Step-by-Step Malware Removal Instructions

CIA Ransomware
Ransomware

CIA Ransomware

CIA ransomware is a type of malware designed to encrypt data and make ransom demands for the decryption tools. There are two variants of this ransomware. Typically, programs of this kind alter the filenames of encrypted files; however, that is not the case with either of the CIA ransomware version

Teng Snake Ransomware
Ransomware

Teng Snake Ransomware

Our research team discovered yet another malicious program based on the Chaos ransomware titled Teng Snake. Malware within this classification operates by encrypting data and demanding payment for the decryption tools. On our test machine, Teng Snake encrypted files and changed their filenames. O

Xllm Ransomware
Ransomware

Xllm Ransomware

Xllm is ransomware based on the Chaos ransomware. We discovered Xllm while inspecting malware samples submitted to VirusTotal. This ransomware encrypts files, appends the ".xllm" extension to filenames of all encrypted files, and creates a ransom note (the "read_it.txt" file). An example of how f

Hebem Ransomware
Ransomware

Hebem Ransomware

Hebem is one of the Dharma ransomware variants. Our team discovered Hebem while inspecting malware samples submitted to the VirusTotal website. Hebem encrypts data and appends the victim's ID, hebem@msgsafe.io email address, and ".hebem" extension to the filenames of encrypted files. Also, it disp

Matu Ransomware
Ransomware

Matu Ransomware

Matu is the name of a ransomware variant belonging to the Djvu family. We discovered it while checking the VirusTotal for recently submitted malware samples. Matu encrypts files, appends the ".matu" extension to filenames, and drops the "_readme.txt" file that contains a ransom note. An example o

Reportyourdefenderdata.site Ads
Notification Spam

Reportyourdefenderdata.site Ads

Reportyourdefenderdata[.]site is the address of a rogue website. Our researchers discovered this page while inspecting suspicious sites. The webpage promotes scams and spam browser notifications. Additionally, reportyourdefenderdata[.]site can redirect visitors to different (likely unreliable/dang

Video Finder Adware
Adware

Video Finder Adware

While investigating untrustworthy sites, our research team discovered the Video Finder browser extension. This piece of software claims to allow users to download the videos and images presented on any website. However, our inspection of this extension revealed that it is adware. In other words, V

Aguhoa.com Ads
Notification Spam

Aguhoa.com Ads

Our research team discovered the aguhoa[.]com rogue page while inspecting dubious websites. This webpage runs scams, promotes browser notification spam, and redirects users to other (likely deceptive/malicious) sites. Most visitors to webpages like aguhoa[.]com access them via redirects caused by

Zerobot Malware
Trojan

Zerobot Malware

Zerobot is a piece of malicious software written in the Go programming language. Zerobot has botnet capabilities, which have been observed in use to launch DDoS (Distributed Denial-of-Service) attacks. This program is a cross-platform malware capable of infecting Windows and Linux operating system

DominantDisplay Adware (Mac)
Mac Virus

DominantDisplay Adware (Mac)

After downloading and installing DominantDisplay, we noticed that this app displays unwanted advertisements. Thus, we classified DominantDisplay as adware (advertising-supported software). Our team discovered DominantDisplay while browsing shady websites offering to install software updates, use