Virus and Spyware Removal Guides, uninstall instructions

What is pdf2docpro.com?

Developed by Perion Network Ltd, Pdf2docpro.com is a fake search engine and browser hijacker app also known as Pdf2DocPro. It offers free features for PDF to DOC file conversion (and vice versa) and for making any PDF file editable. You can convert as many files as you wish.

What is newtab.co?

The newtab.co browser hijacker allows users to revive their homepages with photos that are changed daily. This is rather like desktop wallpaper, but for use with the browser homepage. It provides the ability to customize the new-tab page (essentially, the homepage) and the screen you see when opening your web browser.

What is moviesearchcenter.com?

moviesearchcenter.com is a browser hijacker and a fake search engine, which is also known as FlixTab. This search engine offers access to various movie-related websites in a single click, and a supposedly better browsing experience.

What is CoreTempApp?

CoreTempApp is a legitimate open-source application that allows users to monitor the current system temperature and view other computer component information. However, be aware that cyber criminals abuse this app in order to generate revenue.

They modify CoreTempApp's source code so that it would display of intrusive advertisements and track user's web browsing activity. Moreover modified versions typically infiltrate the system without asking for a permission. CoreTempApp basically becomes a potentially unwanted adware-type program (PUP).

What is Desu?

First discovered by malware security researcher, Jack, Desu is a ransomware-type virus that stealthily infiltrates the system and encrypts most stored files, thereby making them unusable. During encryption, Desu appends filenames with the ".desu" extension.

For instance, "sample.jpg" is renamed to "sample.jpg.desu". Following successful encryption, Desu generates a text file ("@_DECRYPT_@.txt"), placing a copy in every existing folder. The file contains a ransom demand message.

In addition, Desu modifies the system's Master Boot Record (MBR) and automatically restarts the system. Once the MBR is modified, the system becomes impossible to boot - users are simply presented with a ransom-demand message.

What is go.bonefreeze.com?

go.bonefreeze.com is another fake web search engine that, according to the developers, generates improved results and, therefore, enhances the browsing experience. This website may seem similar to Bing, Yahoo, Google, and other legitimate Internet search engines.

Therefore, go.bonefreeze.com may also seem legitimate. In fact, developers promote go.bonefreeze.com using browser-hijacking application called Bonefreeze. What's more, go.bonefreeze.com and Bonefreeze are both designed to gather information relating to user's web browsing activity.

What is FastSupport?

FastSupport is a legitimate website that provides a remote computer access service using the GoToAssist toolset. Note that, although this site is legitimate, cyber criminals abuse it to generate revenue.

What is FedEx Shipment Email Virus?

"FedEx Shipment Email Virus" is a spam email campaign similar to Barclays Secured Message, Electronic Intuit, FedEx Package, and many others. This campaign is used to distribute a high-risk trojan called LokiBot. Developers send thousands of emails that contain a message stating that the user has received a FedEx package.

The email also contains an attached MS Office document, which is presented as a receipt necessary to collect the package. Be aware, however, that this attachment is malicious - it downloads and installs the LokiBot trojan.

What is User Access Suspended?

"User Access Suspended" is a fake error message displayed by various rogue sites. In most cases, users visit these sites inadvertently - they are redirected by potentially unwanted programs (PUPs) or intrusive advertisements (displayed by other websites).

Research shows that many PUPs infiltrate systems without users’ permission. As well as causing unwanted redirects, they gather sensitive information and deliver intrusive advertisements.

What is unknown-1.download?

"unknown-1.download" (and "unknown-2.download", "unknown-3.download", "unknown-4.download", and so on) is the name of an unrecognizable file that appear in Mac download folders without users' consent. These files seem suspicious, since it is unusual for any files to randomly appear on the system.

They do not necessarily pose any threat to your computer and are often downloaded by rogue websites that you may have previously visited.