Step-by-Step Malware Removal Instructions

TabX Browser Hijacker
Browser Hijacker

TabX Browser Hijacker

Our research team discovered a website promoting the TabX browser extension while inspecting dubious pages. After analyzing this piece of software, we determined that it operates as a browser hijacker promoting the newtaber.com fake search engine. TabX assigns newtaber.com as browsers' hom

Coinlocker Ransomware
Ransomware

Coinlocker Ransomware

While investigating new submissions to VirusTotal, we discovered the Coinlocker ransomware-type program. Malware within this classification encrypts data and demands payment for decryption. After we executed a sample of Coinlocker on our test machine, it encrypted files and appended their filenam

Tail doing Browser Hijacker
Browser Hijacker

Tail doing Browser Hijacker

Our researchers discovered the "Tail doing" browser extension while investigating suspicious software endorsing websites. After analyzing this extension, we determined that it is a browser hijacker. Tail doing modifies browsers to promote the tailsearch.com fake search engine. Additionally, this b

You Have 3 Encrypted Documents Email Scam
Phishing/Scam

You Have 3 Encrypted Documents Email Scam

After inspecting the "You Have 3 Encrypted Documents" email, we determined that it is spam. Letters of this spam campaign operate as phishing scams. By claiming that recipients have been sent secured files, the mail attempts to trick users into disclosing their email account log-in credentials.

Ourwowspot.com Ads
Notification Spam

Ourwowspot.com Ads

Our research team found the ourwowspot[.]com browser notification spam promoting webpage while inspecting untrustworthy sites. In addition to attempting to deceive visitors into allowing it to deliver notifications, this page can also redirect them to other (likely untrustworthy/malicious) website

Bobik Malware
Trojan

Bobik Malware

Bobik is a piece of malicious software classified as a RAT (Remote Access Trojan). These trojans are designed to enable remote access/control over infected machines. Bobik can perform various malicious activities, which include - causing chain infections, stealing data, and adding compromised devi

Stream-trust.xyz Ads
Notification Spam

Stream-trust.xyz Ads

Our researchers found the stream-trust[.]xyz rogue page during a routine investigation of dubious websites. This webpage is designed to push browser notification spam and redirect visitors to different (likely deceptive/malicious) sites. Users typically enter stream-trust[.]xyz and similar websit

Darknes Adware
Adware

Darknes Adware

Darknes is a rogue browser extension that is promoted as a tool capable of enabling dark mode for simple design websites. Our researchers discovered this piece of software while inspecting questionable download webpages. After analyzing Darknes, we determined that it operates as adware. Ad

Baseball Start Browser Hijacker
Browser Hijacker

Baseball Start Browser Hijacker

While inspecting dubious software-promoting webpages, our research team discovered the Baseball Start browser extension. It promises easy access to baseball news and other related content. Our analysis of this piece of software revealed that it operates as a browser hijacker. Baseball Start modifi

Bl00dy Ransomware
Ransomware

Bl00dy Ransomware

Bl00dy is the name of a ransomware-type program, which our researchers discovered while looking through new malware submissions to VirusTotal. This malicious program is part of the Babuk ransomware family. Once a sample of Bl00dy was executed on our testing system, it started encrypting files and