Step-by-Step Malware Removal Instructions

Hacker Crypt2020 Ransomware
Ransomware

Hacker Crypt2020 Ransomware

During a routine inspection of new malware submissions, our researchers found a new ransomware-type program from the Xorist family - called Hacker Crypt2020. After a sample of this ransomware was launched on our test machine, it encrypted files and appended their filenames with a ".hacker crypt20

Coca Cola Lottery Email Scam
Phishing/Scam

Coca Cola Lottery Email Scam

The "Coca Cola Lottery" email is spam. Our inspection revealed that this letter operates as a phishing scam. It attempts to trick recipients into disclosing private information by claiming that they have won a large sum of money - hence, providing personal details is necessary to claim the prize.

Greenspecialmyline.com Ads
Notification Spam

Greenspecialmyline.com Ads

Our researchers discovered the greenspecialmyline[.]com rogue webpage while inspecting untrustworthy websites. It is designed to promote browser notification spam and redirect visitors to other (likely unreliable/malicious) sites. Most users enter pages of this type via redirects caused by website

Ontario UK Lottery Email Scam
Phishing/Scam

Ontario UK Lottery Email Scam

After inspecting the "Ontario UK Lottery" email, we determined that it is spam. The scam letter claims that the recipient has been chosen as a lottery winner. This fake email mentions several legitimate entities, and it must be emphasized that none of them are associated with this scam. Th

IntegerLocator Adware (Mac)
Mac Virus

IntegerLocator Adware (Mac)

IntegerLocator is a rogue app that our researchers discovered while inspecting new submissions to VirusTotal. After analyzing this piece of software, we determined that IntegerLocator operates as advertising-supported software (adware) and belongs to the AdLoad malware family. It is note

Industrial Spy Market Ransomware
Ransomware

Industrial Spy Market Ransomware

Industrial Spy Market is a piece of malicious software classified as ransomware. Malware within this classification operates by encrypting files to demand payment for the decryption. Typically, ransomware renames the encrypted files, but Industrial Spy Market does not alter filenames. Once the en

Frame Order Adware
Adware

Frame Order Adware

While inspecting deceptive download webpages, our researchers found the frame order browser extension. After analyzing this piece of software, we determined that it operates as adware. Advertising-supported software (adware) enables the placement of third-party graphical content (e.g., pop

CAETANO FORMULA Email Virus
Phishing/Scam

CAETANO FORMULA Email Virus

Our team has examined this email and found that it contains a malicious attachment. The file attached to it infects computers with Agent Tesla - a remote administration Trojan (RAT). This file is disguised as a purchase order document. The email instructs recipients to review the attached

CryptBIT Ransomware
Ransomware

CryptBIT Ransomware

CryptBIT is ransomware that encrypts files, appends the ".cryptbit" extension to filenames, changes the desktop wallpaper, and creates the "CryptBIT-restore-files.txt" file. Our malware researchers have discovered it while analyzing the samples submitted to VirusTotal. An example of how CryptBIT

Geek Squad Email Scam
Phishing/Scam

Geek Squad Email Scam

After examining the email, we found that it is disguised as a letter from Geek Squad, a subsidiary of Best Buy (a consumer electronics corporation). The purpose of this email is to trick recipients into calling the provided number (contacting scammers). It must be ignored. Geek Squad has nothing t