Step-by-Step Malware Removal Instructions

Netflix - We've Suspended Your Membership Email Scam
Phishing/Scam

Netflix - We've Suspended Your Membership Email Scam

After inspecting the "Netflix - We've Suspended Your Membership" email, we determined that it is fake. This spam letter informs recipients that their Netflix membership has been suspended, and the payment information needs to be renewed to prevent the subscription from expiring. By using these fak

Mydailysecurityguard.site Ads
Notification Spam

Mydailysecurityguard.site Ads

We examined mydailysecurityguard[.]site and found that this page runs the "Norton Security - Your PC might be infected with viruses!" scam and asks for permission to show shady notifications. We encountered this site while inspecting pages that use rogue advertising networks. Users do not visit we

Fake "System Update" RAT (Android)
Trojan

Fake "System Update" RAT (Android)

Fake "System Update" RAT - refers to a Remote Access Trojan (RAT) targeting Android devices, which is often disguised as an application offering system updates. However, it must be mentioned that this trojan has been observed using another disguise - an app supposedly providing news and live broad

MEOW Ransomware
Ransomware

MEOW Ransomware

MEOW is ransomware based on other ransomware called CONTI. MEOW encrypts files and appends the ".MEOW" extension to their filenames. It also drops the "readme.txt" file (a ransom note). An example of how MEOW ransomware modifies filenames: it renames "1.jpg" to "1.jpg.MEOW", "2.png" to "2.png.MEOW

Doenerium Stealer
Trojan

Doenerium Stealer

Doenerium is an information stealer masquerading as Windows Malicious Software Removal Tool. This malware targets cryptocurrency wallets, Internet browsers, clipboard data, and system information. Also, the malware author uses Doenerium to mine cryptocurrency on computers attacked by threat actors

OBZ Ransomware
Ransomware

OBZ Ransomware

While inspecting new submissions to VirusTotal, our researchers discovered the OBZ ransomware-type program that is identical to U2K and MME. After we executed a sample of OBZ on our testing system, it encrypted files and appended their filenames with a ".OBZ" extension. For example, a file initia

Filedownloader.cloud Ads
Notification Spam

Filedownloader.cloud Ads

Filedownloader[.]cloud is a shady website designed to download an installer that installs potentially malicious applications. Our team discovered filedownloader[.]cloud while inspecting pages that use rogue advertising networks (e.g., illegal movie streaming pages, torrent sites). Users do not nor

PUTIN Ransomware
Ransomware

PUTIN Ransomware

PUTIN is ransomware belonging to the CONTI family. It prevents victims from accessing data by encrypting it. Also, PUTIN appends the ".PUTIN" extension to the filenames of all encrypted files and drops the "README.txt" file that contains contact information. An example of how PUTIN ransomware ren

AdvancedHelper Adware (Mac)
Mac Virus

AdvancedHelper Adware (Mac)

Our team tested the AdvancedHelper application and found that it operates as adware - it displays annoying advertisements. It is uncommon for advertising-supported software to be downloaded and installed knowingly. We discovered AdvancedHelper on a deceptive page. AdvancedHelper shows ad

TrackAnalyser Adware (Mac)
Mac Virus

TrackAnalyser Adware (Mac)

TrackAnalyser is a rogue application that we discovered while inspecting new submissions to VirusTotal. After analyzing this piece of software, we determined that it is adware belonging to the AdLoad malware family. Adware is designed to run intrusive advertisement campaigns. In other wo