Virus and Spyware Removal Guides, uninstall instructions

What is movix.searchalgo.com?

The nJoyMovies Search Plus browser hijacker is promoted as an app/tool that provides an easier and faster browsing experience.

The developers offers easy access to various movie-related websites, however, nJoyMovies is categorized as a potentially unwanted application (PUA), a browser hijacker that collects browsing-related data and modifies settings. nJoyMovies Search Plus also promotes a fake search engine (movix.searchalgo.com).

What is "Apple Email Virus"?

Scammers (cyber criminals) use the "Apple Email Virus" spam email campaign to distribute the Hancitor virus. The main goal of this email is to trick recipients to download and open an attachment. This is a typical scam used to infect computers and should be ignored. Opening the attachment might cause computer infections and other problems.

What is cliksource.cool?

cliksource.cool is a rogue website virtually identical to defpush.com, sociatemethio.club, special-promotion.online, and a number of other deceptive sites. Note that cliksource.cool causes redirects to other dubious sites.

Generally, users arrive at cliksource.cool inadvertently - they are redirected by potentially unwanted applications (PUAs) or intrusive advertisements displayed on other rogue sites.

Research shows that many PUAs infiltrate systems without consent and, as well as causing redirects, deliver intrusive advertisements and record user-system information relating to web browsing habits.

What is SysTweak AntiMalware?

Developers promote SysTweak AntiMalware as a tool capable of detecting and eliminating malware, spyware, and other threats that might compromise Mac computers or data stored on them.

They claim that this is a 'useful tool', however, it is categorized as a potentially unwanted application (PUA), since it is promoted using the "bundling" method and most users install it unintentionally. SysTweak AntiMalware is promoted using deceptive Mac Tuneup and Flash Player installers.

What is "American Express" email virus?

"American Express Email Virus" is one of many spam campaigns used by scammers to proliferate computer infections. Scammers use this (and other similar) email scams to trick people into opening presented attachments (HTML files). Opening this particular attachment will result in users having various personal details stolen.

What is KingMiner?

KingMiner is a malicious program (malware) that uses XMRig, a legitimate cryptocurrency program to mine Monero cryptocurrency. A running process called "powered.exe" can be found in Task Manager - this virus infiltrates systems and mines cryptocurrency without users' consent.

What is Bkpx?

Bkpx is is a ransomware-type virus that belongs to the Dharma family and was discovered by Jakub Kroustek. The main purpose of Bkpx is to encrypt data stored on an infected system and keep it locked until a decryption tool is purchased and ransom is paid.

The virus renames all encrypted files by adding the ".bkpx" extension plus an ID number and email address. For example, "sample.jpg" becomes "sample.jpg.id-1E857D00.[Admin@decryption.biz].bkpx", and so on. Bkpx also generates a ransom note presented in the "FILES ENCRYPTED.txt" file and opens a pop-up window.

What is "Terminal would like to control this computer"?

"Terminal would like to control this computer" is a fake pop-up window/message that asks Mac users permission for "Terminal" to control the computer using accessibility features. Many users encounter this pop-up on their Macs, however, it is merely a scam and should be ignored. Access should be denied.

What is "IRS Email Virus"?

Scammers (cyber criminals) use the "IRS Email Virus" spam email campaign to spread Emotet, a high-risk computer infection. This is malicious software used to record personal data and even distribute other infections.

Spam campaigns such as "IRS Email Virus" usually contain an infected attachment that, once opened, installs a virus (in this case, Emotet). This particular email is presented as an email from the IRS (Internal Revenue Service).

What is Dablio?

Dablio is a ransomware-type computer virus discovered by Karsten Hahn. Its purpose is to encrypt files (rendering them unusable) and make ransom demands for their release. Each encrypted file is renamed by adding "(encrypted)" to the filename. For example, "1.jpg" becomes "(encrypted) 1.jpg", and so on.

When a system is infected with this virus, a ransom-demand pop-up window is displayed. This ransomware was developed using the Python programming language.