Virus and Spyware Removal Guides, uninstall instructions

INTERNATIONAL MONETARY FUND (IMF) Email Scam

What is INTERNATIONAL MONETARY FUND (IMF) email scam?

The International Monetary Fund (IMF) is a legitimate financial institution, an international organization that promotes global economic growth, reduces poverty, encourages international trade. There is more than one email scam variant claiming to be authored by IMF officials.

Typically, scammers behind these bogus emails attempt to trick recipients into contacting the IMF for issuance of some form of approval, to receive a donation, or for other matters. In any case, the purpose of these emails is to deceive recipients into providing personal information or transferring money.

   
Email Account Is Almost Full Scam

What is the "Email Account Is Almost Full" scam email message?

"Email Account Is Almost Full Scam" refers to a spam campaign, a large-scale operation during which deceptive emails are sent by the thousand. The messages distributed through the campaign in question are presented as notifications concerning a near-capacity email account.

These scam emails aim to trick recipients into attempting to sign into their mail accounts via a promote phishing website. Thus, any data (i.e., passwords) entered into the web page is exposed to the scammers.

   
Clman Ransomware

What is Clman?

Ransomware is a type of malware that encrypts files or the entire device. It also displays a ransom message demanding payment in exchange for decryption software or a key. Usually, victims cannot access or use their files unless they decrypt them with a valid decryption tool.

Clman encrypts files and renames them, adding the victim's ID, coleman2021@aol.com email address, and appending ".clman" as the extension. For example, "1.jpg" is renamed to "1.jpg.id-C279F237.[coleman2021@aol.com].clman", "2.jpg" to "2.jpg.id-C279F237.[coleman2021@aol.com].clman", and so on.

Clman displays a pop-up window and creates the "FILES ENCRYPTED.txt" text file, which contains instructions about how to contact the attackers.

Note that Clman is part of the ransomware family called Phobos.

   
ApolloSearch Adware (Mac)

What is ApolloSearch?

ApolloSearch is a rogue application classified as adware (not to be confused with another adware-type app of the same name). It also has browser hijacker traits. Following installation, this app runs intrusive advertisement campaigns and makes alterations to browser settings to promote fake search engines.

Additionally, most adware and browser hijackers have data tracking capabilities, which are employed to monitor users' browsing activity. Therefore, it is likely that ApolloSearch has this functionality as well.

Due to the dubious methods used to distribute this app, it is categorized as a Potentially Unwanted Application (PUA).

ApolloSearch has been noted being spread via fake Adobe Flash updates. Note that bogus software updaters distribute PUAs and also Trojans, ransomware, and other malware.

   
Raped Ransomware

What is Raped ransomware?

Raped ransomware is malicious software that encrypts data and demands payment for decryption. I.e., this malware locks files stored on the compromised system and demands ransom payment for recovery.

During encryption process, files are appended with the "..raped" extension. For example, a file originally named something like "1.jpg" would appear as "1.jpg..raped", "2.jpg" as "2.jpg..raped", and so on.

After this process is complete, ransom messages in "HOW TO DECRYPT FILES.txt" files are dropped into affected folders.

Note that Raped ransomware belongs to the Xorist malware family.

   
UnitHandler Adware (Mac)

What is UnitHandler?

UnitHandler displays advertisements and modifies browser settings to promote a specific address. In this way, it functions as adware and as a browser hijacker.

Typically, users do not download or install apps like UnitHandler intentionally and, therefore, this application falls into the category of potentially unwanted applications (PUAs).

UnitHandler is distributed via deceptive installer, which emulates the Adobe Flash Player installer.

   
PortalAgent Adware (Mac)

What is PortalAgent?

PortalAgent displays unwanted advertisements and forces users to visit a specific address (a fake search engine). It is also likely that PortalAgent also collects information relating to internet browsing activities and other data.

Note that PortalAgent is distributed through a deceptive installer (a fake installer for Adobe Flash Player) and users often download and install this app unintentionally. Therefore, these rogue apps are classified as potentially unwanted applications (PUAs).

   
Galp Energia Email Virus

What is the "Galp Energia" scam email?

"Galp Energia email virus" refers to a spam campaign designed to spread malware (malspam). The term "spam campaign" defines a mass-scale operation during which scam emails are sent by the thousand.

The messages distributed through this campaign are disguised as notifications concerning an overdue invoice issued by Galp Energia, a genuine Portuguese corporation, dealing in oil and gas exploration and production, natural gas transportation and distribution, oil refining, and electricity generation.

It must be emphasized that the fake "Galp Energia" emails are in no way associated with the genuine Galp corporation. This spam campaign shares many similarities with "Energias de Portugal (EDP) email virus", from the geolocation of targeted users, scam message subject matter, to the malware infection chain.

As is the case with "Energias de Portugal (EDP)" spam campaign, the type of malicious software "Galp Energia" emails proliferate is unknown. Typically, deceptive/scam messages are used to distribute Trojans, ransomware, and cryptominers.

   
Quick Recipes Browser Hijacker

What is Quick Recipes?

Quick Recipes and similar apps should never be downloaded or installed. They are classified as browser hijackers because they alter browser settings to promote fake search engines and also collect browsing data/sensitive information. Quick Recipes promotes quickrecipessearch-serp.com in this way.

Most users download and install browser hijackers and apps such as Quick Recipes inadvertently. Therefore, they are classified as potentially unwanted applications (PUAs).

   
Clear History Adware

What is Clear History?

Clear History is adware, promoted as a tool to clear browsing history. Following successful infiltration, however, Clear History begins running intrusive advertisement campaigns, delivering various dubious, misleading, deceptive, and even malicious ads.

Additionally, this adware has data tracking capabilities, which are employed to collect browsing-related information. Due to the dubious techniques used to proliferate Clear History, it is also classified as a Potentially Unwanted Application (PUA).

   

Page 905 of 2106

<< Start < Prev 901 902 903 904 905 906 907 908 909 910 Next > End >>
About PCrisk

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal