Virus and Spyware Removal Guides, uninstall instructions

What is ProcesserGrid?

ProcesserGrid is a rogue app that our researchers discovered while checking out new submissions to VirusTotal. After inspecting this piece of software, we learned that it operates as adware and belongs to the AdLoad malware family.

What is CommonCreative?

During a routine inspection of new submissions to VirusTotal, our research team discovered the CommonCreative rogue application. Our analysis of CommonCreative revealed that it is adware belonging to the AdLoad malware family.

What is "Pride Mobility" email scam?

After analyzing this "Pride Mobility" email, we determined that it is malspam. This letter is presented as a message regarding a purchase. It must be emphasized that this email is not associated with the legitimate Pride Mobility Products company or any other real entities.

The "Pride Mobility" spam email is intended to trick recipients into opening its malicious attachment - thus triggering LokiBot malware's download/installation.

What is PingPull?

PingPull is a piece of malicious software classified as a RAT (Remote Access Trojan). Malware of this type is designed to enable remote access and control over infected machines. RATs are highly multifunctional; hence, the threats posed by these trojans are especially broad.

What is the Illuminati email scam?

After inspecting the email, our team has found that it is an invitation to join the Illuminati sent by scammers. Illuminati is a name given to real and fictitious groups. Scammers behind this email attempt to trick recipients into contacting them for more details regarding recruitment.

What is DiskFresh?

DiskFresh is a piece of malicious software that our researchers discovered while inspecting "cracked" software download sites. This program is capable of force-opening various rogue, deceptive, and malicious websites. Furthermore, DiskFresh may have additional harmful functionalities.

What kind of application is DirectNetwork?

DirectNetwork is an advertising-supported application, which means it generates advertisements. Our team has discovered this application while inspecting deceptive pages. It is uncommon for apps like DirectNetwork to be downloaded and installed intentionally. Most of them are promoted and distributed using deceitful methods.

What kind of malware is Hydra?

Hydra is an Android banking Trojan targeting customers of Commerzbank, a major German bank. After downloading and opening the malicious app, it requests certain permissions. It starts its malicious activities after receiving those permissions. It is known that threat actors used Google Play Store to distribute Hydra by disguising it as a PDF document manager.

What is Keona Clipper?

Keona is the name of a clipper-type malware. Otherwise known as clipboard hijackers, these malicious programs are designed to replace the data copied into the clipboard (copy-paste buffer). Clippers are almost exclusively used to change copied cryptocurrency wallet addresses - in order to redirect outgoing transfers into the cyber criminals' cryptowallets.

What kind of malware is Solidbit?

Solidbit is ransomware used for money extortion. It encrypts files to make them inaccessible/unusable. Also, Solidbit appends its extension (containing four random characters) to filenames and creates the "RESTORE-MY-FILES.txt" file, and displays a pop-up window (both contain ransom notes). Some Solidbit variants append ".solidbit" extension.

An example of how Solidbit renames files: it changes "1.jpg" to "1.jpg.3r5r", "2.png" to "2.png.41nm", and so forth. It may also rename "1.jpg" to "1.jpg.solidbit", etc.