WHAT IS RANSOMWARE?

Ransomware is a type of malicious computer software that seeks to threaten PC users and earn the money from that. Typically, ransomware-type viruses block the system or files that are installed on it. In addition, they ask the victim to pay a ransom in order to unblock the system or restore blocked information. They are spread with the help of trojans, so the most of them are installed on the system without user's consent.

A typical behavior of ransomware parasites involves locking computer's screen with fake warning message, encrypting files containing important or vital data, deleting user sensitive information, corrupting the system or installed software, stealing confidential documents and personal information, etc.

Once inside the system, ransomware runs a scan. It either looks for important files or tries to find illegal files on victim's computer. Once they are detected, a virus locks the computer down and starts displaying a huge warning message that looks like it belongs to some governmental authority. In this case, victim is informed that there are illegal files that were detected after scan on his/hers computer. In addition, user is asked to pay a fine in order to avoid getting into jail. If computer is infected with crypto-ransomware, victim is simply informed about the encryption of his/hers important files and asked to pay the ransom in order to restore lost data. If the user pays the ransom, virus stops blocking the system. If that's a crypto-ransomware, he or she receives certain passwords, codes and special instructions for restoring the information on the system. 

Newest Ransomware

Onion ransomware removal instructions

August 28th, 2015. What is Onion? Security experts warn that CTB Locker now has an improved version called Onion. It's a serious ransomware infection that can steal your money and leave you without personally identifiable information that you might have been storing on your computer for ages. It spreads via... More...

Remove Your browser has been blocked

August 21st, 2015. What is Your browser has been blocked? Your browser has been blocked is one of the messages that may show up on your screen if your computer has been affected by a Browlock type of ransomware. You may also receive messages claiming that 'All activities on this computer have been recorded' or... More...

Getting rid of All your data are encrypted! virus

August 20th, 2015. What is All your data are encrypted!? All your data are encrypted! (also known as CryptoApp ) is a serious ransomware infection that acts more or less in the same manner as Cryptolocker , CryptoDefense , CoinVault and other data encrypting programs. Typically it infiltrates computers via... More...

DATABASE OF Ransomware PARASITES

Total Ransomware parasites in our DB: 358


# | A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

    28
    1
  • Smart HDD September 24th, 2013 | 2 Comments
    Smart HDD is a rogue optimization and defragmentation program. It reports false information about hard drive e...

  • 'Policijos Departamentas Prie Vidaus Reikalų Ministerijos' virus April 16th, 2014 | No Comments
    'Policijos Departamentas Prie Vidaus Reikalų Ministerijos' virus (also known as 'Policijos Departamentas Prie...

  • 'Stop Online Piracy Automatic Protection System' October 9th, 2012 | 1 Comments
    'Stop Online Piracy Automatic Protection System' is a forged message, which should be ignored because it has n...

  • 'You steal music I lock your PC' virus September 24th, 2013 | No Comments
    'You steal music I lock your PC' virus is a dangerous ransomware, which blocks down the system as soon as it i...

  • 'Your Computer is Inactive - System Cleaner is in Progress' October 16th, 2012 | No Comments
    'Your Computer is Inactive -System Cleaner is in Progress' is a fake alert that belongs to ransomware category...

  • ABOUT FILES! Ransomware June 19th, 2015 | No Comments
    What 'ABOUT FILES!'? 'ABOUT FILES!' is a serious notification that may show up on your computer's screen out ...

  • Abu Dhabi Police GHQ virus April 22nd, 2013 | 2 Comments
    Abu Dhabi Police GHQ virus is a dangerous ransomware threat, which should never be trusted and left on your co...

  • ACCDFISA Protection Program December 11th, 2012 | No Comments
    ACCDFISA Protection Program is a ransomware that locks your computer screen and pretends to encrypt your files...

  • AFP virus September 24th, 2013 | 2 Comments
    AFP virus is a ransomware infection, which can also be called as Australian Federal Police virus. If you have ...

  • Agencia Federal de Investigación virus September 24th, 2013 | No Comments
    Agencia Federal de Investigación virus (can also be called as Secretaría de Seguridad Púb...

  • Ai88 ransomware May 26th, 2015 | No Comments
    What is Ai88? Ai88 is a serious computer threat, which can be attributed to the 'ransomware' category. If you...

  • AKM virus September 24th, 2013 | No Comments
    AKM virus (also called as AKM Ihr Computer ist Gesperrt virus or Autoren Komponisten Musikverleger virus) ...

  • All activities of this computer have been recorded October 30th, 2013 | No Comments
    'All activities of this computer have been recorded' is a fake alert that should never be trusted. No matter t...

  • All your data are encrypted! virus August 20th, 2015 | No Comments
    What is All your data are encrypted!? All your data are encrypted! (also known as CryptoApp) is a serious ran...

  • Alpha Crypt virus August 7th, 2015 | No Comments
    What is Alpha Crypt? Alpha Crypt is a serious virus, which should also be categorized as ransomware. Wha...

  • An Garda Siochana virus October 23rd, 2014 | 9 Comments
    ‘An Garda Siochana' is the latest variant of Police virus that pretends to be sent by Ireland&rsquo...

  • Anonymous Ukash Virus November 7th, 2012 | No Comments
    Anonymous Ukash Virus is a ransomware threat, which belongs to a huge group of viruses that all share identica...

