Virus and Spyware Removal Guides, uninstall instructions

CABP Ransomware

What kind of malware is CABP?

CABP is ransomware that our team has discovered while analyzing malware samples submitted to VirusTotal. We found that it encrypts and renames (by appending the ".CABPRANSOM_ENCRYPTED" extension) files and displays a pop-up window containing a ransom note. The CABP ransomware was first discovered by MalwareHunterTeam.

An example of how CABP renames files: it changes "1.jpg" to "1.jpg.CABPRANSOM_ENCRYPTED", "document.txt" to "document.txt.CABPRANSOM_ENCRYPTED", and so forth.

   
Maiv Ransomware

What kind of malware is Maiv?

Our malware researchers have discovered the Maiv ransomware while analyzing malware samples recently submitted to VirusTotal. After testing the ransomware, we have learned that it belongs to the Djvu family. Maiv has three key qualities: it encrypts files, appends the ".maiv" extension to filenames, and generates a ransom note (creates the "_readme.txt" file).

Maiv renames a file named "1.jpg" to "1.jpg.maiv", "sample.png" to "sample.png.maiv", and so on. Its ransom note contains contact and payment information.

   
VirtualGuest Adware (Mac)

What is VirtualGuest?

Detected by our researchers on new submissions to VirusTotal, VirtualGuest is a rogue application. During analysis, we discovered this piece of software to be an adware-type app belonging to the AdLoad malware family.

   
Mp3fromyou.tube Ads

What kind of page is mp3fromyou[.]tube?

Mp3fromyou[.]tube is an untrustworthy website, which our research team found when inspecting rogue advertising networks. This site offers the illegal service of converting YouTube videos (via links) to downloadable MP3 audio files.

In addition to breaking copyright laws, visiting/using mp3fromyou[.]tube also poses certain threats. This website uses rogue advertising networks, which cause redirects to other suspicious and dangerous pages. Mp3fromyou[.]tube also requests visitors to allow its browser notifications that it uses for ad spam.

   
Allcome Clipper Malware

What is Allcome Clipper?

Discovered by malware analyst 3xp0rt, Allcome is a clipper-type malicious program. Malware of this type targets cryptocurrencies by replacing clipboard (copy-paste buffer) data for outgoing transactions.

   
Wgbkr Ransomware

What is Wgbkr ransomware?

Discovered by our research team during a routine inspection on new submissions into VirusTotal, Wgbkr is a ransomware-type program.

When launched on our test machine, it encrypted files and appended their filenames with a random character string and the ".wgbkr" extension. For example, a file originally titled "1.jpg" appeared as "1.jpg.G5l-bEBAA2_yokQem-6iF0GEtBkwWQlFddPrnC-OzTX_UwuQzloTzfw0.wgbkr". This ransomware also created a ransom note named "isJD_HOW_TO_DECRYPT.txt".

   
DarkWatchman RAT

What kind of malware is DarkWatchman?

We have read about the DarkWatchman malware in a blog post written by other malware researchers. We've learned that DarkWatchman is a JavaScript-based Remote Access Trojan (RAT) that cybercriminals distribute using malicious email attachments. We also found that DarkWatchman does not write any files to disk, which allows it to run undetected by most antivirus solutions.

   
Granda Misha Trojan

What is Granda Misha?

Granda Misha is a multifunctional trojan-type malware. Our researchers obtained a sample from VirusTotal and subsequently analyzed and researched this malicious program. Granda Misha has a broad list of functions, meaning that it can be used for varied purposes and cause a wide variety of serious problems.

   
You Need To Update Your Browser To View The Content POP-UP Scam

What kind of page displays the "You need to update your browser to view the content" message?

We have discovered this deceptive page while examining other pages that use questionable advertising networks. The purpose of this site is to trick visitors into downloading and executing a file that is supposed to update the Chrome browser. Our team has downloaded the file and learned that it is flagged on VirusTotal as malicious.

   
Quick Tag Browser Hijacker

What is Quick Tag?

Quick Tag is a rogue browser extension, which our research team has determined to be a browser hijacker. This piece of dubious software modifies browsers to promote the quicknewtab.com fake search engine.

   

Page 643 of 2107

<< Start < Prev 641 642 643 644 645 646 647 648 649 650 Next > End >>
About PCrisk

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal