News

Sextortion Scam Now Includes Ransomware

Sextortion scams are known for been incredibly pervasive with the use of social engineering methods in an attempt to blackmail victims. These scams (for example "I am a spyware developer" or "I have bad news") often take the form of an email allegedly sent by a hacker which informs the victim that the hacker has compromised the victim’s computer and has managed to steal compromising information. This information, for example, may allegedly be of the victim watching pornography, is then threatened to be released within a time frame is the hacker does not receive a payment, usually in cryptocurrency, before the time deadline. Security researchers at Proofpoint have discovered such a campaign which ultimately leads to a ransomware infection as well. Researchers published their findings in an article which details how a sextortion campaign that also included URLs linking to AZORult stealer that ultimately led to infe...

US States File Multistate Lawsuit in Response to Data Breach

Most countries have some form of legislation de...

Ransomware Payments May Violate US Sanctions

Law enforcement agencies and security firms the...

AutoCAD Malware Used in Espionage Campaign

Malware leveraging AutoCAD is not a new phenome...

Top Removal Guides

Weknow.ac Redirect (Mac)

Similar to chumsearch.com, weknow.ac is a fake web search engine that supposedly enhances the browsing experien...

I Am A Spyware Software Developer Email Scam

The "I am a spyware software developer Email Scam" is a spam email campaign used to threaten people and to trick them into transferring Bitcoin...

Other

Support Forum

This forum was created to individually help our readers with spyware and virus removal. Feel free to post your questions and our staff will do their best to answer them and provide the latest relevant information.

New Removal Guides

.SYS Ransomware

.SYS ransomware is just another ransomware-type infection out there. Like most of them, it is designed to block the access to the files by encrypting them, and to keep them locked as long as ransom demands are not met. This ransomware was discovered by Michael Gillespie. Once the computer is infected and files are encrypted, .SYS replaces their extension with a 16 character hexadecimal string filename. For example, "1E857D004DFB70F474DFF1B265DAB864.SYS". Every encrypted file gets a different string. It also puts a ransom-demanding text file ("_HELP_INSTRUCTION.TXT") in each folder that contains any of the encrypted files. As stated in the "_HELP_INSTRUCTION.TXT" ransom note, .SYS ransomware has encrypted all data, in order to get more details its victims are encouraged to contact cyber criminals via all the provided email addresses: itprocessor@protonmail.com, pcambulance1@protonmail.com, leablossom@yandex...

Mercury Ransomware

Mercury is a malicious software (ransomware...

RYK Ransomware

There are many ransomware-type computer inf...

Kali Ransomware

Kali ransomware is a malicious software tha...

Top Antispyware

SpyHunter 5

Overview: Simply put a rootkit is a program or, more often, a collection of software tools that gives the hacker remote access to and control ov...

Malwarebytes Anti-Malware

Malwarebytes Anti-malware Pro costs $24.95 for a lifetime license and includes additional features not available in the free version, such as rea...

Top Antivirus

Combo Cleaner: Antivirus and System Optimizer (for Mac computers)

  Supported platforms: At time of testing, Combo Cleaner was only available for Mac computers running the Mac OSX 10.10 (Yosemite), Mac ...

Avast Pro Antivirus

Avast’s slate grey, green, and purple interface on paper sounds like it could be hideous. However, it works and the interface is easy to use and ...