Virus and Spyware Removal Guides, uninstall instructions
What is DUMB?
DUMB is a file-encryption virus built on an open-source ransomware project. Unlike other ransomware-type viruses, DUMB does not append an extension to the names of encrypted files following encryption. Following successful encryption, DUMB opens a pop-up window and creates a text file ("oku_beni.txt"), placing it in each folder containing encrypted files.
The pop-up and text file contain ransom-demand messages. Note also that there is another identical ransomware virus called "Ramsomeer", which is based on DUMB.
What is Netflix Login Generator?
Netflix Login Generator is a ransomware-type virus discovered by Karsten Hahn. This malware claims to allow users to create Netflix accounts free of charge, however, this is merely an attempt to trick users into running the app. In fact, Netflix Login Generator encrypts files using AES-256 cryptography.
During encryption, Netflix Login Generator appends filenames with the ".se" extension (for example, "sample.jpg" is renamed to "sample.jpg.se").
Netflix Login Generator then connects to a Command and Control (C&C) server and downloads a ransom-demand text file ("Instructions.txt") plus an image. The text file is placed on the desktop and the image is later set as the desktop wallpaper.
What is Zyka?
Zyka is a ransomware-type virus that stealthily infiltrates systems and encrypts files using the AES encryption algorithm. During encryption, Zyka appends filenames with the ".lock" extension. For example, "sample.jpg" is renamed to "sample.jpg.lock". A pop-up window containing a ransom-demand message is then displayed.
What is search.searchdescargar.com?
Developers present search.searchdescargar.com as an improved Internet search engine that generates better search results and provides quick access to various popular websites.
On initial inspection, search.searchdescargar.com may appear legitimate and useful, however, developers promote it by employing deceptive download/installation set-ups (bundling method). In addition, search.searchdescargar.com continually gathers various data relating to users' Internet browsing activity.
What is 7zipper?
7zipper is a ransomware-type virus discovered by Michael Gillespie. Following infiltration, this malware compresses files using the 7zipper program and protects the ZIP file with a password. This behavior is uncommon to ransomware-type viruses, since most encrypt files using either symmetric or asymmetric cryptography.
In addition, this malware appends the names of encrypted files with the ".7zipper" extension (for example, "sample.jpg" is renamed to "sample.jpg.7zipper"). Following encryption, 7zipper creates a text file ("Saiba como recuperar seus arquivos.txt"), placing it in each folder containing the compromised files.
What is coolsearch.info?
coolsearch.info is presented as an improved Internet search engine that enhances the Internet browsing experience by generating better search results. Judging on appearance alone, coolsearch.information may seem similar to Google, Bing, Yahoo, and other legitimate search engines.
Therefore, many users believe that coolsearch.information is also legitimate and useful. In fact, this website gathers various data relating to web browsing activity. In addition, developers promote it by employing rogue download/installation set-ups.
What kind of malware is CryptoShield?
First discovered by a security researcher called Kafeine, CryptoShield is an updated version of CryptoMix ransomware. CryptoShield is distributed using Exploit Kits.
Following infiltration, this ransomware encrypts various data using RSA-2048 cryptography and appends the ".CRYPTOSHIELD.", ".CRYPTOSHIELD" or ".CRYPTOSHIEL" extension to the name of each file.
Following successful encryption, CryptoShield creates two files ("# RESTORING FILES #.HTML" and "# RESTORING FILES #.TXT"), placing them in each folder containing encrypted files.
What is search.emptovo.com?
Developers present search.emptovo.com as an improved Internet search engine that enhances the Internet browsing experience by generating better search results. These claims often trick users into believing that search.emptovo.com is legitimate and useful.
In fact, developers promote this website by employing rogue download/installation set-ups designed to modify web browser settings without users' consent. Furthermore, search.emptovo.com continually tracks Internet browsing activity by gathering various user/system information.
What is XCrypt?
XCrypt is a ransomware-type virus discovered by Jakub Kroustek. Following successful infiltration, XCrypt encrypts various data. Unlike other ransomware, however, this virus does not rename encrypted files or append alternative extensions. Once files are encrypted, XCrypt creates an image ("Help.jpg") placing it in each folder containing encrypted files.
What is RansomPlus?
RansomPlus is a ransomware-type malware discovered by Jiri Kropac. Following infiltration, RansomPlus encrypts files, compromising them and appending their names with the ".encrypted" extension. For instance, "sample.jpg" is renamed to "sample.jpg.encrypted".
Following successful encryption, RansomPlus creates a text file ("YOUR FILES ARE ENCRYPTED!!!.txt") containing a ransom-demand message, placing it in each folder containing encrypted files .
More Articles...
Page 1972 of 2329
<< Start < Prev 1971 1972 1973 1974 1975 1976 1977 1978 1979 1980 Next > End >>