"Your OSX 10.11 El Capitan Is Infected With 3 Viruses!" is one of many scams designed to trick Mac users into believing that their computers are infected with several (in this case three) viruses. This one is categorized as a fake virus alert. Virus alerts and other fake messages of this type ar
GoogleFix.exe is a deceptive virus designed to modify system settings so that users are not able to properly browse the web. This virus typically disguises itself as a type of application installer. The one we tested was called "Amazon AMS". In fact, Amazon AMS is a legitimate advertising service
The Vulston computer infection was discovered by Michael Gillespie. It is a high-risk ransomware-type program that encrypts data and blocks access to files unless a ransom is paid. Vulston changes the name of each encrypted file by adding the ".vulston" extension. For example, "1.jpg" becomes "1.
Recovery_email is a ransomware-type malicious program that was discovered by MalwareHunterTeam. Its purpose is to infect computers and encrypt data. Note that Recovery_email does not provide victims with ransom-demand messages but renames each encrypted file by adding the ".recovery_email_[retmyda
"Clean-macbook-system-fix.live" is a deceptive website that scammers use to trick people into believing that their Mac computers are infected with viruses and to promote an app that can supposedly remove them. These fake virus alerts are usually displayed on untrustworthy websites that users vis
baysearch.co is a fake search engine that developers promote using the BaySearch Video application. This app supposedly allows users to access various movies and online videos directly from their browsers. Therefore, BaySearch Video may seem to be a legitimate and useful tool, however, it is cat
Phobos is a ransomware-type malicious program that (like most programs of this type) encrypts data/locks files stored and keeps them in this state until a ransom is paid. Phobos renames all encrypted files by adding the ".phobos" extension plus the victim's unique ID and an email address. For exa
spirationsstrated.club is another rogue site that is very similar to other sites of this type. Some examples include clicktated.com, speed-open2-com.replyalert.net, and hesthenhepattont.club. The website redirects users to other untrustworthy, deceptive, or even potentially malicious websites. In
search.searchipdf2.com is one of many fake search engines promoted using a potentially unwanted application (PUA). In this case, a browser hijacker and PUA called PDF Convert. According to the developers, this app converts files (documents) directly from the browser and allows quick access to popu
search.hwatchtvnow.co is classified as a fake search engine that is promoted through a browser-hijacking potentially unwanted application (PUA) called Watch TV Now. Developers claim that Watch TV Now saves time finding TV shows by providing quick access to popular TV-related websites. Generally,