  • ANSSI virus July 6th, 2013 | No Comments
    ANSSI virus is a dangerous ransomware that should be avoided. If you want to feel safe, you should always make...

  • Antivirus XP Hard Disk Repair v9 January 23rd, 2012 | 1 Comments
    Antivirus XP Hard Disk Repair v9 is a ransom Trojan that pretends to be legitimate antivirus software. It stat...

  • Archiveus May 7th, 2006 | No Comments
    Archiveus is a typical ransomware trojan that encrypts user documents in the My Documents folder, and protects...

1 | | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | NEXT

WAYS OF INFECTION

The most of ransomware parasites are able to propagate themselves and infect their target PC systems without users' knowledge. Others must be installed manually as any other software. There are two major ways how these parasites can get into your computer.

1. The most of ransomware parasites are spread with the help of trojans. Trojan.Lockscreen is the mostly used threat for installing ransomwares on the system. They get into the system without user's knowledge as they tend to arrive in files attached to e-mail messages that present themselves as messages from reputable parties, such as Amazon, ebay, financial institutions, etc. Once user is tricked into downloading such attachment to computer, the trojan, which is related to ransomware, is also installed on it.

2. Another part of ransomware pests are distributed by fake pop-up notifications that can be seen either on illegal or on legitimate websites. Mostly, they are set to report about missing updates but they can also "inform" you about a need to scan the system for free and remove viruses from it. These ads are usually filed with unsuspicious names and legitimate logos, so they can trick even the most experienced PC user into clicking them. 

At the moment of writing, ransomwares are set to infect computers running Windows operating system, Mac OS X, Android and other operating systems. 

WHAT IS CAUSED BY RANSOMWARE?

- Ransomware viruses are capable of encrypting sensitive user's data, such as business documents, videos, photos and other files. Once they do so, they start asking a ransom for decrypting encrypted files.

- Once inside they system, such virus can also try to delete predetermined documents, multimedia objects or any other files containing important information. It can also try to delete essential system components or important parts of other software.

- Ransomwares can be used fro stealing login names, passwords, valuable personal documents, identity data and other user sensitive information. This data is sent through a background Internet connection to a remote host.

- When infected with ransomware, you can notice system freezes that can make it almost unusable. Such threats can also degrade overall system performance, decrease its speed, etc.

- Ransomwares and crypto-ransomwares can rapidly terminate active antivirus, anti-spyware and other security-related software by blocking its processes and disabling essential system services.

- Or course, you won't find uninstall feature when infected with ransomware. Besides, such threats also try to hide their own processes, files and other objects in order to complicate their removal as much as possible.

RANSOMWARE EXAMPLES

There are two different types of Ransomware parasites. The following examples will illustrate both of them.

Cryptolocker is a malicious ransomware, which keeps important victim's files encrypted until he/she pays the ransom. Once executed, this parasite checks the system and blocks predetermined files. Typically, it looks for business documents, images, video files and other files that could scare the victim after discovering that these files can't be opened. In addition, it shows a message threatening the user that these files will be lost forever. Of course, Cryptolocker gives a chance to recover these files by paying a ransom, which varies from $100 to $400. There is no guarantee that after the user transfers the money, he or she receives a specific number, which allows to decrypt encrypted files. 

FBI virus is another typical ransomware. However, it doesn't block the files. Instead of that, it blocks the entire PC system and then starts showing a fake warning message. Typically, this message claims that user was noticed for his or hers illegal activity on the Internet. You can be informed about illegal visiting of pornographic websites and similar activities. In addition, the parasite claims that victim can be sent to jail and that the only way to avoid it is to pay a ransom. After paying it, FBI virus stops blocking the system. However, it doesn't mean that there are no malicious files on it anymore. 

CONSEQUENCES OF RANSOMWARE INFECTION

Typical ransomware parasites are very dangerous. Although they usually do not self-replicate, such threats can make lots of problems on your computer. They can make your vital information inaccessible, they can steal your valuable data and destroy the entire system. It is highly recommended NOT to pay ransom, which is asked by this threat because that doesn't help to remove the parasite and restore affected information. 

HOW TO REMOVE RANSOMWARE?

In case of the ransomware infection, do not pay the ransom! Also, do not believe messages stating that you are dealing with governmental authorities because it's not true. Usually, such statements are displayed just for pushing people into paying ransoms. Ransomware makers use simple ways to make your data inaccessible. Fortunately, the most of antivirus and anti-spyware software can easily find ransomware files on the system and remove each of them. Here are some powerful anti-spyware solutions that will help you to remove ransomware from the system: SpyHunter, STOPzilla, Malwarebytes Anti Malware.


Additional resources related to Ransomware:

Attention: If you know or you have a website or page about Ransomware removal, feel free to add a link to this list: add url


more resources
Like us on Facebook
News
Subscribe
Recent Malware
Ask us
Files
What's your antispyware?
Compare
Top rated software
Tags
add text box
rss feed
help other
Spreading the knowledge: It is very hard to fight against computer parasites on the Internet alone. If you have a website, we would be more than happy if you would like to cooperate and help us spread the information about latest threats. Remember, knowledge is the most powerful weapon. Help your visitors protect their computers!