Virus and Spyware Removal Guides, uninstall instructions

Upcoming Auction Email Scam

What kind of email is "Upcoming Auction"?

After examining the "Upcoming Auction" email, we determined that it is spam. It is presented as a message from the recipient's employer inviting them to join an auction. This hoax mail instructs to sign into the email account via a phishing website to show interest in participation.

   
Jorik Trojan

What kind of malware is Jorik?

Jorik is the name of a trojan-type malware. This program stealthily infiltrates victims' machines on which it can then perform malicious actions. Trojans are considered to be high-risk threats – hence, they must be eliminated from operating systems immediately upon detection.

   
Bspojzo Ransomware

What kind of malware is Bspojzo?

Bspojzo is a piece of malicious software categorized as ransomware. Our research team discovered it while reviewing new malware submissions to the VirusTotal website. This malicious program is part of the Snatch ransomware family. Bspojzo is designed to encrypt data and demand payment for its decryption.

Files locked by this ransomware are appended with a ".bspojzo" extension, e.g., a file originally named "1.jpg" appears as "1.jpg.bspojzo", "2.png" as "2.png.bspojzo", etc. Once the encryption process is completed, Bspojzo creates a ransom-demanding message titled "HOW TO RESTORE YOUR BSPOJZO FILES.TXT".

   
Pzcqyq Ransomware

What kind of malware is Pzcqyq?

During our analysis of samples uploaded to the VirusTotal platform, our team identified Pzcqyq, a ransomware variant belonging to the Snatch family. We observed that Pzcqyq employs encryption to lock files, adds the ".pzcqyq" extension to filenames, and generates a ransom note (a file named "HOW TO RESTORE YOUR PZCQYQ FILES.TXT").

An illustration of how Pzcqyq modifies filenames: it changes "1.jpg" to "1.jpg.pzcqyq", "2.png" to "2.png.pzcqyq", and so forth.

   
ConferenceTrader Adware (Mac)

What kind of application is ConferenceTrader?

After assessing ConferenceTrader, our team has determined that its primary function revolves around displaying disruptive advertisements to users, categorizing it as adware. It is important to highlight that users frequently install applications akin to ConferenceTrader without being aware of the ensuing repercussions.

   
Proton (Xorist) Ransomware

What kind of malware is Proton (Xorist)?

Our research team discovered the Proton ransomware-type program during a routine investigation of new submissions to the VirusTotal site. This malicious program belongs to the Xorist ransomware family. Malware within this classification encrypts data and demands payment for its decryption.

On our test machine, Proton (Xorist) ransomware encrypted files and appended their titles with a ".PrOToN" extension. For example, an original filename such as "1.jpg" appeared as "1.jpg.PrOToN", "2.png" as "2.png.PrOToN", and so on for all of the locked files.

Afterwards, this program changed the desktop wallpaper. It also created identical ransom notes in a pop-up window, wallpaper, and text file titled "HOW TO DECRYPT FILES.txt".

   
FormatDash Adware (Mac)

What kind of application is FormatDash?

Our researchers found the FormatDash application during a routine inspection of new submissions to the VirusTotal website. After analyzing this piece of software, we learned that it is adware belonging to the AdLoad malware family. FormatDash is designed to generate revenue for its developers by delivering intrusive advertisement campaigns.

   
MountainVibe Adware (Mac)

What kind of application is MountainVibe?

MountainVibe is a rogue application that we discovered during a routine inspection while investigating new submissions to VirusTotal. Our analysis revealed that MountainVibe is advertising-supported software (adware) and is part of the AdLoad malware family.

   
Total AV Security - Your Smartphone Is Infected POP-UP Scam

What kind of scam is "Total AV Security - Your Smartphone Is Infected"?

While investigating suspicious websites, our research team found a page promoting the "Total AV Security - Your Smartphone Is Infected" scam. It falsely claims that the visiting user's smartphone is infected with five viruses. It must be emphasized that this scam is in no way associated with the real TotalAV anti-virus.

   
Wagner (Xorist) Ransomware

What kind of malware is Wagner?

While examining malware samples submitted to VirusTotal, we came across Wagner, a ransomware variant associated with the Xorist family. Wagner employs encryption on files, adds the ".Wagner2.0" extension to their names, and generates a ransom note as a text file named "КАК РАСШИФРОВАТЬ ФАЙЛЫ.txt", and displays an error window with the same text.

An example of how Wagner renames files: it changes "1.jpg" to "1.jpg.Wagner2.0", "2.png" to "2.png.Wagner2.0", and so forth.

   

Page 466 of 2372

<< Start < Prev 461 462 463 464 465 466 467 468 469 470 Next > End >>
About PCrisk

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal