Virus and Spyware Removal Guides, uninstall instructions

Acton Ransomware

Acton ransomware removal instructions

What is Acton?

Discovered by GrujaRS, Acton is a new version of a high-risk ransomware called Phobos. This malware is designed to stealthily infiltrate computers and encrypt most of stored data. While doing so, Acton appends each filename with victim's unique ID, developers' email address and ".Acton" extension. For instance, a file named "sample.jpg" would be renamed to something like "sample.jpg.id[1E857D00-1091].[b.morningtonjones@aol.com].Acton". Encrypted data instantly becomes unusable. Additionally, Acton generates a text ("info.txt") file and an HTML application ("info.hta"), placing both of them on victim's desktop.

   
Herad Ransomware

Herad ransomware removal instructions

What is Herad?

Herad is yet another ransomware-type infection that belongs to Djvu family. As with most of Djvu variants, Herad was firstly discovered by Michael Gillespie. After successful infiltration, Herad encrypts most of stored files, as well as appends each filename with ".herad" extension (thus, ransomware's name). Additionally, Herad generates a text file ("_readme.txt") and drops a copy in almost every existing folder.

   
Central-messages.com Ads

Central-messages[.]com redirect removal instructions

What is central-messages[.]com?

central-messages[.]com is a rogue website designed to feed users with various unreliable content, as well as to redirect them to other unreliable sites. It is virtually identical to news-easy.com, forryortitwas.info, chanelets-aurning.com and many other rogue websites. Research results show that users typically visit central-messages[.]com inadvertently - they get redirected by potentially unwanted applications and intrusive advertisements encountered in other sites. Potentially unwanted applications (PUAs) are notorious for infiltrating computers without user's consent. If causing redirects wasn't enough, unwanted applications also deliver intrusive advertisements, as well as gather various information about user's web browsing activity.

   
Transfast Email Virus

"Transfast Email Virus" removal guide

What is "Transfast Email Virus"?

"Transfast Email Virus" is yet another email spam campaign used to spread Ave Maria trojan. Cyber criminals send hundreds of thousands of deceptive emails encouraging recipients to open attached "payment slip". However, the attachment is actually malicious and opening results in a malware infection.

   
Advancemactools.live POP-UP (Mac)

How to remove "advancemactools[.]live" from Mac?

What is "advancemactools[.]live"?

advancemactools[.]live belongs to network of websites that promote various potentially unwanted applications (PUAs) for Mac computers. Users typically visit sites like advancemactools[.]live inadvertently, as they're being redirected by intrusive advertisements (displayed in other rogue sites) or already present potentially unwanted applications. Apps that cause redirects usually infiltrate systems without user's consent and, if causing redirects wasn't enough, they also record various data and deliver intrusive advertisements.

   
foSTE Ransomware

foSTE ransomware removal instructions

What is foSTE?

Discovered by Michael Gillespie, foSTE is a high-risk ransomware that belongs to GlobeImposter ransomware family. As with most of ransomware infections, foSTE encrypts stored data, thereby making it unusable. Additionally, foSTE appends each filename with ".foSTE" extension (thus, its name). For instance, "sample.jpg" would be renamed to "sample.jpg.foSTE" and so on so forth. Aside from encrypting data, foSTE generates an HTML file ("how_to_back_files.html") and drops it on victim's desktop.

   
HYDRA Ransomware

HYDRA ransomware removal instructions

What is HYDRA?

Belonging to Jigsaw ransomware family, HYDRA is a high-risk ransomware infection discovered by Michael Gillespie. After successfully infiltrating the system, HYDRA encrypts most of stored files, rendering them unusable. In addition, HYDRA adds ".HYDRA" appendix to each filename (e.g., "sample.jpg" is renamed to "sample.jpg.HYDRA" and so on so forth). Once files are completely compromised, HYDRA opens a pop-up window with a ransom-demanding message.

   
PasteBoard Adware (Mac)

How to remove PasteBoard from Mac?

What is PasteBoard?

PasteBoard is just an ordinary adware-type application that usually infiltrates computers without user's consent. It is very likely to install alongside with Spotlight.app and Spaces.app unwanted apps designed to redirect users to searchbaron.com website. After successful infiltration, PasteBoard continually delivers various intrusive advertisements, as well as records information about user's web browsing habits.

   
News-easy.com Ads

News-easy[.]com redirect removal instructions

What is news-easy[.]com?

news-easy[.]com is a rogue website that shares many similarities with check-out-this.site, edchargina.pro, chainthorn.com, and dozens of other rogue sites. news-easy[.]com is designed to serve two purposes: 1) to feed users with questionable content, and; 2) to redirect them to other unreliable sites. Research results show that news-easy[.]com is typically visited inadvertently - users get redirected by potentially unwanted applications or intrusive advertisements displayed in other unreliable sites. Potentially unwanted applications typically infiltrate computers without user's consent. In addition to causing redirects, these apps usually also deliver various advertisements, as well as monitor user's Internet browsing activity.

   
ZeroF*cks Ransomware

ZeroF*cks ransomware removal instructions

What is ZeroF*cks?

ZeroF*cks is one of many ransomware-type infections discovered by malware researcher Petrovic. As a rule, this ransomware successfully infiltrates computers and encrypts most of stored files and appends filenames with ".zerofcks" extension (e.g., "sample.jpg" would be renamed to "sample.jpg.zerofcks" and so on so forth). Once encryption is over, ZeroF*cks generates a text file named "Bitcoin_Address.txt" and drops it on victim's desktop. Additionally, ZeroF*cks opens a pop-up window.

   

Page 2 of 755

<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>
Malware activity

Global virus and spyware activity level today:

Medium threat activity
Medium

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal