Posts

Decrypt XTBL virus: how to restore .xtbl files

Decrypt XTBL virus: how to restore .xtbl files

This entry describes an offbeat crypto ransomware sample that encourages victims to reach its operators over email and appends .xtbl extension to files. The current state of the ransomware industry dictates certain unspoken guidelines for the threat actors. The most sophisticated specimens boast a high degree of automation, where victims follow some Tor link, find […]

“All of your files are encrypted” – Locky ransomware virus

“All of your files are encrypted” – Locky ransomware virus

Locky ransomware versions, including the newest Zepto incarnation, display ‘All of your files are encrypted‘ alert and extort money to undo adverse impact. Given the abundance of crypto viruses spreading over the Internet, there are probably very few computer users unaware of this menace. As new samples are appearing literally every other day, some stick […]

“Your personal files are encrypted by CTB Locker”: decrypt and remove ransomware virus

“Your personal files are encrypted by CTB Locker”: decrypt and remove ransomware virus

Be updated on all known editions of CTB-Locker, a nasty crypto ransomware program encoding victims’ data and extorting Bitcoins in exchange for decryption. According to the threat actors’ ads posted on darknet forums back in 2014, CTB is an acronym for “Curve-Tor-Bitcoin”. This malicious file-encrypting entity is a real old stager on the cyber blackmail […]

Docm file virus: what is it and how to remove

Docm file virus: what is it and how to remove

It’s a good security measure to keep macros in Docm files disabled these days, because ransomwares like Locky and Zepto use them to compromise computers. There’s a sensible reason why the devs at Microsoft chose to keep macros in Office documents turned off by default. The exploitation of these VBA-based scripts is one of the […]

JSE file virus decryption and removal

JSE file virus decryption and removal

The issue with an unsanctioned change of file format to .jse isn’t trivial, because it most likely means that a ransomware program has entered the computer. The crypto malware alert du jour has to do with a bevy of user reports about the scrambling of data files on PCs that involves the JSE extension. Whereas […]

Zepto virus: .zepto file extension decryptor

Zepto virus: .zepto file extension decryptor

The tutorial covers a revamped edition of the nasty Locky ransom Trojan, which now appends .zepto extension to ciphered files and extorts 0.5 Bitcoin. There is hardly any fundamental difference between the previous versions of Locky and the one that surfaced lately. Still, the ransomware attacks Windows PCs through social engineering, encrypts data using a […]

Decrypt RZA4096 ransomware: “All of your files were protected by a strong encryption with RZA4096”

Decrypt RZA4096 ransomware: “All of your files were protected by a strong encryption with RZA4096”

This is a self-help walkthrough applicable for computer troubleshooting and decrypting personal data scrambled by RZA4096, or CryptXXX, ransomware. Linguistic literacy is definitely a weak link of the gang responsible for distributing one of today’s nastiest ransom Trojans called CryptXXX and its alias known as UltraCrypter. The number of spelling errors that these guys did […]

.crypt1 virus file ransomware decryptor and removal: cryptz update

.crypt1 virus file ransomware decryptor and removal: cryptz update

After the rebranding of CryptXXX ransomware into UltraCrypter, the extensions it adds to files have been changing every few days, the latest one being .crypt1 or .cryptz. Some crypto viruses are created and distributed by people obviously lacking tech skills, but the .crypt1 extension ransomware definitely doesn’t fall under that category. This is an edition […]

UltraCrypter ransomware: how to recover .cryp1 virus files

UltraCrypter ransomware: how to recover .cryp1 virus files

Rather than indicate the name of their ransomware directly, a cybercriminal gang mentions UltraCrypter as the file recovery tool they peddle to victims. Online extortionists have rebranded their rapidly propagating CryptXXX ransomware. The recent changes have to do with the look and feel of the Trojan’s user interaction components, as well as the denomination of […]

ZCryptor ransomware: decrypt .zcrypt files

ZCryptor ransomware: decrypt .zcrypt files

Get rid of ZCryptor ransomware, prevent it from spreading over to other Windows computers and recover .zcrypt files that it skews during the attack. A ransom Trojan that locks files using a strong cryptosystem, appends them with .zcrypt extension and drops recovery instructions in ‘How to decrypt files.html’ document, is categorized as a severe ransomware […]

Page 11 of 15« First...«910111213»...Last »