Step-by-Step Malware Removal Instructions

Dacls RAT
Trojan

Dacls RAT

Dacls is the name of a remote access Trojan (RAT), a malicious program that allows cyber criminals to control infected computers remotely. Research shows that this malware is tied to Lazarus Group (a group of cyber criminals) and targets Linux and the Windows Operating System. Typically, cyber cr

[ponce.lorena@aol.com] Ransomware
Ransomware

[ponce.lorena@aol.com] Ransomware

Discovered by GrujaRS, [ponce.lorena@aol.com] is malicious software belonging to the GlobeImposter ransomware family. This malware operates by encrypting data and demanding payment for decryption tools/software. During the encryption process, all affected files are appended with the ".[ponce.loren

MZ434376 Ransomware
Ransomware

MZ434376 Ransomware

Discovered by GrujaRS, MZ434376 is a malicious program belonging to the KesLan ransomware family. It is designed to encrypt data and then demand ransom payments for decryption. During the encryption process, all compromised files are renamed with the ".MZ434376" extension. For example, "1.jpg" ap

Rdp Ransomware
Ransomware

Rdp Ransomware

Discovered by S!Ri, Rdp belongs to a family of ransomware-type programs called Paradise. Like many other programs of this type, Rdp encrypts files with a strong encryption algorithm so that they cannot be used or accessed unless they are decrypted with specific tools. These can only be purchased

Christmas Party Email Virus
Phishing/Scam

Christmas Party Email Virus

"Christmas Party Email" is a Christmas-themed spam campaign designed to spread Emotet Trojan-type malicious software. Through use of social engineering tactics, these emails are intended to trick users into opening the attached file, which will then in turn infect their systems with Emotet.

Deniz_Kizi Ransomware
Ransomware

Deniz_Kizi Ransomware

Discovered by Raby, Deniz_Kızı ransomware is named (in Turkish) after a mythical creature, a mermaid. Like most programs of this type, Deniz_Kızı is designed to encrypt data so that victims cannot access it unless they pay a ransom. Instructions about how to pay are provided in the "Please Read Me

Search.landslidesearch.com Redirect (Mac)
Mac Virus

Search.landslidesearch.com Redirect (Mac)

search.landslidesearch.com is the address of a fake search engine, which is promoted through a potentially unwanted application (PUA), a browser hijacker called Landslide Search. Generally, apps of this type promote fake search engines by changing certain browser settings. Additionally, most ga

Yourfine2updatesgo.best POP-UP Scam (Mac)
Mac Virus

Yourfine2updatesgo.best POP-UP Scam (Mac)

Yourfine2updatesgo[.]best is a scam webpage. It claims that visitors' Adobe Flash Payer is out-of-date and offers fake updates. Fraudulent software updaters are known to spread a variety of PUAs (Potentially Unwanted Applications) and malware (e.g. ransomware, trojans, etc.). Typically, yourfin

Rapid (.cryptolocker) Ransomware
Ransomware

Rapid (.cryptolocker) Ransomware

Rapid (.cryptolocker) is a malicious software that encrypts data so that victims could not access their files unless they decrypt them with a private key and decryption software that can be purchased from cyber criminals who developed this ransomware. It renames all files by changing their filenam

NEMTY 2.3 REVENGE Ransomware
Ransomware

NEMTY 2.3 REVENGE Ransomware

Discovered by dnwls0719, NEMTY 2.3 REVENGE is an updated variant of NEMTY REVENGE 2.2 ransomware. This piece of malicious software is designed to encrypt data and then demand payment (ransom) for decryption. During the encryption, all affected files are retitled with an extension, consisting of "