Zepto is new file-encrypting virus, previously known as Locky ransomware. Virus uses AES-256 algorithm to encrypt your files. Zepto encrypts following file types: documents, images, game files, e-mails. Ransomware adds extension .zepto to every encrypted file and also creates file "_{random number}_HELP_instructions.html", and in this file hackers give instructions to pay the ransom and decrypt files. Threat also modifies name of the affected files with hexadecimal chars, making it difficult to understand where certain files are.
Navsmart.info is fatuous search engine, that installs in Google Chrome, Mozilla Firefox and Internet Explorer. It substitutes browsers settings in this browsers, especially search engine and homepage. Even after complete removal of Navsmart.info users may see this page opening in new tab. This happens, because hijacker replaces or modifies browser shortcut on the desktop, by adding Navsmart.info URL in the Target field in browser options.
Search.ozipcompression.com is search engine that is installed by potentially unwanted program called OZIP. OZIP is free zip-archiver with a simple interface and basic set of functions. It does not have any advantages in comparison to WinRAR or WinZIP or 7-zip programs. It was created, to distribute Search.ozipcompression.com hijacker and earn on user clicks on ads inside this search engine. Search.ozipcompression.com sets as default search engine and homepage and may also hijack browser shortcuts.
Crypt0l0cker (TorrentLocker) is file-encrypting virus and ransomware that targets following countries: Australia, Austria, Canada, Czech Republic, Italy, Ireland, France, Germany, Netherlands, Korea, Thailand, New Zealand, Spain, Turkey, and the United Kingdom. For some reason it is not affecting US-based PCs. The ransom amount is 2.2 Bitcoins, which is currently about $330 GBP. Crypt0l0cker encrypts all files except ones with following extensions: avi, wav, mp3, gif, ico, png, bmp, txt, html, inf, manifest, chm, ini, tmp, log, url, lnk, cmd, bat, scr, msi, sys, dll, exe. Because those files are needed for OS operation.
NegozI is file-encrypting virus ransomware that uses AES-256 algorithm to encrypt your files. The ransom amount is huge 5 Bitcoins, which is currently about $3300. NegozI encrypts following file types: documents, images, game files, e-mails. Ransomware adds extension .evil to every encrypted file and also creates files "decrypt_your_files.txt" and "decrypt_your_files.html", that contain instructions to pay the ransom and decrypt files.