Virus and Spyware Removal Guides, uninstall instructions

Regeasyfixer Virus

What is Regeasyfixer?

The Regeasyfixer program is promoted as a system optimization tool and supposedly improves computer performance by removing junk files, optimizing browsers, cleaning and fixing the registry. In fact, when installed, it operates as Trojan.Clicker, a malicious program that allows criminals to commit 'click fraud'.

   
Feenotifyfriends.info POP-UP Ads

What is feenotifyfriends[.]info?

feenotifyfriends[.]info is yet another rogue website similar to pro-news.net, lalittandkedsi.info, gotwidores.info, and many others. This site is designed to display dubious content and cause unwanted redirects.

Many users visit feenotifyfriends[.]info inadvertently - they are redirected by potentially unwanted applications (PUAs) or intrusive advertisements displayed on other dubious sites. PUAs are notorious for infiltrating computers without users’ permission. After successful infiltration, they cause unwanted redirects, deliver advertisements, and gather data.

   
Olpair.com Ads

What is olpair[.]com?

The olpair[.]com website offers the ability to pair devices with openload[.]co and stream music and videos using the Kodi media player on Windows, Android, and other desktop or mobile operating systems. This service is relatively safe, however, olpair[.]com developers use advertising networks.

Therefore, visitors are likely to encounter redirects to dubious websites and receive intrusive advertisements.

   
See Scenic Elf Adware

What is See Scenic Elf?

See Scenic Elf is a potentially unwanted application (PUA) categorized as adware (advertising supportive software). People who have these apps installed on their systems are served with intrusive advertisements. PUAs also gather user-system information.

   
Better Mechanic Virus

What is Better Mechanic?

Developers promote Better Mechanic as an optimization tool for Windows systems. According to their website, this program cleans and fixes the registry, removes junk files and boosts memory, and improves overall computer performance.

In fact, this is Trojan.Clicker malware disguised as a legitimate and useful program. This malicious software performs illegal activity known as 'click fraud'.

   
4k Ransomware

What is 4k?

4k is the name of a ransomware-type program designed to blackmail victims by encrypting their data and forcing them to pay a ransom. It was discovered by Jakub Kroustek and is a part of a ransomware family called Dharma. 4k changes each filename by adding the ".4k" extension plus the victim's ID and the email address of the cyber criminals who developed it.

For example, "1.jpg" might be renamed to a filename such as "1.jpg.id-1E857D00.[rocosmon@cock.li].4k". It also generates two ransom notes: one in a pop-up window and the other in the "RETURN FILES.txt" file.

   
Pro-news.net POP-UP Ads

What is pro-news[.]net?

pro-news[.]net is a rogue website designed to redirect users to other dubious sites and deliver dubious content. It shares similarities with many other rogue sites such as deloplen.com, pushmenews.com, and orboreshitert.info.

Research shows that users generally visit pro-news[.]net inadvertently - they are redirected by potentially unwanted applications (PUAs) and intrusive advertisements delivered by other rogue sites. PUAs are known to infiltrate computers without users' consent. In addition to causing redirects, they gather various information and deliver intrusive ads.

   
Lalittandkedsi.info POP-UP Ads

What is lalittandkedsi[.]info?

Similar to gotwidores.infodeloplen.comcheckpost.space, and many others, lalittandkedsi[.]info is a rogue website designed to cause unwanted redirects and deliver dubious content. Users generally visit lalittandkedsi[.]info inadvertently - they are redirected by potentially unwanted applications (PUAs) or intrusive advertisements delivered by other rogue sites.

Research shows that PUAs usually infiltrate computers without permission and, as well as causing redirects, generate intrusive advertisements and gather sensitive data.

   
Dharma-Cry Ransomware

What is Dharma-Cry?

Discovered by Jakub Kroustek, Dharma-Cry is a variant of Dharma ransomware. Like most programs of this type, it is used to encrypt data and force victims to purchase a decryption tool - in effect, to pay a ransom to Dharma-Cry's developers. Dharma-Cry adds the ".cry" extension to the name of each encrypted file plus a unique victim ID and email address.

For example, "1.jpg" might be renamed to a filename such as "1.jpg.id-1E857D00.[decryptoperator@qq.com].cry". Instructions about how to purchase a decryption tool are provided in the pop-up window. It also creates another ransom message within the "RETURN FILES.txt" file.

   
Al Hafez Trading Company Email Virus

What is "Al Hafez Trading Company Email Virus"?

THe "Al Hafez Trading Company Email Virus" scam is used by cyber criminals to spread the NanoCore remote access trojan (RAT).

They send emails that contain a malicious Microsoft Office document and hope that people will open it. If opened, the document causes download and installation of the RAT. Having this software installed might cause serious problems and, therefore, we strongly recommend that you ignore emails relating to this scam.

   

Page 1623 of 2329

<< Start < Prev 1621 1622 1623 1624 1625 1626 1627 1628 1629 1630 Next > End >>
About PCrisk

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal