Virus and Spyware Removal Guides, uninstall instructions

Uncreast.com POP-UP Redirect

What is uncreast.com?

uncreast.com is virtually identical to many other rogue websites that include supervid.pro, news-io.com, and newsforyou.pro. This site is designed to cause unwanted redirects and display dubious content.

Typically, people do not visit uncreast.com intentionally - they are redirected to it by potentially unwanted applications (PUAs) that cause redirects to rogue websites such as uncreast.com, feed users with advertisements, and collect data. Users often install these apps inadvertently without their knowledge.

   
Mafee Ransomware

What is Mafee?

Discovered by Petrovic, Mafee is one of many ransomware-type programs (high-risk computer infections) developed by cyber criminals who use it to encrypt data. In this case, however, they do not make any ransom demands.

When Mafee finishes encrypting data, it displays a pop-up window and creates a "HOW TO DECRYPT FILES.txt" file, which can be found in each folder that contains encrypted files. The pop-up window and text file contain identical ransom-demand messages in Spanish. Mafee adds the ".mafee" extension to each encrypted file. For example, "1.jpg" becomes "1.jpg.mafee".

   
APPLE.COM RECOMMENDS POP-UP Scam (Mac)

What is "APPLE.COM RECOMMENDS"?

There are many fake messages such as virus and error alerts online. "APPLE.COM RECOMMENDS" is an example of a fake message. It informs MacOS users that Adobe Flash Payer is outdated and advises them to update the software. Note that most of these fake messages are displayed on untrustworthy, deceptive websites.

There is a slight change that some people might visit these websites intentionally, however, they are usually redirected to them by potentially unwanted applications (PUAs) installed on their systems. Users often install PUAs inadvertently. Once installed, they go on to cause redirects to dubious websites, gather data, and serve users with advertisements.

   
UNIT09 Ransomware

What is UNIT09?

UNIT09 is a high-risk malicious program categorized as ransomware. The main purpose of UNIT09 is to encrypt data stored on a computer and allow developers to blackmail victims by demanding purchase of a decryption tool. This program generates a ransom message in the form of a .txt file called "$!READ ME.txt".

It is very likely that this ransom message will be found in each folder that contains encrypted files. Files encrypted by UNIT09 are renamed by adding the ".UNIT09" extension. For example, "1.jpg" becomes "1.jpg.UNIT09".

   
JSWorm Ransomware

What is JSWorm?

JSWorm was discovered by MalwareHunterTeam. This malicious program is classified as ransomware: a program designed to encrypt data and deliver a ransom-demand message. When a computer is infected with a virus of this type, the victim loses access to stored data.

This particular ransomware creates an HTML file called "JSWORM-DECRYPT.html" containing a ransom message - the file is found in each folder that contains encrypted files. JSWorm renames encrypted files by adding the ".JSWORM". For instance, "1.jpg" becomes "1.jpg.JSWORM".

   
Supervid.pro POP-UP Redirect

What is supervid.pro?

supervid.pro is very similar to news-io.com, newsforyou.pro, dartsearch.net, and many other sites. Note that supervid.pro delivers dubious content and redirects to other rogue websites. Users typically visit supervid.pro inadvertently - they are redirected by potentially unwanted applications (PUAs) or intrusive ads displayed on various sites.

Research shows that PUAs typically infiltrate computers without users' direct permission and, as well as causing redirects, deliver intrusive advertisements and gather information relating to browsing habits.

   
LockerGoga Ransomware

What kind of malware is LockerGoga?

Discovered by Cyber Security, LockerGoga is a malicious program categorized as ransomware. Cyber criminals who designed this computer infection use it to encrypt data stored on computers and blackmail users by demanding ransom payments in return for decryption tools. LockerGoga adds the ".locked!?" or ".locked" extension to each encrypted file.

For example, "1.jpg" becomes "1.jpg.locked!?" or "1.jpg.locked". It also generates the "README-NOW.txt" file, which contains a ransom-demand message.

   
CottleAkela Ransomware

What is CottleAkela?

Discovered by Michael Gillespie, CottleAkela is one of many ransomware-type computer infections present on the internet. It blocks access to data (encrypts files stored on the system) and generates a "README-NOW.txt" ransom message. Each encrypted file is renamed by adding the ".locked" extension.

For example, "1.jpg" becomes "1.jpg.locked". The ransomware process can be found running in Task Manager (at time of research, under the name "System").

   
ITLOCK Ransomware

What kind of malware is ITLOCK?

ITLOCK ransomware was discovered by Cyber Security. This is a malicious program, a new version of Matrix ransomware that is designed by cyber criminals to encrypt computer data and blackmail victims by demanding ransom payments. During the encryption process, ITLOCK opens two Command Prompt windows.

Once data is encrypted, each affected file is renamed by changing the filename: an email address, two random strings and the extension are merged to form an extension with the following format: ".ITLOCK" ("[rescompany19@qq.com].[random_string]-[random_string].ITLOCK").

Renamed files might appear something like this: "[rescompany19@qq.com].8SLV8GMp-hjqo9v3s.ITLOCK". ITLOCK also creates a ransom message in the "!README_ITLOCK!.rtf" file.

   
News-io.com POP-UP Redirect

What is news-io.com?

news-io.com is a rogue site designed to cause redirects and deliver dubious content. It is virtually identical to newsforyou.pro, nandreskethep.club, ind1cate.com, and many other sites of this kind. Most visitors arrive at news-io.com inadvertently - they are redirected by potentially unwanted applications (PUAs) or intrusive advertisements displayed on other rogue sites.

PUAs usually infiltrate computers without users’ permission and, as well as causing redirects, deliver intrusive advertisements and record user-system information relating to browsing activity.

   

Page 1460 of 2106

<< Start < Prev 1451 1452 1453 1454 1455 1456 1457 1458 1459 1460 Next > End >>
About PCrisk

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal