Virus and Spyware Removal Guides, uninstall instructions

Eternity Malware

What is Eternity malware?

Discovered by Cyble Research Labs, Eternity is the name of a malware family. Actively sold on the Web, Eternity's developers use the Telegram IM (Instant Messaging) service to sell their malicious wares, as well as provide support and customization to buyers. Telegram can also be employed by the attackers using Eternity programs as their C&C (Command and Control) server and proliferation tool.

Currently, this malware family consists of a stealer, worm, miner, clipper, ransomware, and DDoS bot.

Apple Defender Security Center POP-UP Scam (Mac)

What kind of scam is "Apple Defender Security Center"?

We have examined this website and found that it runs a technical support scam. It is a fake Apple website claiming that a computer is infected and urging to call the provided number ("Apple Support"). Typically, the purpose of such scams is to extract money, sensitive information, or distribute malware.

Kekpop Ransomware

What kind of malware is Kekpop?

Kekpop is ransomware that encrypts files (and renames them) and demands payment for file decryption. It creates the "ReadMe.html" file that contains payment information. Kekpop renames files by appending the ".kekpop" extension to filenames, replacing the original name with a string of random characters, and appending random characters to the original file extension.

An example of how Kekpop ransomware renames files: it changes a file named "1.jpg" to "28728.jpg26959.kekpop", "2.png" to "28728.png26959.kekpop", and so forth.

PlusTarget Adware (Mac)

What kind of application is PlusTarget?

PlusTarget is an advertising-supported application. The purpose of this app is to display various advertisements (e.g., banners, coupons, pop-ups). We have discovered this app while inspecting deceptive websites. It is not a trustworthy app that should never be downloaded and installed. Ads

What kind of page is news-nubuyo[.]cc?

News-nubuyo[.]cc is a deceptive page designed to trick visitors into agreeing to receive its notifications. Another issue with this site is that it redirects to other pages of this type. Our team has discovered news-nubuyo[.]cc while examining illegal movie streaming pages, torrent sites, and similar pages that use rogue advertising networks.

Cool Search Browser Hijacker

What kind of application is Cool Search?

Cool Search is an application that hijacks a web browser to promote the address, a fake search engine. It does that by changing certain settings. Typically, users download and install apps of this type unknowingly. We have discovered Cool Search while inspecting deceptive websites.

LockData Ransomware

What is LockData ransomware?

LockData is a malicious program based on Chaos ransomware. We found this program while inspecting new malware submissions to VirusTotal.

After being launched onto our test machine, LockData began encrypting files and appending their filenames with an extension consisting of four random characters. For example, a file originally titled "1.jpg" appeared as "1.jpg.khya", "2.png" as "2.png.lqjx", and so on.

Once the encryption process was completed, a ransom note - "read_it.txt" - was created. Additionally, this ransomware changed the desktop wallpaper.

Chrome Is Infected With Trojan:SLocker POP-UP Scam

What is the "Chrome is infected with Trojan:SLocker" pop-up?

We discovered the "Chrome is infected with Trojan:SLocker" scam while inspecting deceptive websites. This scheme claims that users' devices are infected. Typically, scams of this kind are designed to promote untrustworthy, fraudulent, and even malicious software.

BSCPad $BUSD Giveaway Scam

What is "BSCPad $BUSD" giveaway scam?

We have discovered a new Binance USD (BUSD) giveaway scam while inspecting shady advertisements and websites. The purpose of this scam website is to trick visitors into believing that they can obtain Binance USD by connecting their cryptocurrency wallets via this page. This scam must be ignored. Ads

What kind of page is soksicme[.]com?

While inspecting untrustworthy websites, our research team found the soksicme[.]com rogue page. It operates by promoting browser notification spam and redirecting visitors to other (likely dubious/malicious) sites. Users typically enter soksicme[.]com and similar websites via redirects caused by pages using rogue advertising networks.


Page 7 of 1561

<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>
About PCrisk

PCrisk logo

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal