Virus and Spyware Removal Guides, uninstall instructions

Remk Ransomware

What is Remk?

Remk is a malicious program belonging to the STOP/Djvu ransomware family. Systems infected with this malware experience data encryption and users receive ransom demands for decryption. When this ransomware encrypts, all affected files are appended with the ".remk" extension.

For example, a file originally named something like "1.jpg" would appear as "1.jpg.remk" following encryption. Once this process is finished, a text file ("_readme.txt") containing the ransom message is created on the desktop.

   
Trueprofit POP-UP Scam (Mac)

What are the "Trueprofit" sites?

"Trueprofit" is a group of deceptive web pages that run various scams. Sites belonging to the group have been observed promoting "Latest version of Adobe Flash Player" schemes. These scams operate by stating that Flash Player is outdated and offering fake updates.

Note that bogus software updaters are often used to proliferate untrusted and even malicious content. "Trueprofit" might also promote other schemes. Few users access deceptive websites intentionally - most are redirected to them by intrusive advertisements or Potentially Unwanted Applications (PUAs) already installed on the device.

   
Hentai Onichan Ransomware

What is Hentai Onichan?

Discovered by S!Ri. Hentai Onichan belongs to the Quimera ransomware family. Hentai Onichan is designed to rename all encrypted files by appending the ".hor" extension. For example, it renames a file named "1.jpg" to "1.jpg.hor", and so on. Like most programs of this type, it provides victims with a ransom message.

It also drops the "HELP_ME_RECOVER_MY_FILES.txt" text file in every folder that contains encrypted data.

   
Pysa Ransomware

What kind of malware is Pysa?

Pysa is a new variant of Mespinoza ransomware, which encrypts files and appends the ".pysa" extension to filenames. For example, "1.jpg" becomes "1.jpg.pysa", and so on. It also creates a text file named "Readme.README.txt" containing a ransom message with instructions about how to recover files.

Like most programs of this type, Pysa encrypts files with a strong encryption algorithm. Therefore, victims cannot regain access to their files unless they decrypt them with a specific decryption tool and/or key.

   
Access Free Templates Browser Hijacker

What is Access Free Templates?

Access Free Templates is one of many browser hijackers that collect information relating to users' browsing habits and promote the address of a fake search engine. As with many similar apps, Access Free Templates promotes search.accessfreetemplatestab.com by changing browser settings.

Generally, users download and install the rogue apps unintentionally, and therefore they are classified as potentially unwanted applications (PUAs).

   
Koadic RAT

What is the Koadic RAT?

Koadic is malicious software classified as a Remote Access Trojan (RAT). It allows cyber criminals to gain access and control over an infected machine. RATs are high-risk malicious programs with a wide variety of dangerous capabilities. Koadic malware can cause serious issues, and endanger device and user safety.

It has been observed being promoted via spam campaigns and delivering fake HIV test results.

   
Mp3pro.xyz Suspicious Website

What is mp3pro[.]xyz?

mp3pro[.]xyz is an untrustworthy website presented as a YouTube video to MP3 converter. Its conversion services infringe copyright laws, however, it might also use rogue advertising networks, which is common to pages of this type. Visitors to mp3pro[.]xyz might find that they are redirected to various other dubious or dangerous sites.

You are strongly advised against visiting/using mp3pro[.]xyz or other similar sites.

   
SmartToolboxSearch Adware (Mac)

What is SmartToolboxSearch?

The AdLoad adware family includes a number of adware-type applications, including SmartToolboxSearch. Adware programs serve various advertisements, which is the case with this particular app, but SmartToolboxSearch also promotes a fake search engine. It might also gather information.

In most cases, users download and install adware unintentionally. Therefore, these apps are also known as potentially unwanted applications (PUAs). Note that SmartToolboxSearch is installed and distributed through a fake Adobe Flash Player installer.

   
NEFILIM Ransomware

What is NEFILIM?

NEFILIM is a malicious program categorized as ransomware. It operates by encrypting the files of infected systems in order to demand payment for decryption tools/software. During the encryption process, all compromised files are appended with the ".NEFILIM" extension.

For example, a file originally named something like "1.jpg" would appear as "1.jpg.NEFILIM" following encryption. Once this process is complete, a ransom message within "NEFILIM-DECRYPT.txt" is created on the victims' desktops.

   
View Live News Promos Adware

What is View Live News Promos?

View Live News Promos is one of many applications that feeds users with advertisements.

Apps of this type are categorized as adware and potentially unwanted applications (PUAs), since people usually download and install them inadvertently. These adware-type apps also operate as information tracking tools - they collect information relating to users' browsing habits and other data.

   

Page 1411 of 2330

<< Start < Prev 1411 1412 1413 1414 1415 1416 1417 1418 1419 1420 Next > End >>
About PCrisk

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal