Step-by-Step Malware Removal Instructions

Autolycos Malware (Android)
Trojan

Autolycos Malware (Android)

Autolycos is the name of Android malware that infects devices via trojanized applications downloaded from the Google Play Store. Those apps were spotted in the middle of 2021. Most of them are no longer available on the Google Play Store. Autolycos subscribes victims to its premium services.

StrelaStealer Malware
Trojan

StrelaStealer Malware

StrelaStealer, as its name implies, is a stealer-type malware. This malicious program specifically targets email account log-in credentials. StrelaStealer was first discovered by DCSO CyTec's researchers in November of 2022. Their findings revealed that this malicious program was distributed using

Cloud 9 JavaScript BotNet
Trojan

Cloud 9 JavaScript BotNet

Cloud 9 JavaScript BotNet refers to a malicious browser extension capable of causing chain infections, which can result in the attackers assuming near-user-level control of the device. This malware is compatible with Google Chrome, Mozilla Firefox, Microsoft Edge, Internet Explorer, and other brow

Fisakalzb Ransomware
Ransomware

Fisakalzb Ransomware

Fisakalzb is one of the Snatch ransomware variants. It encrypts files to make them inaccessible. Also, Fisakalzb appends the ".fisakalzb" extension to filenames and creates a text file named "HOW TO RESTORE YOUR FILES.TXT". That file contains a ransom note. We discovered Fisakalzb while inspecting

Datadesktopsecurity.online Ads
Notification Spam

Datadesktopsecurity.online Ads

Our team examined datadesktopsecurity[.]online and found that it is an untrustworthy page running the "McAfee - Your PC is infected with 5 viruses!" scam. Additionally, this site wants to show notifications. We discovered datadesktopsecurity[.]online while inspecting web pages that use rogue adver

Protectwatcher.xyz Ads
Notification Spam

Protectwatcher.xyz Ads

While investigating untrustworthy sites, our research team discovered the protectwatcher[.]xyz rogue webpage. It promotes online scams, pushes browser notification spam, and redirects visitors to other (likely unreliable and malicious) websites. Users typically access pages like protectwatcher[.]

CleanBlocker Adware
Adware

CleanBlocker Adware

CleanBlocker is a rogue browser extension that our researchers discovered while inspecting deceptive websites. This piece of software is presented as an adblocker that can stop website tracking and block various advertisements. However, our analysis revealed that CleanBlocker's operates oppositely

Web Video Player Adware
Adware

Web Video Player Adware

While testing the Web Video Player browser extension, we found that it shows intrusive advertisements, can read and change data on all websites, and display notifications. We discovered Web Video Player on a deceptive website. Since this app shows ads, we classified it as adware. Web Video

Movies Adware
Adware

Movies Adware

"Movies" is a piece of advertising-supported software (adware) belonging to the ChromeLoader malware family. This software operates by running intrusive advertisement campaigns. Furthermore, ChromeLoader apps are known to install multiple unwanted/malicious extensions on Chrome browsers. Hence, i

Chily Ransomware
Ransomware

Chily Ransomware

While checking out new malware submissions to VirusTotal, our research team found the Chily ransomware. This malicious program is designed to encrypt data and demand ransoms for decryption. Once we executed a sample of Chily on our test machine, it began encrypting files and altered their filenam