Virus and Spyware Removal Guides, uninstall instructions

Grovat Ransomware

What is Grovat?

Ransomware is software that encrypts data stored on a computer and demands payment for decryption. Grovat is a ransomware-type program discovered by Michael Gillespie and belonging to the Djvu family. Like most other programs of this type, it renames encrypted files by adding an additional extension (in this case, ".grovat").

For example, "sample.jpg" becomes "sample.jpg.grovat". It also creates a text file called "_readme.txt" containing a ransom message.

   
Roland Ransomware

What is Roland?

Roland was discovered by Michael Gillespie and belongs to the Djvu ransomware family. Developers spread this infection to extort cryptocurrency from users with affected computers. Roland encrypts data and makes files unusable unless a ransom is paid. It adds the ".roland" extension to every encrypted file.

For example, "1.jpg" becomes "1.jpg.roland". A ransom message (within the "_readme.txt" text file) can be found in folders that contain encrypted files.

   
Recognizer Ransomware

What is Recognizer?

Discovered by JAMESWT, Recognizer is an updated version of high-risk ransomware called Paradise. Just like its predecessor, Recognizer encrypts most stored files and adds the "._      _{file@p-security.li}.Recognizer" extension to the name of each encrypted file.

For instance, "sample.jpg" might be renamed to a filename such as "sample.jpg_      _{file@p-security.li}.Recognizer". It also opens a pop-up window and places a text file ("Instructions with your files.txt") on the desktop.

   
ConvertoPDF Browser Hijacker

What is blpsearch.com?

According to the developers, the ConvertoPDF app allows users to quickly convert PDF files directly from their browsers. This may seem to be a useful feature, however, ConvertoPDF is a potentially unwanted application (PUA), a browser hijacker. Generally, people download and install apps of this type inadvertently without their knowledge.

This PUA modifies browser settings (promoting the blpsearch.com search engine) and gathers information relating to users' browsing activity.

   
vxCrypter Ransomware

What is vxCrypter?

Discovered by Lawrence Abrams, vxCrypter is software that is categorized as ransomware. Like most programs of this type, it prevents victims from accessing their data unless a ransom is paid. It adds the ".xLck" extension to each encrypted file. For example, "1.jpg" is renamed to "1.jpg.xLck" after encryption.

The ransomware deletes duplicate files, however, other files should not be deleted. This malicious program displays a ransom message in a pop-up window that appears once the computer is infected.

   
Qsearch.com POP-UP Redirect (Mac)

What is qsearch.com?

qsearch.com is an untrustworthy website that is promoted through potentially unwanted applications (PUAs). Therefore, most people visit this website due to PUAs installed on their browsers (or computers). These apps cause unwanted redirects, collect user-system information, and display intrusive ads. Generally, people do not download and install PUAs intentionally.

   
Tontritrattof.info POP-UP Redirect

What is tontritrattof.info?

The tontritrattof.info website displays dubious content or opens other malicious websites. This rogue site is very similar to hajoopteg.com, lythenheckwo.info, time2notification.com, and many others. Most visitors are forced to open tontritrattof.info by potentially unwanted applications (PUAs) installed on their systems.

PUAs usually have three main purposes: to cause redirects, collect data, and serve users with ads.

   
Total System Care Unwanted Application

What is Total System Care?

The Total System Care program is presented as a "performance suite" that provides various tools to optimize Windows Operating Systems and improve performance.

The "bundling" method is used to promote and distribute this program, and it is thus categorized as a potentially unwanted application (PUA). Many users install these apps unintentionally together with other regular software.

   
Blogsfeed.info POP-UP Redirect

What is blogsfeed.info?

blogsfeed.info one of many rogue websites (virtually identical to push-checking.com, hajoopteg.com, lythenheckwo.info, and many more) designed to cause redirects to untrustworthy and potentially malicious websites or display dubious content. Most users arrive at blogsfeed.info inadvertently - they are redirected by potentially unwanted applications (PUAs).

These programs are usually installed unintentionally without users' consent. In addition to redirects, PUAs deliver intrusive ads and collect data.

   
Upgrade Your Edition Of Microsoft Word Email Virus

What is "Upgrade your edition of Microsoft Word Email Virus"?

"Upgrade your edition of Microsoft Word Email Virus" is a spam campaign that cyber criminals use to spread the Emotet infection. This is a trojan-type program, a high-risk computer infection. To trick people into installing this software, cyber criminals send emails that contain a malicious attachment, a Microsoft Word document.

The main purpose of this spam campaign is to trick recipients into opening the attachment. To keep your computer safe, we recommend that you ignore this email.

   

Page 1665 of 2349

<< Start < Prev 1661 1662 1663 1664 1665 1666 1667 1668 1669 1670 Next > End >>
About PCrisk

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal