Step-by-Step Malware Removal Instructions

Retch Ransomware
Ransomware

Retch Ransomware

Retch is a ransomware-type program that we discovered while investigating new file submissions to the VirusTotal website. This software is designed to encrypt data and demand payment for its decryption. After we executed a sample of Retch on our testing system, it began encrypting files. Original

TroodonFormosus Malicious Extension
Adware

TroodonFormosus Malicious Extension

Our team discovered the TroodonFormosus app after running a malicious installer downloaded from a shady website. This app may engage in fraudulent activities. We found that TroodonFormosus adds the "Managed by your organization" feature to Chrome browsers. Also, it can read various data. Users who

Error Code: 0x80073b01 POP-UP Scam
Phishing/Scam

Error Code: 0x80073b01 POP-UP Scam

During our examination of this website, we discovered its involvement in a technical support scam, wherein misleading pop-up messages are displayed to deceive visitors into believing their computers are compromised. It is essential to avoid such websites, as they are designed to deceive users into

Nzqw Ransomware
Ransomware

Nzqw Ransomware

While analyzing malware samples submitted to VirusTotal, our team encountered the Nzqw ransomware, a member of the Djvu family. When a computer becomes compromised, Nzqw encrypts a range of files and appends the ".nzqw" extension to their original filenames. For instance, a file named "1.jpg" woul

Nztt Ransomware
Ransomware

Nztt Ransomware

While examining malware samples submitted to VirusTotal, our team came across the Nztt ransomware, a variant linked to the Djvu family. Once a computer is compromised, Nztt encrypts various files and adds the ".nztt" extension to their initial filenames. For example, a file named "1.jpg" transform

ContentRanger Adware (Mac)
Mac Virus

ContentRanger Adware (Mac)

Our research team discovered the ContentRanger application during a routine investigation of new submissions to the VirusTotal site. After analyzing this app, we determined that it is advertising-supported software (adware) belonging to the AdLoad malware family. Adware is designed to ge

USPS - Your Package Is Waiting For Delivery Email Scam
Phishing/Scam

USPS - Your Package Is Waiting For Delivery Email Scam

After examining the "USPS - Your Package Is Waiting For Delivery" email, we determined that it is fake. This spam letter claims that the recipient has outstanding delivery fees and redirects them to a fraudulent USPS website. This phishing site records provided information. It must be stressed th

DontCryLol Ransomware
Ransomware

DontCryLol Ransomware

While investigating new submissions to the VirusTotal website, our researchers discovered DontCryLol – a ransomware-type program identical to Ransomwarebit and Backshow. This malware encrypts data and demands ransoms for its decryption. On our test machine, DontCryLol encrypted files. To their fi

Updated Terms Of Use Email Virus
Phishing/Scam

Updated Terms Of Use Email Virus

After inspecting the "Updated Terms of Use" email, we determined that it is malspam. This mail is presented as a notification from Zilliow – a tech real-estate marketplace company – informing the recipient of updates to the Terms of Use updates. This email aims to trick recipients into opening the

ExplorationSprint Adware (Mac)
Mac Virus

ExplorationSprint Adware (Mac)

ExplorationSprint is an adware-type application that our research team discovered while inspecting new file submissions to VirusTotal. This app is part of the AdLoad malware family. ExplorationSprint operates by feeding users with unwanted and potentially malicious ads. Adware stands for