Virus and Spyware Removal Guides, uninstall instructions

Fake Software Update POP-UP Scam (Mac)

How to remove "Fake Software Update" from Mac?

What is "Fake Software Update"?

Fake Software Update refers to a deceptive pop-up window, claiming that the Adobe Flash Player is outdated and requires to be updated. This scam is designed to promote various rogue applications (e.g., browser hijackers and adware) and other potentially malicious content - via fake Flash Player updaters/installers. These pop-ups are usually displayed by deceptive/scam websites. Such sites are rarely accessed intentionally, most visitors to them get redirected by PUAs (Potentially Unwanted Applications) or by intrusive advertisements.

MightyBrowser Adware (Mac)

How to remove MightyBrowser from Mac?

What is MightyBrowser?

According to developers of the MightyBrowser application, this software supposed to help its users to browse/search the web. However, it is known that MightyBrowser is a potentially unwanted application (PUA) which is categorized as adware. First, people usually do not download and install apps of this type intentionally. Quite often they are being tricked into it. Second, adware-type apps deliver intrusive advertisements. Also, they are often designed to gather various information about their users as well. Ads

Pushstack[.]co redirect removal instructions

What is pushstack[.]co?

Pushstack[.]co is an untrustworthy website which contains questionable content. However, if visited, it might redirect people to a couple of other websites of this kind. Either way, its visitors do not open it intentionally. Typically, websites like pushstack[.]co get opened by potentially unwanted applications (PUAs) that are installed on browser's and/or operating systems. Also, apps of this type are often designed to gather various data and display ads. Some examples of pages that function as pushstack[.]co does are shireamentsp[.]info, notify-system[.]com and mediasvideo[.]live. Ads

Readmenewz[.]com redirect removal instructions

What is readmenewz[.]com?

Readmenewz[.]com one of those rogue websites that, if visited, redirect visitors to dubious websites or display some questionable content. It is very similar to other pages of this type, such as shireamentsp[.]info, notify-system[.]com, mediasvideo[.]live and many others. Typically, people get redirected to such websites by potentially unwanted apps (PUAs) that are installed on browsers (and/or operating systems) or through clicked intrusive, deceptive ads. In most cases people download and/or install PUAs without knowing about it. Additionally, app of this type are usually designed to collect various data and deliver intrusive advertisements.

Major Ransomware

Major ransomware removal instructions

What is Major?

Major is a malicious program, classified as ransomware. Credit for discovering it belongs to GrujaRS. It is designed to encrypt data and keep it locked, until a ransom is paid (i.e. decryption tools/software is purchased). As the encryption is underway, all files are appended with the victim's unique ID number, Major's developers' email address and the ".AIR" extension. For example a file titled "1.jpg" would appear as something similar to "", and so on for all of the affected files. After this process is complete, an HTML file - "TRY_TO_READ.html" is created on the desktop. The wallpaper of the desktop is also changed. Redirect (Mac)

How to avoid redirects to on Mac?

What is is an address of a fake search engine, it is promoted through a potentially unwanted application (PUA), a browser hijacker called Students Learn Together. As a rule, browser hijackers promote such search engines by changing browser's settings. Also, apps of this type usually are designed to gather information related to user's browsing activities. Typically, people download and install browser hijackers unintentionally, that is why they are classified as PUAs.

Smmhck POP-UP Scam (Mac)

How to remove "Smmhck" from Mac?

What is "Smmhck"?

Smmhck is a group of scam websites, which operate by using scare-tactics to trick visitors into downloading/installing dubious software. The researched variant endorsed the Smart Mac Booster PUA (Potentially Unwanted Application), in this manner. To elaborate, when Smmhck is accessed - it warns users of viruses detected on their MacOS (Mac Operating System) and recommends an application for their elimination. Users should note that no webpage can find threats/issues on their devices; these claims are deceitful and must not be trusted. Furthermore, apps promoted on such pages are highly likely to be fraudulent and nonfunctional. Few visitors enter Smmhck intentionally, most get redirected by PUAs or by intrusive advertisements. Ads

Flv2mp3[.]by redirect removal instructions

What is flv2mp3[.]by?

Flv2mp3[.]by is a website that operates as an online video downloader and converter, it allows users to download videos from YouTube and convert them to .avi, .mp4 and .mp3 format files. However, this page uses questionable advertising networks, it means that it contains ads that redirect people who click them to shady websites. It is not recommended to use services that are provided by such pages, besides, it is not legal to download videos from YouTube.

Lokf Ransomware

Lokf ransomware removal instructions

What is Lokf?

Discovered by Michael Gillespie, Lokf is a malicious program, belonging to the Djvu ransomware family. It is designed to encrypt data and demand a ransom for its decryption. During the encryption, all files are retitled with the ".lokf" extension. For example, a file like "1.jpg" would appear as "1.jpg.lokf", and so forth for all of the affected files. Once this process ends, Lokf drops a text file - "_readme.txt" into every affected folder.

Corpseworm Ransomware

Corpseworm ransomware removal instructions

What is Corpseworm?

Credit for discovering Corpseworm belongs to Alex Svirid. This malicious software is a variant of Cryakl ransomware; designed to encrypt data and demand a ransom for its decryption. During the encryption process all affected files are appended with "[CS]", developers' email address and an extension consisting of a random string of characters ("[CS][].[random_string]"). For example, a file like "1.jpg" would appear as something similar to "1.jpg[CS][].zyk", and so forth for all of the compromised files. After this process is complete, a text file - "README.txt" is created on the victim's desktop.


Page 3 of 838

<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>
Malware activity

Global virus and spyware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal