Step-by-Step Malware Removal Instructions

Vipdatingtoday.top Ads
Notification Spam

Vipdatingtoday.top Ads

While analyzing vipdatingtoday[.]top, we learned that it uses a clickbait technique to lure visitors into allowing it to show notifications. Also, it redirects to other shady pages. Thus, vipdatingtoday[.]top is not a trustworthy website. We discovered it while inspecting other sites of this kind.

News-lihuve.com Ads
Notification Spam

News-lihuve.com Ads

News-lihuve[.]com is a rogue webpage that we discovered while inspecting dubious websites. This page promotes spam browser notifications and redirects visitors to other (likely untrustworthy/dangerous) sites. Users typically access news-lihuve[.]com and webpages akin to it – via redirects caused

Worldwide Clock Extension Browser Hijacker
Browser Hijacker

Worldwide Clock Extension Browser Hijacker

While investigating suspicious websites, our research team discovered the Worldwide Clock Extension. This browser extension promises the functionality of displaying clocks from user-chosen timezones on the browser's homepage. After inspecting Worldwide Clock Extension, we determined that it is a

Advzen.com Ads
Notification Spam

Advzen.com Ads

Our research team discovered the advzen[.]com rogue webpage while checking out questionable sites. It is designed to promote browser notification spam and redirect visitors to different (likely untrustworthy/dangerous) websites. Most users access pages like advzen[.]com via redirects caused by sit

FilesEncrypted (MedusaLocker) Ransomware
Ransomware

FilesEncrypted (MedusaLocker) Ransomware

While investigating new submissions to VirusTotal, our researchers discovered the FilesEncrypted ransomware-type program. It belongs to the MedusaLocker ransomware family. Once we launched a sample of FilesEncrypted (MedusaLocker) ransomware on our test machine, it began encrypting files. The fil

Erpringash.xyz Ads
Notification Spam

Erpringash.xyz Ads

Erpringash[.]xyz is a rogue page that we found during a routine inspection of dubious websites. This webpage promotes spam browser notifications and redirects visitors to other (likely untrustworthy/malicious) sites. Users typically enter pages like erpringash[.]xyz via redirects caused by website

Stormstone.top Ads
Notification Spam

Stormstone.top Ads

Stormstone[.]top is an untrustworthy website that uses a clickbait technique (shows a deceptive message) to lure visitors into agreeing to receive its notifications. Users open such pages unintentionally. Our team discovered stormstone[.]top while examining sites that use shady advertising network

Album Stealer Malware
Trojan

Album Stealer Malware

Album Stealer is an information-stealing malware, which spreads under the guise of an album containing explicit photographs of women. This stealer targets browsing-related data and log-in credentials, particularly information related to Facebook accounts. Album Stealer has been observed being dis

Buddyransome Ransomware
Ransomware

Buddyransome Ransomware

Buddyransome is ransomware that encrypts data and appends the ".buddyransome" extension to filenames. Also, it drops the "HOW_TO_RECOVERY_FILES.txt" text file (a ransom note). An example of how Buddyransome renames files: it changes "1.jpg" to "1.jpg.buddyransome", "2.png" to "2.png.buddyransome",

Nuothmen.com Ads
Notification Spam

Nuothmen.com Ads

Our team has examined nuothmen[.]com and learned that it is an untrustworthy website that shows a deceptive message to trick visitors into allowing it to show notifications. Usually, users open sites like nuothmen[.]com inadvertently. We discovered nuothmen.com while inspecting pages that use shad