.Crypto ransomware was discovered by dnwls0719 and is written in the Go programming language. Like most programs of this type, .Crypto encrypts files, renames them and generates a ransom message. It renames files by adding the victim's ID, filerestory@gmail.com email address and appending the ".Cr
Discovered by Dnwls0719, LOL (Dharma) is a malicious program belonging to the Dharma ransomware family. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption. During the encryption process, all compromised files are renamed according to this
Get Recipes Now is presented as an application that allows people to access websites providing recipes and recommendations. For example, Food Network and Yummly. In fact, this app promotes a fake search engine (search.hgetrecipesnow.com), changes browser settings, and is categorized as a potential
afunione[.]club is virtually identical to many other rogue websites including, for example, rdsb2[.]club, allmeganews[.]com, and cicort[.]com. When opened, web pages of this type load dubious content or open other untrusted websites. People often arrive at pages such as afunione[.]club due to pot
sLoad (also known as StarsLord) is the name of malicious software that infects operating systems with other malware (e.g., a banking Trojan or ransomware). In this way, sLoad operates as a malware downloader/dropper. Research shows that cyber criminals proliferate sLoad via spam campaigns (emails)
world-search.net is the address of a bogus search engine. Fake web searching tools are usually promoted by rogue software classified as browser hijackers. Music World Search is a browser hijacker known to promote world-search.net. Furthermore, most bogus search engines and browser hijacker record
Mpal is malicious software belonging to the Djvu ransomware family. It encrypts data and demands payment for decryption. During the encryption process, all affected files are appended with the ".mpal" extension. For example, a file originally named something like "1.jpg" would appear as "1.jpg.mpa
Discovered by Jakub Kroustek, Php is a ransomware-type infection from the Dharma malware family. After successful infiltration, Php encrypts most stored files, thereby rendering them unusable. During encryption, Php appends filenames with the victim's unique ID, developer's email address, and ".p
SocialNewPages is a browser hijacker endorsed as a tool for easy access to various popular social networking/media websites (e.g. Facebook, Twitter, LinkedIn, etc.) in addition to supposedly generating improved search results. In fact, it stealthily modifies web browser settings to promote search.
There are many rogue websites similar to allmeganews[.]com. Others examples include rdsb2[.]club, hesterinoc[.]info and cicort[.]com. Usually, these web pages display dubious content or redirect visitors to other untrusted, potentially malicious websites. Commonly, they are opened by browsers tha