Woso is a browser hijacker that promotes the quickgosearch.com fake search engine. Typically, software within this classification promotes fake search engines by making modifications to browser settings, however, Woso does not always have this behavior (see below). Additionally, Woso collects bro
Registry Helper is a rogue application, promoted as a tool capable of improving system performance by removal of registry errors, however, as most users download/install this app unintentionally, it is classified as a Potentially Unwanted Application (PUA). Software within this classification is
The main purpose of browser hijackers is to force people to visit specific addresses and use fake search engines. Commonly, apps of this type also gather data relating to internet browsing activities. DirectSportSearch is used to promote directsportsearch.com in this way. Users often download and
Silver Sparrow is a malicious program targeting Mac OS operating systems. There are two versions of this malware, the key difference being the targeted OS architecture. Silver Sparrow's activity has been observed in the United States, United Kingdom, Canada, France, and Germany. This malware is
Belonging to the Dharma ransomware family, Pauq is a malicious program. This ransomware operates by encrypting data to make ransom demands for decryption. In simple terms, it renders files inaccessible and demands payment to regain access. During the encryption process, affected files are renamed
Scammers behind 'sextortion' emails threaten recipients that they will send humiliating videos, photos, or other compromising content to friends, coworkers, family, social network contacts, etc., unless a ransom is paid (usually in Bitcoins). Typically, scammers claim to have infected computers w
Bk is a malicious program, which is part of the Dharma ransomware family. Systems infected with this malware have their data encrypted (i.e., rendered inaccessible and useless), and victims receive ransom demands for decryption. During the encryption process, all affected files are renamed follow
AlumniLocker was discovered by dnwls0719. Cybercriminals use ransomware to prevent victims from accessing their files (or devices) and demand ransom payments to regain access. Typically, ransomware encrypts and renames files and creates (or displays) a ransom message. AlumniLocker appends the ".a
phone-security[.]me is one of many deceptive websites that scammers use to scare visitors into downloading and installing potentially unwanted applications (PUAs). In most cases, these web pages display fake virus alerts claiming that the device is infected with viruses. Therefore, avoid teleph
LockfilesKR is malicious software belonging to the MedusaLocker ransomware family. It operates by encrypting data and demanding payment for decryption tools. I.e., this malware renders files inaccessible and demands ransom payments from victims to restore access. During the encryption process, fi