How to remove TeslaCrypt and decrypt .ecc files

March 28, 2016 Aleksei Abalmasov 0

TeslaCrypt is virus that belongs to ransomware category of crypto-viruses. TeslaCrypt encrypts important documents, images, presentations using AES encryption. Then it demands a payment (ransom) for decryption key that will allow user to restore the files. One of the “features” of TeslaCrypt is that it also encrypts game files of 40+ popular games like Dota, Minecraft, World of Warcraft etc.

How to remove Locky virus and decrypt .locky files

March 24, 2016 Aleksei Abalmasov 0

Locky virus is ransomware threat that encrypts documents, music, video and other information on victims computer using AES encryption. This virus can also encrypt folders on unmapped network shares. It modifies affected files extensions to .locky. After this it demands ransom in bitcoins (0.5 – 2 BTC or approximately $200 – $800) for decryption services. There is no known guaranteed way to decrypt files infected by Locky virus and that is why this blackmail virus is considered very harmful.

How to uninstall (remove) UmbreCrypt

February 15, 2016 Aleksei Abalmasov 0

UmbreCrypt is a name for recently developed ransomware that targets for media files. After the ransomware finds certain types of files it encrypts them and adds umbrecrypt_ID_youruniqueID extension. After that the threat generates a pop-up window with a message that states the information about the encryption. In the note there are also instructions about the means to retrieve the files.

How to remove Ransom32 and decrypt your files

January 14, 2016 Aleksei Abalmasov 0

Ransom32 is a relatively new ransomware and a service for its creation. Ransom32 Ransom as a Service is situated on a TOR domain and is open to everyone. After entering a bitcoin address anyone who feels like it can fiddle, generate and then download the ransomware. For their services the creators of the service take a fee equaling to a 25% cut of paid ransoms. In its features Ransom32 doesn’t differ much from other ransomware programs. What makes it a standalone is that Ransom32 is the first ransomware written in JavaScript, which makes it applicable not only to Windows, but also to Linux and Mac.

How to remove CryptoJoker and decrypt your files

January 13, 2016 Aleksei Abalmasov 0

CryptoJoker is a malware that is named ‘ransomware’ for the basic principle it uses. CryptoJoker aims to frighten a user and make him or her pay money. For this purpose once CryptoJoker gets into the system it inserts executable files into the %Temp% and %AppData% folders. The program processes locate the most useful and valuable for user files and encrypt them. The tasks are also responsible for collecting the information on the user, sending it to the Command&Control server and stopping ‘regedit’ and ’taskmgr’ processes.

1 8 9 10 11