Virus and Spyware Removal Guides, uninstall instructions

Maxtrilha Trojan

What is Maxtrilha?

Maxtrilha is the name of a banking trojan. This piece of malicious software is designed to target victims' banking accounts and their log-in credentials. Maxtrilha has been especially active in Latin America and certain countries in Europe (notably Portugal). This malware has been observed being spread through phishing spam campaigns.

!secure Ransomware

What is !secure ransomware?

!secure is a piece of malicious software categorized as ransomware. It encrypts data (renders files inaccessible) and demands payment for the decryption (access recovery).

Affected files are prepended with the cyber criminals' email address and a unique ID assigned to the victims, they are also appended with a ".!secure" extension. Therefore, a file initially titled "1.jpg" would appear as something similar to "{}.ID=34GI7BEH.1.jpg.!secure". Afterwards, two ransom notes - "!README!.hta" and "!README!.txt" - are created.

Void68 Ransomware

What is Void68 ransomware?

Void68 blocks access to files (it encrypts them) and modifies their filenames. It appends the ".void" extension to the filename of every encrypted file. For example, it renames "1.jpg" to "1.jpg.void", "2.jpg" to "2.jpg.void". Void68 also changes the desktop wallpaper to an image containing a ransom note and creates the "nyiss meg.txt" file.

PasswordStealer Spyware

What is PasswordStealer Spyware?

Password stealers are malicious programs that people often install on their computers inadvertently. Once installed, they stealthily collect sensitive information. In most cases, they target details such as login credentials (usernames, passwords), credit card details, and other personal information.

They can also be designed to gather information regarding an infected system (connected users, network activity, installed antivirus and other software, etc.). Additionally, some of these malicious programs are capable of installing additional malware onto the computer and/or adding the computer to a botnet. Redirect

What is musttrust[.]xyz? is a fake search engine. Fraudulent web searchers like musttrust[.]xyz are usually promoted by PUAs (Potentially Unwanted Applications) categorized as browser hijackers. The Find browser hijacker has been noted promoting musttrust[.]xyz; what is noteworthy is that this rogue extension uses sophisticated persistence-ensuring tactics to stop users from recovering their browsers. Ads

What kind of page is serviceone[.]info?

Serviceone[.]info has two purposes: to open various untrustworthy pages and to rick visitors into clicking the "Allow" button/agreeing to receive notifications. It shares these purposes with get-positive[.]net, positiveweb[.]org, captchamodern[.]top, and many other websites. Redirect

What is peatea[.]xyz? is the URL (address) of a fake search engine. Typically, such web searchers are promoted by PUAs (Potentially Unwanted Applications) classified as browser hijackers.

The peatea[.]xyz web searcher has been observed being promoted by a browser hijacker called Find. What is noteworthy about this piece of software is that it uses sophisticated persistence-ensuring techniques - to prevent users from restoring their browsers.

Ltnuhr Ransomware

What is Ltnuhr ransomware?

Ltnuhr encrypts files, then restarts a computer and displays a message on a black screen. It renames encrypted files by appending the ".ltnuhr" extension (for instance, it renames "1.jpg" to "1.jpg.ltnuhr", "2.jpg" to "2.jpg.ltnuhr"). Also, Ltnuhr creates the "RESTORE_FILES_INFO.txt" file, a ransom note.

Network Solutions Email Scam

What is "Network Solutions" email scam?

"Network Solutions email scam" refers to a phishing spam campaign. The spam emails are disguised as storage-related notifications from Network Solutions - a legitimate technology company that is a subsidiary of, one of the largest .com domain name registrars. It must be emphasized that these emails are in no way associated with the genuine Network Solutions company.

This spam mail aims to trick recipients into exposing their email account log-in credentials through a phishing website, presented as their email provider's sign-in page. Ads

What kind of page is xdwhatijunn[.]xyz?

Xdwhatijunn[.]xyz has two purposes: to get permission to show notifications and promote shady web pages. It is more or less similar to positiveweb[.]org, towercaptcha[.]top, apel[.]top, and hundreds of other sites. Users open these sites unintentionally, for example, through untrustworthy ads or websites.


Page 9 of 1394

<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>
About PCrisk

PCrisk logo

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal