Step-by-Step Malware Removal Instructions

Claim SOLV Points Boost Scam
Phishing/Scam

Claim SOLV Points Boost Scam

"Claim SOLV Points Boost" is a scam endorsed on boosts-solvfinance[.]org (could also be hosted elsewhere). This scheme impersonates the Solv Finance platform (solv.finance). However, this fake page is in no way associated with the actual Solv platform. The scam functions as a crypto drainer, it l

Yunit Stealer
Trojan

Yunit Stealer

Yunit is malware that is classified as a stealer. This malicious program operates by extracting and exfiltrating data from systems and applications. Stealers can also have other capabilities, ranging from file theft to recording content. Yunit is a piece of malicious software designed to s

Renzo ezEIGEN Allocation Scam
Phishing/Scam

Renzo ezEIGEN Allocation Scam

We have analyzed this page (aliocation-eigeniayer[.]net) and found that it is a fake Renzo platform promoting $ezEIGEN allocation. Scammers behind this fraudulent scheme seek to lure unsuspecting individuals into taking actions that could lead to financial losses. For this reason, it is highly adv

TheorySeek Adware (Mac)
Mac Virus

TheorySeek Adware (Mac)

Our researchers found the TheorySeek app while browsing new submissions to VirusTotal. Upon inspection, we determined that TheorySeek is adware from the AdLoad malware family. Advertising-supported software is designed to generate revenue for its developers/publishers through advertising.

$Leonidas PRE-SALE Scam
Phishing/Scam

$Leonidas PRE-SALE Scam

Our researchers discovered the fake "$Leonidas PRE-SALE" webpage while investigating suspicious sites. This scam is disguised as a pre-sale event for the Leonidas tokens. Upon inspection, we determined that it operates as a cryptocurrency drainer. Victims of this "$Leonidas PRE-SALE" page experien

Himalayamount.top Ads
Notification Spam

Himalayamount.top Ads

Himalayamount[.]top is a rogue webpage discovered by our researchers during a routine investigation of suspicious sites. Upon examination, we learned that himalayamount[.]top promotes browser notification spam and redirects visitors to different (likely unreliable/dangerous) websites. Users prima

SMD69 Stealer
Trojan

SMD69 Stealer

SMD69 is a stealer-type malware. It is designed to extract and exfiltrate vulnerable data from infected systems. Stealers can also possess other harmful capabilities. SMD69 has been observed being proliferating using the ClickFix scam technique. As mentioned in the introduction, SMD69 is a

GuardFlare Adware
Adware

GuardFlare Adware

While examining the GuardFlare extension, we noticed that it can generate various advertisements. For this reason, we classified it as adware. Additionally, we discovered that GuardFlare can activate the "Managed by your organization" feature. It is worth noting that the installer distributing thi

QuickFind Browser Hijacker
Browser Hijacker

QuickFind Browser Hijacker

During our inspection of QuickFind, we found that this extension is a browser hijacker. It is designed to change the settings of a web browser to promote a fake search engine (finditfasts.com). Also, QuickFind enables the "Managed by your organization" feature and is distributed alongside another

Allowflix.com Ads
Notification Spam

Allowflix.com Ads

While inspecting allowflix[.]com, we discovered that it is one of the numerous web pages using clickbait to obtain permission to show notifications. As a rule, notifications from pages like allowflix[.]com are misleading/deceptive. Therefore, users should not agree to receive notifications from al