Virus and Spyware Removal Guides, uninstall instructions

What kind of software is Sebux?

While investigating deceptive sites, our researchers discovered the Sebux rogue browser extension. After analyzing this piece of software, we determined that it is adware. Sebux runs intrusive advertisement campaigns and spies on users' browsing activity.

What kind of page is stoneheartseeker[.]top?

Our researchers discovered the stoneheartseeker[.]top rogue page during a routine inspection of questionable websites. It is designed to push browser notification spam and redirect visitors to other (likely untrustworthy/harmful) sites. Most users enter webpages like stoneheartseeker[.]top via redirects caused by sites utilizing rogue advertising networks.

What kind of software is Extreme Sports Wallpapers?

While inspecting suspect websites, our research team discovered the Extreme Sports Wallpapers browser extension. It promises to display extreme sports themed browser wallpapers. After investigating this extension, we learned that it is a browser hijacker. Extreme Sports Wallpapers modifies browser settings to generate redirects.

What kind of email is "You Have Received An Encrypted Document"?

After inspecting the "You Have Received An Encrypted Document" email, we determined that it is spam. This letter makes false claims about a document shared with the email recipient. The goal is to trick them into visiting a phishing site presented as a sign-in page.

What kind of page is deepcoreminer[.]top?

Deepcoreminer[.]top is a rogue webpage that promotes browser notifications spam and redirects users to different (likely unreliable/dangerous) sites.

The majority of visitors to deepcoreminer[.]top and similar pages access them via redirects generated by websites that employ rogue advertising networks. Our researchers discovered deepcoreminer[.]top during a routine investigation of sites that use said networks.

What kind of email is "We Are Interested In Your Company Products"?

"We Are Interested In Your Company Products" is a spam email promoting a phishing scam. This letter expresses the sender's interest in purchasing products from the recipient's company. Attempting to review the potential purchase order results in redirects to a phishing website disguised as an email account sign-in page.

What is Cur malware group?

Cur malware group refers to a family of malicious programs. The software belonging to this group share little commonality with each other, likewise there are no evident code similarities. What links these programs to one another is a shared infrastructure, and there is evidence suggesting that it is connected to a cyber-espionage group affiliated with China – called ToddyCat.

At the time of writing, the Cur malware family is actively used in a campaign dubbed "Stayin' Alive", which has been going on since at least 2021. This operation is active in Asia – namely, Kazakhstan, Uzbekistan, Pakistan, and Vietnam. The known attacks targeted the telecommunications sphere and entities linked to governmental bodies.

What kind of application is PiceaAbies?

After scrutinizing the PiceaAbies browser extension, it has come to our attention that this extension is malicious in nature. PiceaAbies is distributed through a malicious installer and possesses capabilities such as reading browsing history, managing various aspects within the Chrome browser, altering data on web pages, and more.

What is "Moving Funds Out Of Niger"?

We have examined this email and found that it is a deceptive message attempting to engage recipients in a fraudulent scheme. The sender offers a substantial financial reward as an enticement, but in reality, this is a classic advance-fee scam designed to exploit and deceive recipients. Thus, this email should be ignored.

What is "PayPal - Unauthorized Transaction"?

After reviewing this email, it has become evident that it is a fraudulent message impersonating PayPal and sent by malicious actors. The intention behind this email is to trick recipients into divulging sensitive data and potentially initiating financial transfers. Thus, recipients are strongly advised to ignore this email.