Step-by-Step Malware Removal Instructions

OptionFlow Adware (Mac)
Mac Virus

OptionFlow Adware (Mac)

We have learned about the OptionFlow application while reading forums. Our researchers have concluded that OptionFlow functions as adware - it generates advertisements. We have also found that this app slows down the Safari web browser and can remove apps designed to block advertisements.

Kn33-m3dicin3.xyz Ads
Notification Spam

Kn33-m3dicin3.xyz Ads

We have discovered the kn33-m3dicin3[.]xyz site while examining other pages (various illegal streaming, torrent sites) that use questionable advertising networks. After analyzing this page, we have learned that it displays deceptive content (a fake security alert) and asks for permission to show u

MapIt Adware
Adware

MapIt Adware

After downloading and launching the sample on our testing machine, we have noticed that MapIt displays unwanted advertisements. This program works as typical adware. It is very common for adware to be downloaded and installed mistakenly/unknowingly because it is promoted and distributed using ques

Click Togo Browser Hijacker
Browser Hijacker

Click Togo Browser Hijacker

After analyzing the Click Togo browser extension, our researchers have determined that it is a browser hijacker. This piece of software alters browser settings to promote the togosearching.com fake search engine, and it spies on users' browsing activity. When Click Togo was installed onto

Black Ransomware
Ransomware

Black Ransomware

While looking through malware support forums, our researchers found a report on Black ransomware made by its victim. Malware of this type is designed to encrypt data and make ransom demands for the decryption. On our test machine, this ransomware encrypted files and appended their names with a ".

Save-secur.com Ads
Notification Spam

Save-secur.com Ads

Save-secur[.]com is a rogue site designed to promote browser notification spam. Our research team discovered this webpage while looking into various untrustworthy sites. In addition to using deception to lure visitors into allowing its notifications, save-secur[.]com can also redirect them to othe

WalletConnect POP-UP Scam
Phishing/Scam

WalletConnect POP-UP Scam

We have discovered this scam website while examining other sites that use rogue advertising networks. After analyzing this scam, we concluded that the purpose of this scam is to trick visitors into believing that it is a legitimate WalletConnect page and providing a private key or wallet seed word

Official Solana NFT Launch POP-UP Scam
Phishing/Scam

Official Solana NFT Launch POP-UP Scam

"Official Solana NFT Launch" is a scam, which our researchers discovered when inspecting shady websites. The scam promises Solana blockchain platform users, who take part in it, a gift of Solana's "official" NFTs (Non-Fungible Tokens). It must be emphasized that these promises are fake, and victim

V3NOM Ransomware
Ransomware

V3NOM Ransomware

We have discovered the V3NOM ransomware while checking malware samples submitted to VirusTotal. Our team has examined V3NOM and found that this ransomware changes the desktop wallpaper, creates the "VenomD3crypt0r.exe" file containing a ransom note, and appends the ".V3NOM" extension to filenames.

Captchawall.top Ads
Notification Spam

Captchawall.top Ads

Discovered by our research team during a routine inspection of suspicious websites, captchawall[.]top is a page that promotes browser notification spam. Additionally, this webpage can redirect visitors to other deceptive and malicious sites. Most visitors to captchawall[.]top and similar websites