Step-by-Step Malware Removal Instructions

RMC Stealer
Trojan

RMC Stealer

RMC is a stealer-type malware based on the Electron framework. The potential origin of this malicious program is the sale of Leet stealer's source code in April 2025, as there is some evidence that the code was used when building RMC. This malware, as well as Leet and Sniffer stealers, have been s

Leet Stealer
Trojan

Leet Stealer

Leet is an Electron-based stealer that emerged in late autumn of 2024. This data-stealing program was initially offered as MaaS (Malware-as-a-Service) before its source code (alongside that of the Hexon stealer) was put on the market in the spring of 2025. Since then, several variants of this malw

$RUDI Pre-sale Scam
Phishing/Scam

$RUDI Pre-sale Scam

Our analysis of the website (presale-rudi[.]xyz) has shown that it is a scam where fraudsters promote a fraudulent cryptocurrency project. The scammers behind it aim to drain crypto wallets. Thus, victims of this scam can experience significant monetary loss. This and similar scams should be avoid

Snoonaut ($SNOOT) Airdrop Scam
Phishing/Scam

Snoonaut ($SNOOT) Airdrop Scam

While investigating suspicious websites, our research team discovered this fake "Snoonaut ($SNOOT)" airdrop. The webpage states that eligible users can claim SNOOT tokens – thus, it lures them into exposing their digital wallets to a cryptocurrency drainer. It must be stressed that this scam is no

Spheron (SPON) Reward Scam
Phishing/Scam

Spheron (SPON) Reward Scam

Our analysis has revealed that claims-spheron[.]network imitates the official Spheron web page to trick visitors into taking actions that can lead to the theft of their cryptocurrency. Like most similar scams, the fake Spheron site offers users rewards as a lure. This and similar deceptive pages s

Getnindscompany.com Ads
Notification Spam

Getnindscompany.com Ads

While browsing suspicious sites, our researchers found the getnindscompany[.]com rogue webpage. It operates by promoting browser notification spam and generating redirects to different (likely untrustworthy/hazardous) websites. Getnindscompany[.]com and analogous pages are most likely accessed thr

Gadsonline.com Ads
Notification Spam

Gadsonline.com Ads

We have inspected gadsonline[.]com and found that it is designed to trick visitors into granting it permission to display notifications. We also discovered that the site has at least two designs (they vary based on the visitor's geolocation). Users should avoid visiting gadsonline[.]com and never

Bitrix Ransomware
Ransomware

Bitrix Ransomware

Our research team discovered Bitrix while inspecting new malware submissions to the VirusTotal platform. This malicious software operates by encrypting data to demand payment for the decryption, and due to this behavior – it is classed as ransomware. On our test machine, Bitrix encrypted files an

Coresky Airdrop Scam
Phishing/Scam

Coresky Airdrop Scam

Our investigation reveals that this website (coresky[.]cyou) is designed to impersonate the legitimate Coresky platform (coresky.com) in order to deceive users. It promotes a fake airdrop as bait, with the ultimate goal of stealing cryptocurrency from unsuspecting visitors. This fraudulent site sh

Project Dapps Main Net Scam
Phishing/Scam

Project Dapps Main Net Scam

We have examined the site (dappsevmportal[.]site) and found that it aims to steal personal information from unsuspecting visitors. The scammers behind it can use this information to drain crypto wallets. It is important to recognize scam websites like this one to avoid financial loss or other issu