Virus and Spyware Removal Guides, uninstall instructions

Erqw Ransomware

What kind of malware is Erqw?

While checking the VirusTotal page for recently submitted malware samples, we discovered ransomware belonging to the Djvu family dubbed Erqw. This ransomware encrypts data and appends the ".erqw" extension to filenames. Also, it provides a ransom note (creates the "_readme.txt" file).

An example of how Erqw renames files: it renames "1.jpg" to "1.jpg.erqw", "2.doc" to "2.doc.erqw", and so forth. It is known that sometimes actors distribute Djvu ransomware alongside RedLine, Vidar, or other information-stealing malware.

   
PrintManager Malware

What is PrintManager?

While checking out untrustworthy websites, our researchers discovered an installation setup bundled with the PrintManager malicious program. Additionally, this installer was packed together with adware. Therefore, if a PrintManager infection is detected – it is likely that other unwanted/malicious components have infiltrated the system.

   
News-mexobi.com Ads

What kind of website is news-mexobi[.]com?

We have analyzed the news-mexobi[.]com page and found that it uses a clickbait technique to trick visitors into permitting it to send notifications. Also, news-mexobi[.]com redirects to other deceptive websites. Thus, this site cannot be trusted.

   
Ledger Data Damage Error: 0x0m3Ck8n POP-UP Scam

What is "Ledger Data Damage Error: 0x0m3Ck8n"?

While inspecting rogue websites, our research team discovered the "Ledger Data Damage Error: 0x0m3Ck8n" phishing scam. It is disguised as the Ledger website and targets users' Ledger-based cryptocurrency wallets.

After investigating "Ledger Data Damage Error: 0x0m3Ck8n", we determined that this scam uses multiple domains, some of which closely resemble Ledger's official site's URL.

   
ShibaInu AirDrop POP-UP Scam

What kind of scam is "ShibaInu AirDrop pop-up scam"?

Our examination revealed this is a scam website targeting crypto wallet login information. Providing information on such pages results in financial loss and potential additional problems, so this scam page should be ignored. Our team discovered that scammers promote this scam via email (and possibly other channels).

   
Mentseconom.xyz Ads

What kind of website is mentseconom[.]xyz?

We have inspected mentseconom[.]xyz and found that the purpose of this web page is to lure visitors into agreeing to receive its notifications. In addition to displaying deceptive content, mentseconom[.]xyz redirects visitors to other untrustworthy websites. Thus, mentseconom[.]xyz should not be trusted.

   
Transfer Profit Funds Email Scam

What kind of scam is "Transfer Profit Funds"?

After reviewing this letter, we found that it is a phishing email. Its purpose is to convince the recipients that they have earned money from crypto mining. This email contains a link to a phishing website where visitors are asked to provide login information. Recipients should ignore this phishing email.

   
Czgovd.com Ads

What kind of application is czgovd[.]com?

During the examination of czgovd[.]com, we discovered that this page uses a clickbait technique to trick visitors into allowing it to display notifications. Also, czgovd[.]com redirects to potentially malicious websites. It is uncommon for such pages to be visited intentionally.

   
Torggissoft.com Ads

What kind of page is torggissoft[.]com?

While investigating untrustworthy websites, our researchers discovered the torggissoft[.]com rogue page. It promotes deceptive content and spam browser notifications. Additionally, this webpage can redirect visitors to different (likely unreliable/hazardous) sites.

Most users enter torggissoft[.]com and pages akin to it – via redirects caused by websites that use rogue advertising networks.

   
News-hexuma.com Ads

What kind of page is news-hexuma[.]com?

News-hexuma[.]com is a rogue webpage that we discovered while inspecting rogue sites. It is designed to endorse browser notification spam and redirect visitors to other (likely unreliable/harmful) websites. Users typically enter pages like news-hexuma[.]com through redirects caused by sites using rogue advertising networks.

   

Page 5 of 1756

<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>
About PCrisk

PCrisk logo

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal