Step-by-Step Malware Removal Instructions

Root (MedusaLocker) Ransomware
Ransomware

Root (MedusaLocker) Ransomware

During our analysis of malware samples uploaded to VirusTotal, we discovered Root, a ransomware variant belonging to the MedusaLocker family. We found that Root encrypts and renames files, and provides a ransom note ("How_to_back_files.html"). It appends the ".root4" extension to filenames (the nu

Aroidsguide.com Ads
Notification Spam

Aroidsguide.com Ads

After reviewing aroidsguide[.]com, our team determined that it is not a reliable website designed to obtain permission from visitors to send notifications through a technique known as clickbait. If allowed, aroidsguide[.]com can send misleading notifications. Therefore, users should not agree to r

Aroidssolutions.com Ads
Notification Spam

Aroidssolutions.com Ads

Upon inspecting aroidssolutions[.]com, our team concluded that it is not a trustworthy website. The site uses deception to receive permission from visitors to send them notifications. Also, once allowed, aroidssolutions[.]com can deliver misleading notifications. Thus, users should avoid opening a

Adrgyouweb.com Ads
Notification Spam

Adrgyouweb.com Ads

While investigating dubious websites, our researchers discovered the adrgyouweb[.]com rogue page. Upon inspection, we determined that it promotes browser notification spam and redirects users to other (likely unreliable/hazardous) sites. Most visitors to adrgyouweb[.]com and webpages akin to it a

Boot-upprogressiveextremelythe-file.top Ads
Notification Spam

Boot-upprogressiveextremelythe-file.top Ads

Boot-upprogressiveextremelythe-file[.]top is the address of a rogue page discovered by our researchers during a routine inspection of suspect websites. This webpage promotes spam browser notifications and redirects visitors to different (likely dubious/malicious) sites. The majority of users acce

Allsidestv.com Ads
Notification Spam

Allsidestv.com Ads

Our research team discovered allsidestv[.]com while investigating dubious websites. After examining this rogue page, we determined that it promotes browser notification spam and redirects users to different (likely untrustworthy or dangerous) sites. The majority of visitors to allsidestv[.]com an

Amnesia Stealer
Trojan

Amnesia Stealer

Amnesia is the name of a malicious program. There are two variants of this malware – for Windows and Android operating systems. The program aims to extract various types of sensitive data from infected machines – thus, it is classed as a stealer. However, Amnesia also exhibits RAT (Remote Access

Andespeaks.top Ads
Notification Spam

Andespeaks.top Ads

Our team has analyzed andespeaks[.]top and learned that its purpose is to obtain permission to send notifications to users. This website employs a deceptive technique to trick users into granting it this permission. Thus, users should avoid visiting andespeaks[.]top and similar web pages.

Mr.Dark101 Ransomware
Ransomware

Mr.Dark101 Ransomware

Our researchers discovered Mr.Dark101 ransomware while browsing file submissions to the VirusTotal website. This malware is based on Chaos ransomware. Mr.Dark101 is designed to encrypt data and demand payment for the decryption. After we executed a sample on our testing system, the ransomware enc

BlackNote Stealer
Trojan

BlackNote Stealer

BlackNote is an information stealer that targets various sensitive information. Stealers often operate stealthily, collecting data from infected devices to send to remote servers controlled by threat actors. This malware poses significant risks to user privacy and security. If BlackNote has infilt