Step-by-Step Malware Removal Instructions

Whiteboard New Tab Browser Hijacker
Browser Hijacker

Whiteboard New Tab Browser Hijacker

Whiteboard New Tab is a rogue browser extension that our researchers discovered while inspecting suspicious websites. It is presented as a tool that allows the user to draw/write on a new browser tab. However, Whiteboard New Tab also operates as a browser hijacker, i.e., makes changes to browser s

RansomBoggs Ransomware
Ransomware

RansomBoggs Ransomware

RansomBoggs, also known as Sullivan, is a ransomware-type program. Malware within this classification encrypts data and makes ransom demands for the decryption (i.e., file recovery). After being launched on our testing system, this ransomware encrypted files and appended their names with a ".chsc

HBM Ransomware
Ransomware

HBM Ransomware

HBM is the name of a ransomware-type program designed to encrypt data and demand payment for the decryption. This malicious program is part of the Dharma ransomware family. Once a sample of HBM was executed on our test machine, it began encrypting files and altering their filenames. Original titl

Cities HD Backgrounds in Your New Tab Browser Hijacker
Browser Hijacker

Cities HD Backgrounds in Your New Tab Browser Hijacker

We tested the Cities HD Backgrounds in Your New Tab application and found that it operates as a browser hijacker. It promotes a fake search engine (spntextension.com) by changing the web browser's settings. We discovered Cities HD Backgrounds in Your New Tab browser extension on a deceptive web pa

Microsoft Request Verification Email Scam
Phishing/Scam

Microsoft Request Verification Email Scam

It is a scam email created to steal login information. It is disguised as a letter from Microsoft regarding account verification. It contains a link to a phishing page (a fake login website). This scam email should be marked as spam and deleted. This email requests recipients to verify the

InputView Adware (Mac)
Mac Virus

InputView Adware (Mac)

InputView is a rogue application that our researchers discovered while investigating new submissions to VirusTotal. After inspecting this app, we determined that it is adware belonging to the AdLoad malware family. Adware stands for advertising-supported software. It displays ads on vari

WASP Malware
Trojan

WASP Malware

WASP (W4SP) is the name of an information-stealing malware that steals victims' passwords, credit card details, Discord accounts, cryptocurrency wallets, and personal files and sends them to the threat actor. It sends stolen data via a Discord webhook address. WASP has been observed being sold to

Kevin Ransomware
Ransomware

Kevin Ransomware

While inspecting new malware submissions to VirusTotal, our research team discovered the Kevin ransomware. Malicious software within this classification operates by encrypting data in order to make ransom demands for the decryption keys/tools. When we executed a sample of Kevin ransomware on our

Daily Quarantined Message Report Email Scam
Phishing/Scam

Daily Quarantined Message Report Email Scam

Our analysis of the "Daily Quarantined Message Report" email revealed that it is spam. Letters belonging to this campaign are presented as genuine reports concerning recipients' inboxes. This spam mail aims to steal email accounts by promoting a phishing website. The email with the subject

Annual Leave Email Virus
Phishing/Scam

Annual Leave Email Virus

Our malware researchers examined this email and found that it is used by cybercriminals who aim to trick recipients into infecting their computers with FormBook malware. The email itself is disguised as a letter regarding some payment terms. It has a PDF document attached to it that downloads an I