Virus and Spyware Removal Guides, uninstall instructions

What is PromoteQueue?

PromoteQueue is a rogue application classified as adware and also possessing browser hijacker traits. Following successful infiltration, PromoteQueue runs intrusive ad campaigns and makes modifications to browser settings to promote fake search engines.

Most adware-type apps and browser hijackers monitor users' browsing activity, and it is likely that this app does so as well. Due to the dubious techniques used to proliferate PromoteQueue, it is also classified as a Potentially Unwanted Application (PUA).

What is LiveSportSearch?

LiveSportSearch hijacks browsers by changing certain settings to livesportsearch.com (the address of a fake search engine). This browser hijacker also collects browsing-related information. Frequently, users download and install apps such as LiveSportSearch inadvertently and, therefore, they are categorized as potentially unwanted applications (PUAs).

What is TG33 ransomware?

TG33 is malicious software belonging to the Matrix ransomware family. It is designed to encrypt data and demand ransoms for decryption.

During the encryption process, all affected files are renamed following this pattern: "[TomGate33@criptext.com].[random_string].TG33", which consists of the cyber criminals' email address, a random character string, and the ".TG33" extension.

For example, a file originally named "1.jpg" would appear as something similar to "[TomGate33@criptext.com].nMN9Poie-CaWYsbTD.TG33" following encryption. After this process is complete, ransom messages within "TG33_INFO.rtf" files are dropped into compromised folders.

What is YUFL?

YUFL is designed to block access to files by encrypting them. It also changes the filenames and issues two ransom messages. It renames files by adding the victim's ID, the yourfiles1@tuta.io email address, and appending ".YUFL" to the extension.

For example, "1.jpg" is renamed to "1.jpg.id-C279F237.[yourfiles1@tuta.io].YUFL", "2.jpg" to "2.jpg.id-C279F237.[yourfiles1@tuta.io].YUFL", and so on. Instructions about how to contact YUFL's developers (and various other details) are provided in a pop-up window and the "FILES ENCRYPTED.txt" file.

This ransomware belongs to the Dharma ransomware family

What is DivisionIndexer?

DivisionIndexer serves advertisements and promotes a fake search engine (its address). Therefore, it functions not only as adware but also as a browser hijacker. Moreover, it is very likely that DivisionIndexer collects browsing data and/or other information as well.

Typically, users do not download and install adware and browser hijackers intentionally, for this reason apps of this type are called potentially unwanted applications (PUAs).

What is PC Accelerate?

PC Accelerate is a piece of software, endorsed as a tool for optimizing operating systems. It is supposedly capable of creating backup files, updating old registry files, eliminating errors, and so on.

It is deemed to be a PUA (Potentially Unwanted Application), due to the dubious techniques used to distribute it. Software of this kind is often nonoperational and may even have unmentioned, heinous abilities.

Note that PC Accelerate may also install under the following names: Onrym Speedup, YixSpeedUp, AesteriusAPCP, HogoSpeedup and Chrono SpeedUp.

What is searches.network?

Searches.network is the address of a fake search engine. Typically, when users see such address in the settings of a web browser/they end up on that address on certain occasions, then it means that a browser has some browser hijacker installed on it.

In most cases users download and install browser hijackers unknowingly, for this reason they are called potentially uwanted applications (PUAs). It is worthwhile to mention that quite often apps of this type are designed to gather information related to user's web browsing activities.

What is PCRepairClinic?

PCRepairClinic is a piece of untrustworthy software, promoted as a tool capable of cleaning and optimizing systems, by fixing and removing various errors. However, dubious techniques are used to distribute this application, hence most users download/install it unintentionally.

Due to this, it is classified as a PUA (Potentially Unwanted Application). Software within this classification often pose a threat to device integrity and/or user privacy.

What is Cliptomaner?

Cliptomaner is the name of a cryptocurrency miner which uses XMRig to mine Monero. It is known that is written in the AutoIT scripting language and distributed via the installer which is disguised as the installer for Realtek audio equipment. Cliptomaner is designed not only to mine cryptocurrency but also to replace cryptowallet addresses saved on the operating system clipboard.

What is OptimalRecord?

OptimalRecord is an adware-type application with browser hijacker traits. It operates by delivering intrusive advertisement campaigns and making modifications to browser settings - in order to promote fake search engines. Additionally, most adware-types and browser hijackers spy on users' browsing activity.

Since users typically download/install OptimalRecord inadvertently, it is also categorized as a PUA (Potentially Unwanted Application).