Emergency Checklist hero image

What is Ransomware?

What is Ransomware?

“Ransomware” is a term used to describe a number of computer viruses designed to hold valuable data hostage. These viruses are also sometimes called “cryptotrojans” or “ransom trojans.” Once a ransomware virus infects a system, it attempts to infect the entire network which a computer is connected to, and then encrypts all of the data it can, making the system unusable.

Once it has encrypted all the data it can, the virus will then display a ransom demand containing an email address or contact information of the attackers. Attackers may threaten that the ransom will double, or the data will be lost forever if payment is not made quickly.

If this happens to you, stay calm and don’t panic. We recommend calling experts to solve the problem as quickly as possible.

Watch Short Video

How do I know if my system is infected by ransomware?

There are a number of symptoms of ransomware infection:

benefits image A message saying that your data is encrypted and demanding a ransom.
benefits image The names of your files or file extensions suddenly change.
benefits image Your desktop wallpaper disappears.
benefits image Your CPU is running at 100% although you are not running any programs.
benefits image Your computer is unusually slow.
benefits image Your virus protection software is deactivated and won’t start.

These are some of the most well known encryption trojans. There are many different types of ransomware viruses, so the best response often depends on which version you are dealing with.

Dharma GandCrab Sodinokibi / REvil Coverton QNPCrypt CTB Locker Lockbit Ryuk Play Locky LeChiffre WanaCryptor WannaCry HIVE CrySiS Eking (Phobos) Rannoh Odin Makop Avaddon CryptoWall TeslaCrypt BlackCat BlackBasta

Ransomware example screenshots

What should I do if I get hit by ransomware?

Stay calm, and immediately shut down your computer normally. Do not shut down by hitting the power button or unplugging the computer, as this can damage your data. If the ransomware is still in the process of encrypting your data, suddenly powering off

the computer can lead to permanent data loss. Next, disconnect the network and ethernet cables immediately and disconnect any WLAN or Bluetooth connections. This will prevent the virus from spreading further over your network. Also remove all external data storage devices like external hard drives and USB sticks, and disconnect connections to online cloud storage services like Google Drive or Dropbox.

A more detailed guide to ransomware response is available here.

Do not try to remove the ransomware trojan. Many variants of ransomware have anti-virus detection. Trying to remove the virus may result in permanent data loss.

We do not recommend trying to pay the ransom on your own. There are a number of things that can go wrong. In our experience, letting experts handle ransomware response will save you time and money overall.

The BeforeCrypt team are established and trusted IT professionals. We have years of experience in ransomware removal and recovery, and in most cases we can recover 100% of your data. Reach out to us today for a free consultation.

BeforeCrypt - Experience from over 1,000 successful ransomware recoveries

We specialize in helping ransomware victims recover as quickly as possible and protect themselves from getting hit again.

The founder of BeforeCrypt, Janos Konetschni, has over 15 years of experience with IT services and cybersecurity. Together with his team, he offers very specialized expertise in cyber attacks. In the past several years, we have helped hundreds of businesses and private clients smoothly and securely recover from ransomware attacks.

benefits image Comprehensive knowledge and experience in the field of ransomware and data recovery.
benefits image A personal contact person supports you in every step of the data recovery process.
benefits image Data protection and privacy. We take the protection of your data very seriously and respect our clients privacy.
benefits image Experience from over 1,000 successful ransomware data recoveries
benefits image 24/7 Emergency service. Our team is available 24 hours a day. In emergencies, recovery can begin immediately.
benefits image Remove Ransomware & Recover Data – We remove all viruses and decrypt your data.
Hit by ransomware? Contact us now for a

Free first assessment

Get Help Now