Bboo is malicious software, which is part of the Stop/Djvu ransomware family. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption. When Bboo ransomware encrypts, all affected files are appended with the ".bboo" extension. For example, a fil
Discovered by GrujaRS, Hellomynameisransom is ransomware that belongs to a family of ransomware-type programs called MedusaLocker. Like most programs of this type, Hellomynameisransom renames encrypted files by appending an extension to filenames and provides instructions about how to contact cybe
Discovered by dnwls0719, SNTG is a malicious program belonging to the Matrix ransomware family. Systems infected with it have data encrypted and users receive ransom demands for decryption tools/software. During the encryption process, SNTG renames each file with the following pattern: "[SantaGma
ZYX belongs to the GlobeImposter family. This ransomware appends the ".{indus37098@india.com}ZYX" extension to the names of encrypted files. For example, "1.jpg" becomes "1.jpg.{indus37098@india.com}ZYX", and so on. Furthermore, this ransomware creates a ransom message within the "how_to_back_fil
0wnpr0m0[.]com is a deceptive/scam website. Its behavior varies, as does the material it displays. In general, it promotes dubious and possibly malicious content and generates redirects to likewise dangerous sites. It has been observed redirecting to a fake software update scam web page. These
Moncrypt was discovered by dnwls0719 and is part of the Scarab ransomware family. Typically, programs of this type encrypt data/files, rename encrypted files, and create and display ransom messages. Moncrypt renames all files by appending the ".moncrypt" extension to filenames. For example, it re
getalinkandshare[.]com is an untrusted website that downloads malicious files and redirects visitors to other deceptive, potentially malicious web pages. Note that getalinkandshare[.]com is used to trick visitors into downloading and opening files that might be designed to install browser hijack
Search by Live PDF Converter is a browser hijacker, which operates by modifying browsers to promote its associated fake search engine (feed.livepdfconverter.com). Furthermore, this app has data tracking capabilities, which are employed to monitor users' browsing habits. Due to its dubious prolife
"Windows Defender Security Center" is a fake error message displayed by various websites. Users visit often these sites inadvertently - they are redirected by potentially unwanted programs (PUPs) or intrusive advertisements delivered by other rogue sites. Research shows that many PUPs infiltrate
hecktasit.club is the address of a fake search engine and a website that, if accessed directly, opens nicetab.live, which is a download page of the NiceTab StartPage browser hijacker. Typically, fake search engines are promoted through rogue downloaders/installers that modify browser settings.