Discovered by Albert Zsigovits, CryLock is the name of a malicious program, which is a new variant of Cryakl ransomware. This malware is designed to encrypt data and demand payment for decryption. During the encryption process, all affected files are renamed according to the following pattern: de
SportsSearcher promotes the sports-searcher.com (a fake search engine) by making certain modifications to browser settings. Like most browser hijackers, it collects browsing-related information (browsing data) as well. Generally, users download and install browser hijackers unintentionally and, t
WebNavigatorBrowser is an ad-supported web browser based on Chromium, a free and open-source software project from Google. Do not use browsers that have functionality of adware (software that serves advertisements). Furthermore, this browser could be designed to collect browsing-related (and other
RedLine Stealer (also known as RedLine) is a malicious program which can be purchased on hacker forums for $150/$200 depending on the version. It can be used to steal information and infect operating systems with other malware. Generally, cyber criminals attempt to infect computers with malicious
Mgyhzbjyhux is a part of the Snatch ransomware family. This ransomware encrypts files, modifies their filenames and creates the "HOW TO RESTORE YOUR FILES.TXT" ransom message in all folders that contain encrypted files. Mgyhzbjyhux renames files by appending the ".mgyhzbjyhux" extension. For exam
DefaultProgress is rogue software classified as adware and also possessing browser hijacker traits. Following successful installation, this application runs intrusive advertisement campaigns (i.e. delivers various ads), makes changes to browser settings and promotes fake search engines. Default
56d2n4d.com is the address of a fake search engine. Generally, fake search engine addresses are promoted through browser hijackers. Apps of this type promote these bogus addresses by changing certain browser settings. 56d2n4d.com is promoted through an application called DefaultProgress, which i
Ogdo is a malicious program and part of the Djvu ransomware group. This malware is designed to encrypt data and demand ransoms for decryption tools. During the encryption process, all compromised files are appended with the ".ogdo" extension. For example, a file originally named something like "1.
AllRadioSearch promotes allradiosearch.com, the address of a fake search engine by changing certain browser settings. Additionally, it might collect information relating to users' browsing activities. Users often download and install these apps inadvertently and, therefore, they are categorized as
Jarkvgtiiq belongs to the Snatch ransomware family. It creates the "HOW TO RESTORE YOUR FILES.TXT" text file (a ransom message) in all folders that contain encrypted files and appends the ".jarkvgtiiq" extension to the filename of each encrypted file. For example, it would rename "1.jpg" to "1.jpg