentioned extension on your files, we recommend reading the rest of this article so you could find out more information about the threat that most likely infected your system. Another thing we would like to stress from the beginning is that we advise against paying the ransom the cybercriminals behind the malicious program may demand as it could be hazardous. Those who do not want to risk their savings could erase EnyBenied Ransomware manually while following the instructions available at the end of this article or with automatic features provided by a chosen legitimate antimalware tool. However, there is no hurry as you can decide what to do after reading our full report first.testtesttest

Where does EnyBenied Ransomware come from?

EnyBenied Ransomware might travel with email attachments or unsecured RDP (Remote Desktop Protocol) connections. Meaning, it could be dropped on the computer, if the user launches suspicious files sent via email, or if the system has weaknesses like weak passwords, outdated software, and so on. Needless to say, to avoid such malware in the future, you should never open files coming from people you are not familiar with or if you did not expect to receive them. Plus, it would be a good idea to update old programs and replace passwords that might be too weak or compromised. Having a legitimate antimalware tool protecting your system could be useful too as it might be able to stop various attacks on your computer.

How does EnyBenied Ransomware work?

The malicious program starts with encrypting users files. It might also encipher program files, except the data belonging to Windows. After the encryption process, the victim should notice the files on the infected device may have .EnyBenied extension, e.g., picture.jpg.EnyBenied. Another change you should see right away is a new desktop picture that may say: “Enybeny Revenge All your files have been encrypted!” Also, each folder containing encrypted data might have a text document called ENYBENY.TXT. Opening it should display a message or a ransom note from EnyBenied Ransomware’s developers. In it, they promise to send decryption tools so the user could decrypt his files via email, but first, they ask to pay a ransom of 0.00000001 BTC. The price is tiny at the moment of writing, but our researchers at Anti-spyware-101.com would still not recommend making any payments. The hackers could trick you, and if you do not want to be scammed, we advise not to put up with their demands.

How to remove EnyBenied Ransomware?

Those who feel up to the task can delete EnyBenied Ransomware manually while following the steps we added at the end of this paragraph. They will show how to search for files created by the malware and how to delete them on your own. If the process looks slightly too complicated, you can download a legitimate antimalware tool and let it eliminate the malicious application for you.

Erase EnyBenied Ransomware

  1. Press Ctrl+Alt+Delete.
  2. Pick Task Manager and go to Processes.
  3. Search for a process associated with the threat.
  4. Select it and click End Task.
  5. Leave Task Manager.
  6. Click Windows key+E.
  7. Navigate to these paths:
  8. Find the malicious application’s launcher.
  9. Right-click it and choose Delete.
  10. Look for files called ENYBENY.TXT and ENYBENY.png.
  11. Right-click them and select Delete.
  12. Close File Explorer.
  13. Empty your Recycle Bin.
  14. Restart the computer. 100% FREE spyware scan and
    tested removal of EnyBenied Ransomware*

Leave a Comment

Enter the numbers in the box to the right *