How to remove Java NotDharma Ransomware and recover .java files

Java NotDharma is a cryptovirus, the activity of which took place at the mid-April 2018. The malware got its name due to the similarity to infamous Dharma Ransomware, incidentally, many computer experts initially thought it’s just a new version of Dharma, however, this was not confirmed later. While encrypting, virus adds .java extension to all infected files. For example, “mydoc.doc” will turn into “mydoc.doc.java”.

Learn More

How to remove Iron Unlocker Ransomware and decrypt .encry files

Iron Unlocker Ransomware is a modified version of infamous Maktub ransomware that, like a previous one, makes files on victim’s computer unavailable. While encrypting, virus adds .encry extension to all infected files. For example, “mydoc.doc” will turn into “mydoc.doc.encry”. To get files back, a user is offered to pay ransom as described in the ransom note (!HELP_YOUR_FILES.HTML) which a virus creates upon completion.

Learn More

How to remove B2DR Ransomware and decrypt .bronmerkberpa1976@protonmail.com.b2dr files

B2DR Ransomware is a fresh threat released in March 2018 that already infected many computers. Following infiltration, it encrypts user’s personal files adding .bronmerkberpa1976@protonmail.com.b2dr extension to all infected files. Like other such viruses, it leaves short instruction (readme.txt) on how to restore your files for the completion of its work.

Learn More

How to remove Arrow Ransomware and decrypt .arrow files

Arrow Ransomware is a new version of infamous Dharma Ransomware which has already affected many users around the world. As a previous one, Arrow Ransomware encrypts users’ personal files using both AES and RSA ciphers and appends .[marat20@cock.li].arrow extension to all infected files. The extension may vary, depending on the version: .id-[random-characters].[vauvau@cock.li].arrow, [badfail@qq.com].arrow.

Learn More

GPGQwerty Ransomware and decrypt .qwerty files

GPGQwerty is a virus, classified as a ransomware. Also called file encryptor, it has a high damage level for user data on PC. inserts into filenames a .(random name).qwerty extension. GPGQwerty can attack files with JPG, DOC, MP3, DB extensions. After infiltrating, a user can’t use own data files on PC, because they become encrypted. Besides, the virus creates a README_DECRYPT.txt file, where hackers require money for potential decrypting. Of course, we urged you not to pay to cybercriminals, because real decrypting is not guaranteed.

Learn More

How to remove CryptConsole Ransomware and decrypt .unCrypte@outlook.com files

A CryptConsole is a virus, classified as a “fake ransomware”. It has a medium damage level for user data on PC. The malicious program, also called file encryptor inserts into filenames a random extension. First of all, a virus targets files with JPG, DOC, MP3 extensions and also databases. After infiltrating, it seems like files were coded. Besides, virus creates help.txt file, where cybercriminal requires money. Don’t worry, in fact a virus only changes extensions, it does not encrypt files. Of course, we urged you not to pay to “lazy cybercriminals”, because it can increase a number of new real PC threats, that someone can met in future.

Learn More