tk Ransomware
The tk Ransomware, an encryption Trojan ransomware that's attacking computer users and their machines, uses an AES encryption method to lock the affected user's files. Then the tk Ransomware asks for a ransom, which should be paid in Bitcoins for the return of the affected files. The file extensions get changed to _'tkinter.pdb.' The beginning of the tk Ransomware can be traced back to January 2018, with an obvious aim at English speakers. The ransom note reads the following:
'1198
your files have been encrypted
send 1 BTC to 1F1tAaz5x1HUXrCNLbtMDqcw6o5GN7xX7'
The tk Ransomware may be distributed via unprotected RDP configurations or by using corrupted attachments in spam emails. It also may be spread through Web injections, fraudulent downloads, exploits, fake updates and infected installers. The files that may get affected by the tk Ransomware are as follows:
- MS Office documents
- PDF files
- Text files
- OpenOffice files
- Music
- Images
- Archives
Security experts encourage users to avoid paying the money demanded by the tk Ransomware. The data encrypted by the tk Ransomware can be restored by loading backups and system recovery images.
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.