Mac Auto Fixer (a clone of rogue Mac Defender) is bogus Mac OS optimization and antivirus utility. It claims to find numerous errors, viruses and other issues on clean machines. After deeper research those problems appear to be non-existent or not essential. Mac Auto Fixer asks 118 Euros for a 2 year license to fix these issues. There are and there will be lots of applications similar to Mac Auto Fixer, but with other name and design.
JobCrypter Ransomware is crypto-virus ransomware based on Hidden Tear code. Virus adds .locked or .css extension sto encrypted files. This crypto-extortioner encrypts user data using 3DES, and then requires a redemption to return the files back. Judging by the text of the demand for the ransom, JobCrypter is focused only on French users. However, it is noteworthy that many infected JobCrypter PCs were in Lithuania. To remove the blocking of files, the affected party needs to pay a ransom of 300 euros from the PaySafeCard.
Updated version of STOP Ransomware ransomware appends .PAUSA, .CONTACTUS, .DATASTOP or .STOPDATA suffixes to encrypted files. Virus still uses RSA-1024 encryption algorithm. All versions, except .STOPDATA, demand $600 ransom in BTC (BitCoin cryptocurrency), last one offers decryption for $200. Still malefactors offer to decrypt from 1 to 3 files for free to prove, that decryption is possible. This can be used to attempt decoding in future. At the moment, unfortunately, the only way to restore your files is from backups.
Mac Tonic, similar to Win Tonic, is rogue optimization and security application for Mac OS. Although, it has look and feel of a legitimate program, Mac Tonic was designed to earn money on unnecessary Mac tweaks, pseudo-optimization and other features, that can be achieved by means of operating system options itself or by using free programs. It is installed on computers without users consent and adds itself to Mac startup. After installation Mac Tonic scans your system for viruses and errors, and always finds something even on brand new machines. Then it offers to purchase it to fix the issues. If users ignore it, program starts displaying alerts on the desktop.
Trovi.com by Conduit Ltd is very wide-spread browser search hijacker that infects Google Chrome, Mozilla Firefox, Internet Explorer. It originates from Israel. Trovi.com infiltrates into browsers and replaces default search, homepage to http://www.trovi.com, http:/labs.trovi.com, http://search.trovi.com.