Severity scale:  
  (60/100)

Porn Blackmail virus. How to remove? (Uninstall guide)

removal by Lucia Danes - - | Type: Spam tools

Porn Blackmail scam – a new spam campaign threatening users to expose their private photos

Porn Blackmail virus
Porn Blackmail virus is a dangerous spam email campaign designed to extort money out of unsuspecting users

Porn Blackmail virus is a type of scam that is closely related to spam emails trying to scare is victims into paying a ransom. The spam campaign was spotted on the Internet in the middle of summer 2018, aiming to connect to unaware PC users and convince them that they were caught while watching porn. Additionally, victims are convinced that the photos of showing the proof of the use of porn will be sent to their relatives and that the only way to avoid that is sending a ransom of 0.15 – 0.20 BTC. To make the Porn Blackmail scam even more trustworthy, hackers also include one of the victim's passwords in the subject line. While it is obvious that the scam belongs to the “sextortion” type, hackers can also try to hack victim's computer and install spyware, keyloggers and another type of malware. 

Summary
Name Porn Blackmail virus
Type Scam
Distribution Spam
Main aim To convince the victim that he or she was photographed while watching porn
Ransom size  To prevent intimidating photos from being sent to victim's relatives, he or she has to pay 0.15 – 0.20 BTC
Other dangers Being infected with keyloggers, spyware or another type of malware
Detection and elimination Use Reimage or Plumbytes Anti-MalwareMalwarebytes Malwarebytes

It seems like Porn Blackmail virus is using the tactic of ransomware viruses, such as GandCrabScarab, and many others. It connects its victims via phishing emails[1] to convince them that they are in trouble. While ransomware infects the device and demands a ransom to be paid for releasing encrypted files, Porn Blackmail virus does nothing like it and is merely a scam.

In the email, bad actors explain that the malware installed on the target's machine was capable of hacking the camera and also granting them access to all victim's social media accounts. The authors of Porn Blackmail virus claim that they were able to record victims while they were visiting a porn site, as well as what exactly was that they were viewing. Finally, crooks threaten users that all these recordings will be sent to everybody on the contact list of the social media accounts if a payment of $1200 – $1600 will not be transferred to the mentioned Bitcoin address.

Porn Blackmail email spam
Porn Blackmail email spam is used to trick users into paying money to cyber criminals by scaring them that they will be exposed

Typically, there are several examples of Porn Blackmail virus emails users receive directly into their mailboxes (note that we replaced sensitive information with “XXX”):

I know XXXXX one of your pass word. Lets get right to the point. You may not know me and you are probably wondering why you’re getting this e-mail? No-one has compensated me to check about you.

actually, I actually placed a malware on the 18+ videos (pornography) web-site and do you know what, you visited this web site to experience fun (you know what I mean). While you were watching videos, your internet browser started working as a Remote Desktop that has a key logger which provided me with access to your display screen as well as web cam. Immediately after that, my software gathered every one of your contacts from your Messenger, social> networks, and e-mailaccount. Next I made a video. First part displays the video you were viewing (you’ve got a nice taste ; )), and next part displays the view of your webcam, yea its you.

You got two different choices. Why dont we understand these solutions in particulars:

First choice is to skip this e mail. In that case, I will send your very own video to all your your contacts and also imagine about the shame you feel. And definitely in case you are in a relationship, how this will affect?

Number 2 choice should be to compensate me $7000. Let us name it as a donation. As a consequence, I most certainly will promptly eliminate your video footage. You could go on with your life like this never took place and you would never hear back again from me.

You will make the payment via Bitcoin (if you don’t know this, search for “how to buy bitcoin” in Google search engine).

BTC Address: XXXXXXXXXXXXXXXX
[case-SENSITIVE, copy & paste it]

If you may be wondering about going to the police, very well, this email message cannot be traced back to me. I have covered my steps. I am just not trying to ask you for money so much, I simply want to be rewarded. You have one day to make the payment. I’ve a special pixel in this e-mail, and now I know that you have read this mail. If I don’t get the BitCoins, I will certainly send out your video recording to all of your contacts including close relatives, coworkers, and so forth. However, if I receive the payment, I’ll erase the video immediately. It’s a non-negotiable offer, and thus do not waste mine time & yours by responding to this e-mail. If you want evidence, reply  Yeah & I will send out your video to your 11 contacts.

I do know, XXXXX, is your pass word. You may not know me and you are probably thinking why you are getting this email, right?

In fact, I setup a malware on the adult vids (pornography) web-site and do you know what, you visited this site to have fun (you know what I mean). While you were watching video clips, your web browser initiated operating as a RDP (Remote Desktop) with a key logger which gave me accessibility to your display and webcam. Immediately after that, my software program obtained your entire contacts from your Messenger, social networks, as well as email.

What did I do?

I created a double-screen video. First part displays the video you were viewing (you’ve got a good taste rofl), and 2nd part displays the recording of your web camera.

What should you do?

Well, I believe, $1900 is a fair price tag for our little secret. You will make the payment via Bitcoin (if you don’t know this, search “how to buy bitcoin” in Google).

BTC Address: XXXXXXXXXXXXXXXX
(It is cAsE sensitive, so copy and paste it)

Important:

You now have one day to make the payment. (I have a special pixel in this email message, and right now I know that you have read this email message). If I don’t get the BitCoins, I will definately send out your video recording to all of your contacts including relatives, coworkers, and so on. Having said that, if I do get paid, I’ll destroy the video immidiately. If you need proof, reply with “Yes!” and I will send your video to your 8 contacts. It is a non-negotiable offer, that being said please don’t waste my time and yours by replying to this mail.

It goes without saying that this seems like an embarrassing situation to many, as nobody would want to be exposed like that. Nevertheless, users should never contact criminals and remove Porn Blackmail virus instead. While hackers may be lying about malware, the fact that they know users' passwords increases the possibility of the infection.

Keep in mind that keyloggers and other types of tracking malware rely on a sophisticated code, so we don't recommend eliminating it manually. Due to that reason, we recommend you to scan the computer using the security software like Reimage or Plumbytes Anti-MalwareMalwarebytes Malwarebytes. These programs will ensure prompt Porn Blackmail virus removal from your computer. Additionally, don't even think about paying ransom because this will encourage the bad guys to continue their dirty affairs.

Personal information used in Porn Blackmail scam is obtained from the Dark Web

What makes Porn Blackmail email spam believable is the fact that one of the personal passwords is placed in a subject line. Many of us will raise their eyebrows if they see something like that. Nevertheless, getting access to many users' passwords or even credit card details is not big of a deal, and no person is safe from such a consequence.

All Porn email virus authors need to do is access Dark Web – a pretty grim place on the internet. From personal information selling to drug deals and even murder – you can order everything here. Additionally, every person has their credentials on the Dark Web for sale, so it is only a matter of time.

How does personal information get there? The sensitive data is placed there after major companies get hacked. Major data breaches like Facebook Cambridge Analytica scandal,[2] LabCorp data breach[3] and many others are involved. The harvested information is then sold to anybody who is willing to buy it. What makes matters worse is that each login can be sold for as little as $1.[4] Not a bad deal, considering crooks can get $2k out of it.

Due to data breaches and leaks, security experts advise users to change their passwords frequently and use a separate one for each site. Those who did change passwords should not be worried about Porn Blackmail email spam.

Porn email virus
Porn email virus relies on numerous phishing email examples spread by cybercrooks over the Internet.

Hackers reach their victims via spam emails 

Spam is a very old tactic used by cybercrooks, and it remains prominent, merely because people are quite gullible. Additionally, users might simply not know that various viruses can be distributed via emails. Therefore, it is essential to take precautions when dealing with questionable emails and websites.

Security experts advise the following:

  • Avoid file-sharing websites – cracked software is often used to spread malware;
  • Learn to recognize phishing email and verify that the information is legit;
  • Do not click on any links or open attachments inside spam emails;
  • Backup your data;
  • Update the installed software as soon as updates are available;
  • Employ reputable security software;
  • Use strong passwords for all your accounts and change them frequently.

Get rid of Porn blackmail virus and avoid being tricked

The news about the new scam broke out everywhere on the media. Nevertheless, not everybody has access to this information. We hope that users can get to know more about Porn Blackmail virus and learn how to avoid it. 

If you received a deceptive email and especially clicked on the link or executed the attachment, it is highly likely that your machine is infected with malware. In such a case, you should use security software to remove Porn Blackmail virus from your computer immediately. We suggest you download and install Reimage or Plumbytes Anti-MalwareMalwarebytes Malwarebytes and scan your device for malicious applications.

Some viruses can be difficult to get rid of, as they can tamper with security software its proper operation. In such case, you will need to enter Safe mode with networking to ensure a full Porn Blackmail virus removal.

Offer
We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use. By Downloading any provided Anti-spyware software you agree to our privacy policy and agreement of use.
do it now!
Download
Reimage (remover) Happiness
Guarantee
Download
Reimage (remover) Happiness
Guarantee
Compatible with Microsoft Windows Supported versions Compatible with OS X Supported versions
What to do if failed?
If you failed to remove virus damage using Reimage, submit a question to our support team and provide as much details as possible.
Reimage is recommended to remove virus damage. Free scanner allows you to check whether your PC is infected or not. If you need to remove malware, you have to purchase the licensed version of Reimage malware removal tool.
More information about this program can be found in Reimage review.

If you decided to select another anti-spyware, uninstall Reimage from your computer.
Press mentions on Reimage
Alternative Software
Different security software includes different virus database. If you didn’t succeed in finding malware with Reimage, try running alternative scan with Malwarebytes.
Alternative Software
Different security software includes different virus database. If you didn’t succeed in finding malware with Reimage, try running alternative scan with Combo Cleaner.

To remove Porn Blackmail virus, follow these steps:

Remove Porn Blackmail using Safe Mode with Networking

To stop the virus activity, enter Safe mode with networking:

  • Step 1: Reboot your computer to Safe Mode with Networking

    Windows 7 / Vista / XP
    1. Click Start Shutdown Restart OK.
    2. When your computer becomes active, start pressing F8 multiple times until you see the Advanced Boot Options window.
    3. Select Safe Mode with Networking from the list Select 'Safe Mode with Networking'

    Windows 10 / Windows 8
    1. Press the Power button at the Windows login screen. Now press and hold Shift, which is on your keyboard, and click Restart..
    2. Now select Troubleshoot Advanced options Startup Settings and finally press Restart.
    3. Once your computer becomes active, select Enable Safe Mode with Networking in Startup Settings window. Select 'Enable Safe Mode with Networking'
  • Step 2: Remove Porn Blackmail

    Log in to your infected account and start the browser. Download Reimage or other legitimate anti-spyware program. Update it before a full system scan and remove malicious files that belong to your ransomware and complete Porn Blackmail removal.

If your ransomware is blocking Safe Mode with Networking, try further method.

Remove Porn Blackmail using System Restore

You can also use System Restore to get rid of the virus:

  • Step 1: Reboot your computer to Safe Mode with Command Prompt

    Windows 7 / Vista / XP
    1. Click Start Shutdown Restart OK.
    2. When your computer becomes active, start pressing F8 multiple times until you see the Advanced Boot Options window.
    3. Select Command Prompt from the list Select 'Safe Mode with Command Prompt'

    Windows 10 / Windows 8
    1. Press the Power button at the Windows login screen. Now press and hold Shift, which is on your keyboard, and click Restart..
    2. Now select Troubleshoot Advanced options Startup Settings and finally press Restart.
    3. Once your computer becomes active, select Enable Safe Mode with Command Prompt in Startup Settings window. Select 'Enable Safe Mode with Command Prompt'
  • Step 2: Restore your system files and settings
    1. Once the Command Prompt window shows up, enter cd restore and click Enter. Enter 'cd restore' without quotes and press 'Enter'
    2. Now type rstrui.exe and press Enter again.. Enter 'rstrui.exe' without quotes and press 'Enter'
    3. When a new window shows up, click Next and select your restore point that is prior the infiltration of Porn Blackmail. After doing that, click Next. When 'System Restore' window shows up, select 'Next' Select your restore point and click 'Next'
    4. Now click Yes to start system restore. Click 'Yes' and start system restore
    Once you restore your system to a previous date, download and scan your computer with Reimage and make sure that Porn Blackmail removal is performed successfully.

Finally, you should always think about the protection of crypto-ransomwares. In order to protect your computer from Porn Blackmail and other ransomwares, use a reputable anti-spyware, such as Reimage, Malwarebytes MalwarebytesCombo Cleaner or Plumbytes Anti-MalwareMalwarebytes Malwarebytes

About the author

Lucia Danes
Lucia Danes - Virus researcher

If this free removal guide helped you and you are satisfied with our service, please consider making a donation to keep this service alive. Even a smallest amount will be appreciated.

Contact Lucia Danes
About the company Esolutions

References