Step-by-Step Malware Removal Instructions

Xmas Cult (XMAS) Airdrop Scam
Phishing/Scam

Xmas Cult (XMAS) Airdrop Scam

Our researchers discovered this fake "Xmas Cult (XMAS)" airdrop while investigating deceptive websites. Upon examination, we determined that this scam operates as a cryptocurrency drainer. It seeks to steal the digital assets stored in victims' cryptowallets. IMPORTANT NOTE: We do not review

Security Alert: Unsuccessful Login On A New Device Email Scam
Phishing/Scam

Security Alert: Unsuccessful Login On A New Device Email Scam

After inspecting this "Security Alert: Unsuccessful Login On A New Device" email, we determined that it is fake. This message informs the recipient of an unsuccessful sign-in attempt to their email account. If they do not recognize this activity, they are urged to take immediate action. The goal i

HumidiFi Airdrop Scam
Phishing/Scam

HumidiFi Airdrop Scam

Our inspection of the website (eligibility-humidifi[.]org) has revealed that it mimics the original HumidiFi site (humidifi.xyz). The fraudulent copy is operated by scammers who aim to steal cryptocurrency from victims. This scam page should be avoided to prevent financial loss. IMPORTANT NO

XEX Ransomware
Ransomware

XEX Ransomware

While browsing new submissions to the VirusTotal website, our researchers discovered the XEX ransomware. This malware is designed to encrypt data and demand payment for the decryption. After the XEX malware was executed on our testing system, it encrypted files. Yet, unlike most ransomware-type p

Rettonomper.com Ads
Notification Spam

Rettonomper.com Ads

Our analysis shows that rettonomper[.]com uses clickbait to convince visitors to accept its notifications. Allowing rettonomper[.]com to show notifications can result in getting fake warnings, offers, and other deceptive messages designed to promote potentially malicious websites. Overall, this we

Frenesis Nexus Ransomware
Ransomware

Frenesis Nexus Ransomware

We have inspected the Frenesis Nexus malware and found that it operates as ransomware. Our team came accross this ransomware during an examination of samples submitted to VirusTotal. Once Frenesis Nexus is executed, it encrypts files and appends its extension (".frenesis") to files. For instance,

DEVMAN 21 Ransomware
Ransomware

DEVMAN 21 Ransomware

Our analysis shows that DEVMAN 21 is ransomware designed to encrypt files. We discovered it while inspecting samples uploaded to VirusTotal. Once executed, DEVMAN 21 not only encrypts data, but it also appends its extension (".devman21") to files and drops a text file ("!!!_README_!!!.txt") contai

Ledger Account Backup Email Scam
Phishing/Scam

Ledger Account Backup Email Scam

Our team has checked the email and found that it is a phishing message. The scammers behind it seek to trick recipients into visiting a fake website and entering personal information. Victims of this scam may have their cryptocurrency stolen and possibly encounter other issues. Thus, this email sh

Logaldaerved.com Ads
Notification Spam

Logaldaerved.com Ads

Logaldaerved[.]com is a rogue webpage discovered by our research team during a routine inspection of suspicious sites. After examining this page, we learned that it promotes spam browser notifications and generates redirects to various (likely unreliable/dangerous) websites. The majority of visit

The Official 67 Coin Airdrop Scam
Phishing/Scam

The Official 67 Coin Airdrop Scam

Our researchers discovered "The Official 67 Coin" airdrop during a routine inspection of deceptive websites. Upon further investigation, we determined that this airdrop is fake. It operates as a cryptocurrency drainer – by stealing funds from exposed cryptowallets. IMPORTANT NOTE: We do not