Step-by-Step Malware Removal Instructions

Foza Ransomware
Ransomware

Foza Ransomware

In the course of our analysis of malware samples submitted to the VirusTotal website, we discovered Foza ransomware that encrypts files and adds the ".foza" extension to the filenames of encrypted files. Additionally, Foza generates a ransom note (the "_readme.txt" file). An example of how Foza c

Buyrondureonline.com Ads
Notification Spam

Buyrondureonline.com Ads

Our research team discovered the buyrondureonline[.]com rogue page while investigating suspicious websites. It operates by promoting browser notifications spam; at the time of research, it did so by using fake CAPTCHA verification. Additionally, this webpage can redirect visitors elsewhere (likely

SystemConfig Adware (Mac)
Mac Virus

SystemConfig Adware (Mac)

While inspecting new submissions to VirusTotal, our research team discovered the SystemConfig application. Our analysis of this app revealed that it operates as adware and belongs to the AdLoad malware family. SystemConfig is designed to display advertisements and may have additional harmful fun

Aluationiamcur.com Ads
Notification Spam

Aluationiamcur.com Ads

Aluationiamcur[.]com is a rogue webpage that we discovered while investigating suspicious sites. It is designed to promote browser notification spam and redirect users to different (likely dubious/dangerous) websites. Users typically access pages like aluationiamcur[.]com via redirects caused by w

Reconfirm Shipping Documents Email Scam
Phishing/Scam

Reconfirm Shipping Documents Email Scam

Our examination of the "Reconfirm Shipping Documents" email revealed that it is spam. This scam letter requests the recipient to reconfirm the attached documentation. The two attachments are phishing files that record the information entered into them. The spam email with the subject "SWIF

McAfee FINAL WARNING Email Scam
Phishing/Scam

McAfee FINAL WARNING Email Scam

After inspecting this "McAfee FINAL WARNING" email, we determined that it is spam which operates as a phishing scam. The letter is presented as a warning from McAfee regarding detected threats on the recipient's device. This spam mail aims to deceive recipients into disclosing their email account

Your Account Expiry Email Scam
Phishing/Scam

Your Account Expiry Email Scam

Upon examination, we have identified that this email is a phishing scam that masquerades as a notification from an email service provider. Its objective is to trick recipients into visiting a fraudulent website and revealing sensitive information. Consequently, we advise recipients to ignore this

Evil Extractor Malware
Trojan

Evil Extractor Malware

Evil Extractor (EvilExtractor) is a tool utilized for stealing sensitive data from users in Europe and the U.S. It is marketed by Kodex, a company that charges $59 per month for its use. Despite being advertised as a legitimate tool, Evil Extractor is predominantly promoted on hacking forums to at

Blockchain.com - Verify Your Device Email Scam
Phishing/Scam

Blockchain.com - Verify Your Device Email Scam

After inspecting the "Blockchain.com - Verify Your Device" email, we determined that it is fake. This spam letter states that a suspicious sign-in has been observed on the recipient's Blockchain.com account and requires them to verify their device. The goal of this scam mail is to extract users' a

VoNiX Ransomware
Ransomware

VoNiX Ransomware

VoNiX is one of the ransomware variants belonging to the Xorist family. We discovered VoNiX while inspecting malware samples submitted to VirusTotal. Our investigation revealed that apart from encrypting files, VoNiX changes the desktop wallpaper, displays an error message, and creates the "HOW TO