URL:Blacklist

URL:Blacklist

perr.yg5sjx5kzy.com
Located in chrome.exe
15c561c97323/2024-02-24T21:26:45.725Z

client.yg5sjx5kzy.com
located in chrome.exe
7beace77e35a/2024-02-24T21:26:45.725Z

Dear,

Thank you for your help.

Could you tell me how I remove these two? The popups are related from the area it is located and the names.

Thank you

Try clear Your browser history

In all major Internet browsers (e.g., Chrome, Edge, Firefox, IE, Opera), pressing Ctrl + Shift + Delete opens the Clear browsing data window to quickly clear private data and history

Does it still happen?

  • If so try starting your browser with apps disabled.

Does it still happen?
If not, one of your browser add-ons would appear to be connecting to this site.
Now it is a bit of a pain, disabling one app at a time to find it.
Start with any app recently added and or apps recently updated.

Here is the analysis of the malware: https://www.joesandbox.com/analysis/1392972/0/html

Also IP still being reported as Remote Desktop Protocol Attack intrusion here: https://www.abuseipdb.com/check/23.22.252.240

Also see: https://www.reddit.com/r/antivirus/comments/1axfdcd/unknown_activity_blocked_by_antivirus_pop_up/

polonus