Virus and Spyware Removal Guides, uninstall instructions

What is Bloccato?

Bloccato is ransomware-type malware that encrypts various files stored on the infiltrated system. During encryption, this ransomware adds a .bloccato extension to the name of each encrypted file. A text file ("LEGGI QUESTO FILE.txt") is then created containing a message stating that files have been encrypted and that the victim must pay a ransom to restore them.

What is SysSecure?

Developed by Hahomedia, SysSecure is a potentially unwanted program (PUP) that infiltrates the system during installation of other programs. Furthermore, SysSecure continually generates various intrusive online advertisements and monitors browsing activity. For these reasons, this PUP is classed as adware.

What is Mahasaraswati?

Mahasaraswati is ransomware-type malware that encrypts various files stored on victims' computers. During encryption, Mahasaraswati appends the name of each encrypted file with the .id-[UNIQUE USER’S ID].{mahasaraswati(@)india.com}.xtbl extension.

Furthermore, this ransomware creates two files (.jpg and .txt) each named "How to decrypt your files", placing them in each folder containing the compromised files. These files contain identical messages stating that the files have been encrypted and that victims must contact cyber criminals via an email address provided to restore them.

What is 8lock8?

8lock8 is ransomware-type virus based on HiddenTear (an educational open-source ransomware released in August, 2015). After system infiltration, 8lock8 uses AES-256 (an asymmetric encryption algorithm) to encrypt various files stored in victims' computers.

During encryption, this ransomware appends the name of each encrypted file with the .8lock8 extension, making it straightforward to recognize compromised files. Following successful encryption, 8lock8 creates a 'READ_IT.txt' file and places it in each folder that contains encrypted files.

What is SNSLocker?

SNSLocker is ransomware that stealthily infiltrates systems and encrypts various files stored on victims' computers. Types of targeted files include .bmp, .mp4, .doc, and many others.

To encrypt these files, SNSLocker uses the AES-256 algorithm. Therefore, two keys (public and private) are generated during encryption - public encrypt and private to decrypt. During encryption, SNSLocker appends the name of each encrypted file with the .RSNSLocker (or .RSNSlocked) extension.

What is .777?

.777 is a file-encrypting ransomware-type virus. This malware uses asymmetric encryption to encrypt victims' files. During encryption, .777 ransomware generates two keys - public and private (public to encrypt files, private to decrypt). Note that decryption without this key is impossible.

Therefore, developers of .777 demand a ransom in exchange for this key. Furthermore, .777 extends the name of each encrypted file with a “[email protected]$.777” extension. Thus, it is straightforward to determine which files are encrypted.

What is GenieGamer?

GenieGamer is a potentially unwanted program (PUP) that supposedly allows users to play various addictive arcade games. On initial inspection, GenieGamer may seem legitimate and useful, however, due to rogue behavior, this PUP is classed as adware.

One of the main reasons for these negative associations is stealth installation without users' consent - GenieGamer often infiltrates systems during installation of other programs. Once infiltrated, this PUP generates various intrusive online advertisements and tracks users' web browsing activity.

What is SeginChile?

SeginChile is ransomware-type malware that utilizes an open source ransomware kit called 'eda2'. Following infiltration, SeginChile employs the AES-256 algorithm to encrypt various files stored within victims' files. This ransomware also extends the name of each encrypted file with a .seginchile extension.

Furthermore, SeginChile changes the desktop wallpaper and creates an 'instrucciones.html' file, placing it on the desktop. Both text file and desktop wallpaper contain a message stating that the victim's files have been encrypted.

What kind of malware is TeslaCrypt?

TeslaCrypt is a malicious program that encrypts users' files using AES encryption. Malware of this type is called ransomware. Once the files are encrypted, payment for a private key (used to decrypt files) is demanded.

What is GhostCrypt?

GhostCrypt is ransomware-type malware designed to hijack computers and encrypt various stored files (for example, .bmp, .css, .jpeg, etc.) To encrypt these files, GhostCrypt uses an asymmetric encryption algorithm and, thus, public and private keys are generated during encryption.

Furthermore, this malware adds a .Z81928819 extension to the name of each encrypted file, making it straightforward to determine which files are compromised. Once GhostCrypt encryption is complete, the malware demands a ransom payment to restore compromised files.