Virus and Spyware Removal Guides, uninstall instructions

SMD69 Stealer

What kind of malware is SMD69?

SMD69 is a stealer-type malware. It is designed to extract and exfiltrate vulnerable data from infected systems. Stealers can also possess other harmful capabilities. SMD69 has been observed being proliferating using the ClickFix scam technique.

   
GuardFlare Adware

What kind of program is GuardFlare?

While examining the GuardFlare extension, we noticed that it can generate various advertisements. For this reason, we classified it as adware. Additionally, we discovered that GuardFlare can activate the "Managed by your organization" feature. It is worth noting that the installer distributing this extension also includes QuickFind.

   
QuickFind Browser Hijacker

What kind of extension is QuickFind?

During our inspection of QuickFind, we found that this extension is a browser hijacker. It is designed to change the settings of a web browser to promote a fake search engine (finditfasts.com). Also, QuickFind enables the "Managed by your organization" feature and is distributed alongside another unwanted extension called GuardFlare.

   
Allowflix.com Ads

What kind of page is allowflix[.]com?

While inspecting allowflix[.]com, we discovered that it is one of the numerous web pages using clickbait to obtain permission to show notifications. As a rule, notifications from pages like allowflix[.]com are misleading/deceptive. Therefore, users should not agree to receive notifications from allowflix[.]com and avoid visiting it.

   
$CATS Airdrop Live Scam

What is "$CATS Airdrop Live"?

During our examination of the site (catzclaim.pages[.]dev) promoting a $CATS airdrop, we found that it is not a legitimate crypto giveaway. Usually, these types of scams are used to extract money or personal information from unsuspecting individuals. Thus, it is advisable not to trust this platform.

   
Lido $stETH Airdrop Scam

What is the fake "Lido $stETH Airdrop"?

"Lido $stETH Airdrop" is a scam that imitates the Lido platform (lido.fi). It lures users with an stETH cryptocurrency token airdrop. However, this giveaway is fake and it is not associated with Lido or any other existing platforms and entities.

This "Lido $stETH Airdrop" scheme is a cryptocurrency drainer that aims to siphon digital assets from victims' cryptowallets.

   
EtherMail ($EMT) Airdrop Scam

What is the fake "EtherMail ($EMT) Airdrop"?

While investigating deceptive sites, our researchers discovered this fake "EtherMail ($EMT) Airdrop". The scam impersonates the EtherMail platform (ethermail.io) running an EMT (EMAIL) token airdrop.

It must be emphasized that this giveaway is fake, and it is not associated with the real EtherMail or any other existing platforms and entities. This scam is a crypto drainer seeking to steal digital assets stored in victims' cryptocurrency wallets.

   
Roundcube - Unusual Login Attempt Email Scam

What is "Roundcube - Unusual Login Attempt"?

Our team has checked this email and learned that it masquerades as an alert from an email service provider. Scammers behind this fraudulent email aim to lure recipients into opening a fake website and disclosing personal information. Scams of this type are known as phishing attempts. Recipients should ignore such emails.

   
XIXTEXRZ Ransomware

What kind of malware is XIXTEXRZ?

While browsing new malware submissions to VirusTotal, our researchers discovered the XIXTEXRZ ransomware. Malicious software of this kind encrypts files and demands ransoms for the decryption.

On our test machine, XIXTEXRZ encrypted files and appended their names with a ".crypted" extension. To elaborate, an original filename such as "1.jpg" appeared as "1.jpg.crypted", "2.png" as "2.png.crypted", and so on.

Once the encryption process was completed, XIXTEXRZ ransomware changed the desktop wallpaper and created a ransom note titled "Readme.txt".

   
Soneium Registration Scam

What is the fake "Soneium Registration" website?

While inspecting rogue pages, our researchers discovered this fake "Soneium Registration" website (event-soneium[.]org; note that it could be hosted elsewhere).

It is presented as a blockchain platform, but this scam page is not associated with existing ones or any legitimate entities. This scheme functions as a crypto drainer, i.e., it transfers digital assets from exposed cryptocurrency wallets.

   

Page 3 of 2274

<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>
About PCrisk

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal