Virus and Spyware Removal Guides, uninstall instructions

Dulgtv Ransomware

What is Dulgtv ransomware?

Dulgtv belongs to the Snatch ransomware family. Typically, malware of this type is designed to encrypt victims' files, rename them, and generate a ransom message. Dulgtv appends the ".dulgtv" extension to the filenames of encrypted files. For example, "1.jpg" is renamed to "1.jpg.dulgtv", "2.jpg" to "2.jpg.dulgtv", and so on.

It creates a ransom message within the "HOW TO RESTORE YOUR FILES.TXT" text file in all folders that contain encrypted files.

   
Caterpillar Ransomware

What kind of malware is Caterpillar?

Caterpillar is malicious software and part of the Voidcrypt ransomware group. This malware operates by encrypting files and demanding payment for decryption tools. During the encryption process, all affected files are renamed following this pattern: original filename, cyber criminals' email address, unique ID assigned to the victims and the ".Caterpillar" extension.

For example, a file originally named "1.jpg" would appear as something similar to "1.jpg.[AdminDecrpt@zohomail.com][SQPT9Z0GEV65BW4].Caterpillar" following encryption. Once this process is complete, ransom messages in "!INFO.HTA" files are dropped into compromised folders.

   
ConsumerSurvey Adware (Mac)

What is ConsumerSurvey?

ConsumerSurvey is a potentially unwanted application (PUA) that is designed to function as a browser hijacker and adware. More precisely, this app changes certain browser settings to the address of a fake search engine and serves advertisements.

ConsumerSurvey can also read private, sensitive information. These apps are classified as PUAs because users often download and install them inadvertently. This particular app is distributed via a deceptive installer disguised as the installer for Adobe Flash Player.

   
InputBalance Adware (Mac)

What is InputBalance?

InputBalance functions as adware, browser hijacker and a data collector - it serves advertisements, promotes a fake search engine, and gathers private, sensitive information. Commonly, users download and install these apps inadvertently. InputBalance is distributed by using a fake installer disguised as the installer for Adobe Flash Player.

   
Cat Ransomware

What is Cat ransomware?

Cat is a malicious program and part of the VoidCrypt ransomware family. It is designed to encrypt data and demand payment for decryption tools.

During the encryption process, all affected files are renamed following this pattern: original filename, cyber criminals' email address, unique ID assigned to the victims and the ".Cat" extension (not to be confused with the legitimate .CAT extensions of Windows Catalog Files and Advanced Disk Catalog Databases).

For example, a file originally named "1.jpg" would appear as something similar to "1.jpg.[whilingo@gmail.com][FEI6GRTY782XP0S].Cat" after encryption. Once this process is complete, ransom messages within "!INFO.HTA" files are dropped into compromised folders.

   
RelevantKnowledge Adware

What is RelevantKnowledge?

RelevantKnowledge is advertised as a tool that people can use to express their opinions about various products and services by participating in online research, however, this app is classified as adware and serves advertisements.

Commonly, users download and install adware inadvertently and, therefore, apps of this type are categorized as potentially unwanted applications (PUAs).

   
ARASUF Ransomware

What is ARASUF ransomware?

ARASUF is malicious software belonging to the VoidCrypt ransomware family. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption tools.

During the encryption process, all compromised files are renamed following this pattern: original filename, cyber criminals' email address, unique ID assigned to the victims, and the ".ARASUF" extension. For example, a file originally titled "1.jpg" would appear as "1.jpg.[ARASUF@tutanota.com][SQPT9Z0GEV65BW4].ARASUF" following encryption.

Once this process is complete, ransom-demand messages within "!INFO.HTA" files are dropped into affected folders.

   
YOUF Ransomware

What is YOUF?

YOUF belongs to the Dharma ransomware family. It prevents victims from accessing their files by encryption, renames all encrypted files, and generates two ransom messages. YOUF renames files by adding the victim's ID, the yourfiles1@cock.li email address, and appending the ".YOUF" extension.

For example, "1.jpg" is renamed to "1.jpg.id-1E857D00.[yourfiles1@cock.li].YOUF", "2.jpg" to "2.jpg.id-1E857D00.[yourfiles1@cock.li].YOUF", and so on. Instructions about how to contact the ransomware developers are provided in a pop-up window and "FILES ENCRYPTED.txt" text file.

   
LiteCoin Giveaway POP-UP Scam

What is "LiteCoin Giveaway"?

"LiteCoin Giveaway" is a scam run on various deceptive websites. This scheme claims that, by transferring at least 3 LTC (Litecoin cryptocurrency) into the provided cryptowallet (via a wallet address or QR code), users will receive tenfold the amount.

Regardless of how much people transfer, however, they will not receive anything in return - neither the sum that was transferred nor any more. Therefore, you are strongly advised against trusting "LiteCoin Giveaway" or other similar scams.

In cases when deceptive sites are accessed unintentionally, it is typically due to mistyped URLs, redirects caused by intrusive advertisements or by Potentially Unwanted Applications (PUAs). This software does not require explicit permission to be installed onto systems, and hence users may be unaware of its presence.

   
GameSearchClub Browser Hijacker

What is GameSearchClub?

Browser hijacking apps promote fake search engines by modifying browser settings. GameSearchClub promotes gamesearchclub.com in this way and is also likely to collect information relating to users' browsing activities.

People often download and install browser hijackers inadvertently and, therefore, GameSearchClub and other apps of this type are categorized as potentially unwanted applications (PUAs).

   

Page 983 of 2107

<< Start < Prev 981 982 983 984 985 986 987 988 989 990 Next > End >>
About PCrisk

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal