support-service[.]space is a deceptive website designed to trick visitors into believing that their devices are infected and into downloading potentially unwanted applications (PUAs), which will supposedly remove viruses. Typically, these scam websites are opened when people visit other untruste
ViperSoftX is a JavaScript-based Remote Access Trojan (RAT). Malware of this type allows stealthy remote access and control over an infected machine. These Trojans can have a wide variety of dangerous functionality, which enables likewise varied misuse of the compromised device. The primary purpo
check-me[.]online is an untrusted website designed to present visitors' with dubious content and/or redirect them to other bogus and malicious pages. There are thousands of these rogue sites on the web - suggestive.com, purplemedia.biz, and luckhours.com are just some examples. Visitors rarely en
OperativeDock is a rogue application categorized as adware. Additionally, this app has browser hijacker characteristics. Therefore, following successful infiltration, OperativeDock delivers intrusive advertisement campaigns and makes modifications to browser settings to promote bogus search engi
"Your system is heavily damaged by Two viruses!" is a scam run on deceptive websites (e.g. todaystrends[.]co, greacore[.]com, contentfilled[.]com, nbvtread[.]com and topoffert[.]com). There are multiple variants of this scam. The text presented in them is practically identical, however, the vers
New Finder is a browser hijacker that promotes tailsearch.com, the address of a fake search engine and collects browsing history. It might also record other browsing-related data. In most cases, users download and install apps such as New Finder (browser hijackers) inadvertently and, for this reas
Sharing many similarities with suggestive.com, luckhours.com, yourwownews.com, thgworldwideblog.com and thousands of others, holanews[.]biz is a rogue website. Visitors to these web pages are presented with dubious material and/or are redirected to other untrusted and even malicious websites. Use
B0rn30L0ck3D is a malicious program belonging to the Xorist ransomware family. This malware operates by encrypting data in order to demand payment for decryption. During the encryption process, all affected files are appended with the ".B0rn30L0ck3D" extension. For example, a file originally name
Pola is a malicious program and part of the Djvu ransomware family. Systems infected with this malware experience data encryption and users receive ransom demands for decryption tools/software. During the encryption process, all affected files are appended with the ".pola" extension. For example,
Wskvke encrypts files and appends the ".wskvke" extension to filenames. For example, "1.jpg" is renamed to "1.jpg.wskvke", "2.jpg" to "2.jpg.wskvke", and so on. It also creates a ransom message (within the "HOW TO RESTORE YOUR FILES.TXT" text file) in all folders that contain encrypted files. Not