Remove Trojan.Ransomlock.C

September 19, 2016October 12, 2009 by Robert La Nguyen

Other payload of Trojan.Ransomlock.C are as follows:

The Trojan will display a Windows Security Alert in Russian language that asked user to pay for the unlock key.

It will modify Windows Registry entries to disable Safe Mode:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Desktop\SafeMode
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\SafeBoot
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot

Robert is a highly motivated writer with 3+ years of experience writing for ransomware, malware, adware, PUPs, and other cybersecurity-related issues. As a writer, he strives to create content that is based on thorough technical research.

1 thought on “Remove Trojan.Ransomlock.C”

raja

December 10, 2009 at 5:30 am

Enter this key code to unlock .how to key code entered sr

Other payload of Trojan.Ransomlock.C are as follows:

1 thought on “Remove Trojan.Ransomlock.C”

Leave a Comment Cancel reply