Virus and Spyware Removal Guides, uninstall instructions

DUMB Ransomware

What is DUMB?

DUMB is a file-encryption virus built on an open-source ransomware project. Unlike other ransomware-type viruses, DUMB does not append an extension to the names of encrypted files following encryption. Following successful encryption, DUMB opens a pop-up window and creates a text file ("oku_beni.txt"), placing it in each folder containing encrypted files.

The pop-up and text file contain ransom-demand messages. Note also that there is another identical ransomware virus called "Ramsomeer", which is based on DUMB.

   
Netflix Login Generator Ransomware

What is Netflix Login Generator?

Netflix Login Generator is a ransomware-type virus discovered by Karsten Hahn. This malware claims to allow users to create Netflix accounts free of charge, however, this is merely an attempt to trick users into running the app. In fact, Netflix Login Generator encrypts files using AES-256 cryptography.

During encryption, Netflix Login Generator appends filenames with the ".se" extension (for example, "sample.jpg" is renamed to "sample.jpg.se").

Netflix Login Generator then connects to a Command and Control (C&C) server and downloads a ransom-demand text file ("Instructions.txt") plus an image. The text file is placed on the desktop and the image is later set as the desktop wallpaper.

   
Zyka Ransomware

What is Zyka?

Zyka is a ransomware-type virus that stealthily infiltrates systems and encrypts files using the AES encryption algorithm. During encryption, Zyka appends filenames with the ".lock" extension. For example, "sample.jpg" is renamed to "sample.jpg.lock". A pop-up window containing a ransom-demand message is then displayed.

   
Search.searchdescargar.com Redirect

What is search.searchdescargar.com?

Developers present search.searchdescargar.com as an improved Internet search engine that generates better search results and provides quick access to various popular websites.

On initial inspection, search.searchdescargar.com may appear legitimate and useful, however, developers promote it by employing deceptive download/installation set-ups (bundling method). In addition, search.searchdescargar.com continually gathers various data relating to users' Internet browsing activity.

   
7zipper Ransomware

What is 7zipper?

7zipper is a ransomware-type virus discovered by Michael Gillespie. Following infiltration, this malware compresses files using the 7zipper program and protects the ZIP file with a password. This behavior is uncommon to ransomware-type viruses, since most encrypt files using either symmetric or asymmetric cryptography.

In addition, this malware appends the names of encrypted files with the ".7zipper" extension (for example, "sample.jpg" is renamed to "sample.jpg.7zipper"). Following encryption, 7zipper creates a text file ("Saiba como recuperar seus arquivos.txt"), placing it in each folder containing the compromised files.

   
Coolsearch.info Redirect

What is coolsearch.info?

coolsearch.info is presented as an improved Internet search engine that enhances the Internet browsing experience by generating better search results. Judging on appearance alone, coolsearch.information may seem similar to Google, Bing, Yahoo, and other legitimate search engines.

Therefore, many users believe that coolsearch.information is also legitimate and useful. In fact, this website gathers various data relating to web browsing activity. In addition, developers promote it by employing rogue download/installation set-ups.

   
CryptoShield Ransomware

What kind of malware is CryptoShield?

First discovered by a security researcher called Kafeine, CryptoShield is an updated version of CryptoMix ransomware. CryptoShield is distributed using Exploit Kits.

Following infiltration, this ransomware encrypts various data using RSA-2048 cryptography and appends the ".CRYPTOSHIELD.", ".CRYPTOSHIELD" or ".CRYPTOSHIEL" extension to the name of each file.

Following successful encryption, CryptoShield creates two files ("# RESTORING FILES #.HTML" and "# RESTORING FILES #.TXT"), placing them in each folder containing encrypted files.

   
Search.emptovo.com Redirect (Mac)

What is search.emptovo.com?

Developers present search.emptovo.com as an improved Internet search engine that enhances the Internet browsing experience by generating better search results. These claims often trick users into believing that search.emptovo.com is legitimate and useful.

In fact, developers promote this website by employing rogue download/installation set-ups designed to modify web browser settings without users' consent. Furthermore, search.emptovo.com continually tracks Internet browsing activity by gathering various user/system information.

   
XCrypt Ransomware

What is XCrypt?

XCrypt is a ransomware-type virus discovered by Jakub Kroustek. Following successful infiltration, XCrypt encrypts various data. Unlike other ransomware, however, this virus does not rename encrypted files or append alternative extensions. Once files are encrypted, XCrypt creates an image ("Help.jpg") placing it in each folder containing encrypted files.

   
RansomPlus Ransomware

What is RansomPlus?

RansomPlus is a ransomware-type malware discovered by Jiri Kropac. Following infiltration, RansomPlus encrypts files, compromising them and appending their names with the ".encrypted" extension. For instance, "sample.jpg" is renamed to "sample.jpg.encrypted".

Following successful encryption, RansomPlus creates a text file ("YOUR FILES ARE ENCRYPTED!!!.txt") containing a ransom-demand message, placing it in each folder containing encrypted files .

   

Page 1972 of 2329

<< Start < Prev 1971 1972 1973 1974 1975 1976 1977 1978 1979 1980 Next > End >>
About PCrisk

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal