Virus and Spyware Removal Guides, uninstall instructions

Apple-warning.com POP-UP Scam (Mac)

What is apple-warning[.]com?

apple-warning[.]com is one of many sites claiming that visitors' devices are infected with viruses and encouraging them to download and install a potentially unwanted application (PUA) to supposedly remove detected threats.

Typically, people do not visit addresses such as apple-warning[.]com intentionally - the web pages are opened through other dubious websites, deceptive advertisements, or by installed PUAs.

   
CommonAdmin Adware (Mac)

What is CommonAdmin?

The main purpose of CommonAdmin is to feed users with advertisements and promote the Safe Finder web page via akamaihd.net. This application is also likely to operate as an information tracking tool. Few users download or install adware intentionally and, therefore, these programs are categorized as potentially unwanted applications (PUAs).

   
Guildma Trojan

What is Guildma Trojan?

Guildma is malicious software exclusively targeting Brazil and classified as a banking Trojan. While some variants of this malware have been updated to widen its range to other territories, no observations have been made of such attacks being carried out.

Furthermore, later versions had these capacities removed entirely. Guildma is the most sophisticated banking Trojan in the region of Brazil. In comparison with similar malicious programs targeting this country, Guildma uses the most advanced execution (i.e., infection) techniques.

With its various capabilities/features, this Trojan can cause especially serious issue and is, therefore, high-risk.

   
QuestSearch Adware (Mac)

What is QuestSearch?

QuestSearch is an adware-type application which is distributed through a fake Adobe Flash Player installer. When installed, it serves a variety of advertisements. Additionally, it functions as a browser hijacker - QuestSearch promotes a fake search engine by changing browser settings.

Note that adware can also record data. Few people download or install apps such as QuestSearch intentionally and, therefore, they are categorized as potentially unwanted applications (PUAs).

   
Lalo Ransomware

What is Lalo?

Lalo is malicious software belonging to the Djvu ransomware family. Systems infected with this malware suffer data encryption and users receive ransom demands for decryption. During the encryption process, all affected files are appended with the ".lalo" extension.

For example, a file like "1.jpg" would appear as "1.jpg.lalo", and so on. After this process is complete, a ransom message within the "_readme.txt" file is dropped into every encrypted folder.

   
Best Media Converter Adware

What is Best Media Converter?

Best Media Converter supposedly functions as an audio, video and document converter, however, as with all other adware software, this program simply delivers advertisements. Since users often download and install adware inadvertently, these programs are categorized as potentially unwanted applications (PUAs).

Note that adware often collects browsing-related, and other, data.

   
SARS-CoV-2 Ransomware

What is SARS-CoV-2?

Discovered by Jirehlov, SARS-CoV-2 is malicious software categorized as ransomware. This malware is designed to encrypt data and demand payment for decryption. When it encrypts, all affected files are appended with the ".SARS-CoV-2" extension.

For example, a file originally named something like "1.jpg" would appear as "1.jpg.SARS-CoV-2" following encryption. After this process is finished, a text file ("RECOVER MY ENCRYPTED FILES.TXT") containing the ransom message is dropped into every compromised folder.

   
Void Ransomware

What is Void?

Void (also known as VoidCrypt) is a malicious program classified as ransomware. Systems infected with this malware suffer data encryption and users receive ransom demands for file decryption. When this ransomware encrypts, all affected files are renamed according to this pattern: original filename, cyber criminals' email address, unique ID and the ".Void" extension.

For example, a file like "1.jpg" would appear as something akin to "1.jpg.[stevenxx134@gmail.com][ID-X2VBE84A6PZNQKW].Void" following encryption. After this process is complete, a ransom message is displayed in a pop-up window via the "Decryption-Info.HTA" file, which is dropped into every compromised folder.

   
PonyFinal Ransomware

What is PonyFinal?

Discovered by Jirehlov, and like many other programs of this type, PonyFinal is designed to block access to files by encryption, change their filenames and generate ransom messages. It renames each encrypted file by appending the ".enc" extension to the filename.

For example, it renames "1.jpg" to "1.jpg.enc", "2.jpg" to "2.jpg.enc", and so on. This ransomware drops a text file ("README_files.txt") containing a ransom message in every folder that contains encrypted files.

   
SystemSpecial Adware (Mac)

What is SystemSpecial?

SystemSpecial is a rogue app, classified as adware. It enables the placement of various intrusive ads on any visited website. Additionally, this application has capabilities typical of browser hijackers. SystemSpecial modifies browser settings and promotes Safe Finder via akamaihd.net.

Due to the app's dubious proliferation methods, it is also classified as a Potentially Unwanted Application (PUA). Most PUAs can track browsing-related data, which is also likely to be the case with SystemSpecial.

   

Page 1416 of 2359

<< Start < Prev 1411 1412 1413 1414 1415 1416 1417 1418 1419 1420 Next > End >>
About PCrisk

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal