Pottieq ransomware is a file-encrypting virus that demands its victims to use shivamana@seznam.cz email address to contact its owners

| Name | Pottieq ransomware |
|---|---|
| Type | Crypto-virus |
| Executables | SkyTel.exe |
| Encryption method | AES-256 |
| Related | BandarChor ransomware |
| File extension | .id-%ID%-[shivamana@seznam.cz].pip |
| Contact email | shivamana@seznam.cz; |
| Alternative email | WillardBrooks6499@gmail.com |
| Distribution | Spam email attachments |
| Elimination | Use FortectIntego for the Pottieq ransomware removal |
The developers of Pottieq virus are claiming that they are the only ones who can restore files encrypted by the virus. However, you shouldn't pay the ransom or contact these cybercriminals in any way as hackers responsible for this attack cannot be trusted. There is an opportunity that they will ignore you right after your payment is transferred to their crypto wallet.
Data encryption process starts when a virus infiltrates the system. It uses an army-grade encryption algorithm to lock photos, videos, music files or documents. Once this procedure is finished, the virus adds a file extension in a .id-%ID%-[shivamana@seznam.cz].pip pattern. This appendix shows which files are locked. In every folder, containing the encrypted data, Pottieq ransomware also places a ransom note that includes the following:
Attention! Your computer has been attacked by a virus-encoder!
All your files are now encrypted using cryptographically strong algorithm.
Without the original key recovery is impossible. To get the decoder and the original key, you need to email us at shivamana@seznam.cz
Our assistance is not free, so expect to pay a reasonable price for our decrypting services.
No exceptions will be made. In the subject line of your email include the id number, which can be found in the file name of all encrypted files.
It is in your interest to respond as soon as possible to ensure the restoration of your files.
P.S. only in case you do not receive a response from the first email address within 48 hours, please use this alternative email: WillardBrooks6499@gmail.com
Pottieq ransomware is a silent cyber infection that can come from infected emails or illegal websites. According to VirusTotal[2], one of the executable files is SkyTel.exe. Once it gets into the system, the virus can alter the Windows Registry, so that it could launch the malevolent processes once you reboot your infected device.
You should remove Pottieq ransomware with anti-malware tools like FortectIntego because, as the file analysis[3] shows, various anti-malware programs can detect this threat and remove it successfully. For example, Avast indicates this virus as Win32:Malware-gen, Avira shows is as TR/Kryptik.ytenf, Malwarebytes names this threat as Ransom.Aura.
Pottieq ransomware removal should be a quick process if you use a reputable anti-malware program. A full system scan is required because this threat has various alliances planted on the system and you cannot find them all. However, if some of these related files or malware remains on the system ransomware can still encrypt your data.
Researchers[4] advise you to focus on virus termination and worry about data recovery only after the ransomware is gone. Unfortunately, the decryption tool is not developed yet, so there is no possibility to decrypt your locked data. However, there are a few suggestions on data recovery tools down below. Try to use these tips if you have no backup files on and an external device.

Hackers use various exploit kits to spread their malware
Ransomware creators employ various malware to spread the malicious payload of this threat. The silent infection means that the main intrusion is happening without your consent and knowledge. The primary method for spreading ransomware payload is spam email attachments with infected files. Malspam campaigns are used to infect average users and to spread huge ransomware attacks on corporations and companies.
Emails containing the malicious file can look safe and legitimate because malicious actors often hide their products behind a well-known service name, they misuse various company or product name. However, you can look for typos or grammar mistakes on the main content of this email, that indicates about the suspiciousness of the message.
You can also try to contact the sender back, and if that is impossible, it is a red flag. Delete these emails without opening or downloading. If you are not expecting an email remember to be aware of the possible threats in these commercial content-filled emails, come to your box.
Perform Pottieq ransomware elimination with professional tools
To remove Pottieq ransomware, you should use a reputable anti-malware tool like FortectIntego, SpyHunterCombo Cleaner or MalwarebytesMalwarebytes. These are trustworthy and can detect various ransomware related files or malware that spreads this malicious script. Anti-malware programs perform a full system scan on your device and detect threats, system vulnerabilities or other possible issues. This tool also removes cyber infections from your PC and cleans the system thoroughly.
Using anti-malware for Pottieq ransomware removal is a great solution for the whole system since the full system scan cleans every little threat and vulnerability. Also, when your device is clear from ransomware and other infections you can safely replace your locked files with new and safe ones from a backup. Remember that ransomware can encrypt and newly placed files if the threat is still on the computer. Use your tips on ransomware termination and data recovery, provided below.
Was this guide helpful?
Be the first to comment