Trojan.Ransomlock.AG
Posted: August 23, 2013
Threat Metric
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 10/10 |
|---|---|
| Infected PCs: | 14 |
| First Seen: | August 23, 2013 |
|---|---|
| Last Seen: | October 14, 2019 |
| OS(es) Affected: | Windows |
Trojan.Ransomlock.AG is an FBI ransomware Trojan based on the Ransomlock family, and like most of that family's members, displays fraudulent legal warnings to encourage victims to transfer money over to criminals. Although the system lockdown accompanying Trojan.Ransomlock.AG's pop-up message initially may seem insurmountable, SpywareRemove.com malware research team has found default security routines and anti-malware tools are more than adequate at deleting Trojan.Ransomlock.AG once Trojan.Ransomlock.AG is been prevented from starting. As usual, paying Trojan.Ransomlock.AG's ransom is not guaranteed to unlock your computer – and certainly is not an action that's authorized by your local government, no matter what Trojan.Ransomlock.AG's pop-up may claim.
Trojan.Ransomlock.AG: When a Real Ransom Comes with Fake Justifications
Trojan.Ransomlock.AG is part of a family of fake Police Trojans that specialize in displaying misleading legal alerts as a means of demanding money from their victims. Besides Trojan.Ransomlock.AG (which is a fairly typical example of its family), other Trojan.Ransomlock members examined by SpywareRemove.com malware experts include Trojan.Ransomlock.AF, Trojan.Ransomlock.R, Trojan.Ransomlock.G, Trojan.Ransomlock.H and Trojan.Ransomlock!gen4. All of these Ransomlock variants, like Trojan.Ransomlock.AG, infect your PC through disingenuous tactics, display fraudulent legal information and use a simple browser pop-up to lock Windows.
Trojan.Ransomlock.AG attacks your PC by forcing your browser to load a modified pop-up window that's used to display its legal alert. The contents of this legal warning can vary according to the geographical location of the infected computer, and Trojan.Ransomlock.AG usually will try to portray its alert as being sent by a regional law enforcement authority (such as the United States FBI). This alert informs you that Trojan.Ransomlock.AG has encrypted all files on your PC as a result of the illegal activities noted in connection with it, but SpywareRemove.com malware researchers, thankfully, haven't seen any signs of a legitimate file-encryption function from Trojan.Ransomlock.AG. If such an attack is added in future variants of Trojan.Ransomlock.AG, your best defense simply is to keep remote backups of all important files.
Why a Little Trojan.Ransomlock.AG Lockdown isn't as Foolproof as It Appears
Although Trojan.Ransomlock.AG asks you to pay a fee to recover the files on your computer, SpywareRemove.com malware analysts encourage other solutions – since Trojan.Ransomlock.AG is illegal software and the criminals related to Trojan.Ransomlock.AG don't have any reason to provide assistance even after they're paid. Trojan.Ransomlock.AG's browser-based alert can't be closed like a normal window and will interfere with your access to other Windows programs, making Trojan.Ransomlock.AG a security threat as well as a fraud.
Booting your computer through a safe USB device is one of the most efficient ways of blocking Trojan.Ransomlock.AG and its pop-up. Anti-malware utilities then can be used as necessary for deleting Trojan.Ransomlock.AG, all without paying Trojan.Ransomlock.AG a dime of the money Trojan.Ransomlock.AG doesn't deserve.
Current versions of Trojan.Ransomlock.AG are not compatible with Mac OS X, but they are compatible with most forms of Windows, as well as Linux and Solaris.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.