CryptoLocker Ransomware Description
CryptoLocker, also identified as Trojan:Win32/Crilock.A, is a Windows locker Trojan that modifies a range of files on your PC to make them temporarily unusable and demands that you pay a fee before you can acquire the key to decrypt the affected files. As an added incentive to submit to CryptoLocker’s ransom, CryptoLocker also warns that any attempt to remove the infection from your PC will cause the associated key to be deleted. Despite these threats, SpywareRemove.com malware experts consider it unlikely that criminals would bother to restore any affected PCs to normal after receiving their illegal payments, and continue to recommend the use of standardized anti-malware programs and decryption technology for combating CryptoLocker and all similar PC threats.
CryptoLocker: a File Lockdown on a Countdown to Data Storage Doom
CryptoLocker is one of the relatively rare types of ransomware that follow up on their threats of encrypting the files on your PC, as opposed to threatening to do so and then using a pop-up alert to block your Windows access in general. Similar Trojans that perform approximately the same attacks include Trojan.Ransomcrypt.E, Win32:Ransom-AOQ, ‘Say Hello To Little Virus Brings A Lot Of Problems’ Ransomware and the ArchiveLock Trojan. Like most other PC threats of its type, CryptoLocker informs you of the attack by displaying a warning message that demands payment of a criminal’s ransom fee – in this case, one approximating one hundred USD. This pop-up can block access to your desktop, which causes CryptoLocker also to be referred to as a Windows locker or Winlocker Trojan.
CryptoLocker doesn’t try to portray itself as an arm of any kind of law enforcement agency, but its file encryption attack does prevent you from using the affected files and has the added urgency of a countdown timer until the offered ransom solution is withdrawn.
Beating a File-Locker at Its Own Game
Although CryptoLocker takes significant time to make it seem like paying criminals is the only way to get your files returned to you safe and sound, SpywareRemove.com malware research team can suggest several alternative ways of coping with a CryptoLocker infection. Free decryption utilities are available from a variety of sources and may be used to try to undo the file encryption attack of CryptoLocker, and anti-malware applications can be used to remove CryptoLocker itself. However, if, as is recommended, you keep your files backed up to a safe source such as a writable DVD, CryptoLocker’s attack can be ignored entirely – since you simply can restore all affected files from your backup without bothering to undo the encryption.
Because of the high stakes in any CryptoLocker infection, avoiding CryptoLocker is especially recommended as even preferable to removing CryptoLocker from your PC safely. Previous attacks by similar high-level PC threats have been known to use corrupted websites hosting drive-by-download attacks and/or disguised e-mail attachments, which can be blocked by the combined security of strong browser security features and anti-malware tools with Web-monitoring features.
Win32/Trojan.33a [Qihoo-360]Inject2.BWZN [AVG]W32/Bitman.FO!tr [Fortinet]Trojan.Win32.Injector [Ikarus]Trojan.Win32.Qudamah.Gen.2 [Tencent]a variant of Win32/Injector.BXSI [ESET-NOD32]Trojan.Win32.Ransom.fo [Baidu-International]Artemis!E78654D43FCF [McAfee]Ransom:Win32/Tescrypt.A [Microsoft]Trojan[Ransom]/Win32.Bitman [Antiy-AVL]
More aliases (27)
CryptoLocker Ransomware Automatic Detection Tool (Recommended)
Is your PC infected with CryptoLocker Ransomware? To safely & quickly detect CryptoLocker Ransomware we highly recommend you run the malware scanner listed below.
Download SpyHunter's* Malware Scanner to detect CryptoLocker Ransomware What happens if CryptoLocker Ransomware does not let you open SpyHunter or blocks the Internet?
Visual & GUI Characteristics
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
- The following files were created in the system:
# File Name Detection Count 1 %APPDATA%\WinXdd\winxddwp.jpg 253 2 %APPDATA%\WinXdd\winxdd.exe 250 3 %PUBLIC%\ WinTmt\ wintmt.exe 131 4 %WINDIR%\ icagubuz.exe 44 5 %SystemDrive%\ 8d57c76f\ 8d57c76f.exe 12 6 %WINDIR%\ iqosaqop.exe 5 7 %WINDIR%\ ufegapoj.exe 5 8 %APPDATA%\ uixjlub.exe 5
- Crypto Ransomware Seeks Dominance as New Threats Emerge to Encrypt and Destroy Files
- Custom-Built Ransomware Threats Offered by FAKBEN Team for 10 Percent Fee
- FBI Proclaims Crypto-Ransomware Victims Should Pay Up Decryption Fees
- TeslaCrypt Ransomware Targets File Encryption of Nearly 20 Desktop Games
- The ‘Friendly’ CoinVault Ransomware Decrypts One File for Free
Posted: September 11, 2013 | By SpywareRemove
Rate this article: