Virus and Spyware Removal Guides, uninstall instructions

Robux Generator Scam

What is "Robux Generator"?

"Robux Generator" is a scam promoted on various deceptive websites. This scheme offers to generate an unlimited amount of Robux (in-game currency) for the Roblox online game platform and game creation system. It must be emphasized that this generator is fake and cannot generate Robux. This fraudulent generator is in no way associated with the Roblox Corporation, and its sole purpose is to scam users.

   
Medusabtc Ransomware

What is Medusabtc ransomware?

Medusabtc is part of the Xorist ransomware family. It blocks access to files (encrypts them) and generates two ransom notes (displays pop-up window and creates "HOW TO DECRYPT FILES.txt" file). Also, Medusabtc appends ".medusabtc" extension. For example, it renames "1.jpg" to "1.jpg.medusabtc", "2.jpg" to "2.jpg.medusabtc".

   
Yhlgaopimd Ransomware

What is Yhlgaopimd ransomware?

Yhlgaopimd is a malicious program belonging to the Snatch ransomware family. It is designed to encrypt data and demand payment for the decryption. In other words, this malware renders files inaccessible and asks for ransoms to restore access to the data.

Affected files are appended with a ".yhlgaopimd" extension. For example, a file initially titled "1.jpg" would appear as "1.jpg.yhlgaopimd", etc. After this process is complete, a ransom note - "HOW TO RESTORE YOUR FILES.TXT" - is dropped onto the desktop.

   
Mailclick.biz Ads

What type of page is mailclick[.]biz?

Mailclick[.]biz displays a fake CAPTCHA to trick visitors into agreeing to receive notifications from it and redirects them to untrustworthy web pages. Pages like mailclick[.]biz are promoted through potentially unwanted apps (PUAs), other dubious pages, or shady ads. Users do not open them intentionally.

   
520 Ransomware

What is 520 ransomware?

520 ransomware prevents victims from accessing files by encrypting them and modifies their filenames by appending the ".520" extension (for example, it renames "1.jpg" to "1.jpg.520", "2.jpg" to "2.jpg.520"). To provide instructions on how to contact the attackers for data recovery, 520 creates the "!_INFO.txt" file.

   
News-gemara.cc Ads

What is the news-gemara[.]cc website?

Similar to 761d.site, premium-shops-around.me, get-positive.net, and many others, news-gemara[.]cc is a rogue site. It operates by presenting visitors with questionable content and/or redirecting visitors to various (likely unreliable or malicious) webpages.

Users typically access rogue pages via redirects caused by untrustworthy websites, intrusive adverts, or PUAs (Potentially Unwanted Applications) already installed onto their devices.

   
TravelBook Adware

What is TravelBook?

TravelBook is an adware-type app endorsed as a tool for quickly accessing travel-related information. This piece of software operates by running intrusive advertisement campaigns. Due to the dubious methods used to distribute adware-type apps, they are also classified as PUAs (Potentially Unwanted Applications).

   
To2s.biz Ads

What type of page is to2s[.]biz?

The purpose of to2s[.]biz is to trick visitors into agreeing to receive its notifications and promote various potentially malicious pages. It is pretty similar to rssincewhil[.]xyz, wholedailyfeed[.]com, news-cetugu[.]cc, and hundreds of other pages.

   
Vtua Ransomware

What is Vtua ransomware?

Vtua is a piece of malicious software belonging to the Djvu ransomware family. It is designed to encrypt data (lock files) and demand ransoms for the decryption.

Affected files are appended with the ".vtua" extension. For example, a file initially titled "1.jpg" would appear as "1.jpg.vtua", "2.jpg" as "2.jpg.vtua", "3.jpg" as "3.jpg.vtua", etc. After this process is complete, a ransom note - "_readme.txt" - is created.

   
Exlock Ransomware

What is Exlock ransomware?

Exlock belongs to a family of ransomware called MedusaLocker. It encrypts files and modifies their filenames by appending the ".exlock" extension (for example, it renames "1.jpg" to "1.jpg.exlock", "2.jpg" to "2.jpg.exlock"). Instructions on how to contact the attackers and other information can be found in "HOW_TO_RECOVER_DATA.html" file.

   

Page 3 of 1391

<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>
About PCrisk

PCrisk logo

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal