1 of 3
Danger level 8
Type: Trojans
Common infection symptoms:
  • Can't be uninstalled via Control Panel
  • Installs itself without permissions
  • Connects to the internet without permission
  • System crashes
  • Slow Computer

Kee Ransomware

A new ransomware infection developed using the source code of an open-source ransomware Hidden-Tear has been detected - Kee Ransomware is its name. Although it is called ransomware, it differs from ordinary ransomware-type infections profoundly. It also enters computers with the intention of encrypting users’ personal files and does that right after the successful entrance; however, it does not seek to extract money from users, so it does not demand a ransom. It seems that its only purpose is to corrupt users’ files. Have you already discovered this infection on your computer and can no longer access your files? Go to delete this ransomware infection from your computer and then try to get your files back using alternative file recovery methods. Although Kee Ransomware tells users that “there might be a little chance to decrypt your files”, the truth is that you cannot do anything without the decryption key, so go to delete Kee Ransomware the second you detect it on your computer – if the countdown located on the window opened by it on Desktop reaches zero, all encrypted files will be deleted.

Kee Ransomware slithers onto computers to encrypt users’ important files. The motive behind this is unknown, but it surely does not seek to extract money from users. After the successful infiltration, this threat locates files having .txt, .mp4, .wav, .png, .jpg, .jpeg, .gif, .docx, .ppt, .pptx, .zip, .rar, and .7zip extensions and then encrypts them all and appends a new extension @kee, for example, picture.jpg@kee. It encrypts files located in folders having the following strings in their paths: Desktop, Pictures, Videos, Music, Documents, and Downloads. This means that it does not encrypt any system files and your PC will continue working normally after its successful entrance. A red window on Desktop is opened when files become corrupted and a picture wallpaper.png with the same message is dropped there too. Users are told that they cannot open their music, documents, and other files because they have been encrypted. Also, they find out that there is no way to decrypt files. Last but not least, they are told that closing the ransomware window or waiting till the time runs out will result in the permanent loss of files, i.e. they will all be deleted. We suggest that you do not wait till it happens – go to uninstall Kee Ransomware immediately after you discover it on your system to prevent those encrypted files from being deleted. Do not worry; your files will not be deleted if you close the ransomware infection but dot no reopen it again. Also, files will surely not be erased if you delete killsw32l.dll files from %USERPROFILE%\Desktop, %USERPROFILE%, and %USERPROFILE%\Downloads directories.

Not all the ransomware infections drop files on affected computers – some of them just work from the place they have been launched. Kee Ransomware is not one of them. Once it enters the system and successfully encrypts files, it creates a ransom note Hello There! Fellow @kee User!.txt and wallpaper.png files on Desktop. In addition, it creates files killsw32l.dll in several different directories. It is quite a sophisticated ransomware infection, as you can see, so do not expect to be able to erase it easily from your computer. Do not worry; we are ready to help you.

Researchers at pcthreat.com say that Kee Ransomware is distributed just like any other ransomware-type infection. First, it might be distributed as an attachment in spam emails. Such malicious attachments are usually masqueraded to look harmless, e.g. they might pretend to be important documents, so many users open them fearlessly. Second, as research has shown, Kee Ransomware might be spread via fake downloads, for example, you expect to get a software update from a P2P websites but, instead, download a ransomware infection which starts working immediately after the successful entrance.

You will have to put some effort into the Kee Ransomware removal because you will need to erase many files belonging to this threat to fully eliminate it from your computer. Since it is a sophisticated malicious application, it is highly recommended to consult a manual removal guide located below this article. We suspect that our instructions will not help everybody – there are a number of inexperienced users among our readers. Those users should use an automatic malware remover to delete Kee Ransomware. Files will not be unlocked for you no matter which removal method you employ – you could recover them only from a backup.

Delete Kee Ransomware

  1. Press Ctrl+Shift+Esc and open the Processes tab.
  2. Locate the process representing Kee Ransomware, right-click on it, and select End Process.
  3. Close the Task Manager.
  4. Tap Win+E simultaneously to launch the Windows Explorer.
  5. Open %USERPROFILE%\Desktop and delete two files: Hello There! Fellow @kee User!.txt and wallpaper.png.
  6. Delete killsw32c.dll from %USERPROFILE%, %USERPROFILE%\Desktop, and %USERPROFILE%\Downloads.
  7. Remove msceInter.exe from the following directories:
  • %ALLUSERSPROFILE%\Start Menu\Programs\Startup
  • %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup
  • %USERPROFILE%\Microsoft\Windows\Start Menu\Programs\Startup
  • %ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\Startup
  • %ALLUSERSPROFILE%\Application Data\Microsoft\Windows\Start Menu\Programs\Startup
Download Spyware Removal Tool to Remove* Kee Ransomware
  • Quick & tested solution for Kee Ransomware removal.
  • 100% Free Scan for Windows

Post comment — WE NEED YOUR OPINION!

Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.