Virus and Spyware Removal Guides, uninstall instructions

Multipleday.com Ads

What kind of page is multipleday[.]com?

While investigating questionable websites, our research team found multipleday[.]com. After examining this rogue page, we learned that it is designed to promote browser notification spam and redirect users to different (likely unreliable/harmful) sites. Most visitors access webpages like multipleday[.]com via redirects caused by websites utilizing rogue advertising networks.

   
Webbearsearch.com Redirect

What is webbearsearch.com?

Our team has inspected webbearsearch.com and found that it is a fake search engine. This fake search engine is promoted via a browser hijacker, an extension known as Web Bear Search. It is highly recommended to avoid visiting/using search engines like webbearsearch.com, especially those promoted via browser hijackers.

   
Anonymous Encryptor Ransomware

What kind of malware is Anonymous Encryptor?

While reviewing new submissions to the VirusTotal website, our research team discovered the Anonymous Encryptor malicious program. After analyzing this malware, we determined that it is identical to two ransomware-type programs – GhosHacker and BlackSkull.

Anonymous Encryptor ransomware encrypts files and appends their filenames with a ".Anonymous" extension. For example, a file originally titled "1.jpg" looks like "1.jpg.Anonymous", "2.png" as "2.png.Anonymous", etc.

Once the encryption is concluded, Anonymous Encryptor changes the desktop wallpaper and displays a ransom note in a pop-up window.

   
Froommixoria.com Ads

What kind of page is froommixoria[.]com?

Our analysis of froommixoria[.]com has uncovered that it is a deceptive website designed to deceive unsuspecting visitors into agreeing to receive notifications from the site. Notifications from websites like froommixoria[.]com are not reliable. Therefore, such pages should not be permitted to send them.

   
Doidacers.com Ads

What kind of page is doidacers[.]com?

While investigating suspicious websites, our researchers discovered the doidacers[.]com rogue page. It operates by promoting browser notification spam and redirecting users to other (likely dubious/dangerous) sites.

Webpages like doidacers[.]com are most often accessed through redirects generated by websites that employ rogue advertising networks.

   
Watz Ransomware

What kind of malware is Watz?

During our analysis of samples uploaded to the VirusTotal page, we discovered a ransomware variant belonging to the Djvu family known as Watz. This variant encrypts files and adds its extension (".watz") to filename. For instance, it changes "1.jpg" to "1.jpg.watz" and "2.png" to "2.png.watz". Also, Watz provides a ransom note ("_readme.txt").

Since Watz is part of the Djvu family, there is a chance that cybercriminals may inject it after stealing sensitive information with RedLine, Vidar, or similar malware.

   
Undenentionin.com Ads

What kind of page is undenentionin[.]com?

We have analyzed undenentionin[.]com and found that this page is designed to trick visitors into permitting it to deliver notifications. Once this permission is granted, the website bombards users with various spam notifications, including deceptive ones. Users who have granted notification permissions to undenentionin[.]com should immediately revoke these permissions.

   
CarnavalHeist Malware

What kind of malware is CarnavalHeist?

CarnavalHeist is a banking Trojan targeting users in Brasil. It is capable of stealing banking credentials and performing other actions. Having a device infected with CarnavalHeist can result in financial loss, identity theft, and other issues. Thus, CarnavalHeist should be eliminated from compromised devices as soon as possible.

   
American Express - Username/Password Has Been Updated Email Scam

What kind of email is "American Express - Username/Password Has Been Updated"?

Our inspection of this "American Express - Username/Password Has Been Updated" email revealed that it is fake. The spam letter states that the log-in credentials for the recipient's American Express account have been changed. If they do not recognize this activity – they can keep their old username and password. The purpose of this phishing mail is to trick users into disclosing their log-in credentials.

   
Commerzbank Email Scam

What kind of email is this fake "Commerzbank" letter?

After inspecting this "Commerzbank" email, we determined that it is fake. This spam letter requests the recipient to provide their identification to avoid cessation of their banking services.

It must be emphasized that the claims made by this email are false, and this mail is not associated with the actual Commerzbank Aktiengesellschaft or any other legitimate entities. This spam letter promotes a phishing website targeting recipients' Commerzbank account log-in credentials.

   

Page 8 of 2174

<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>
About PCrisk

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal