Like most technical support scams, this one claims that the user's personal, sensitive information is stolen and the computer is infected with malware. Its main purpose is to trick unsuspecting people into calling scammers via the provided telephone number. Typically, scammers behind these decept
Discovered by dnwls0719, Geminis is a malicious program categorized as ransomware. Systems infected with this malware suffer data encryption and users receive ransom demands for decryption keys/software. When Geminis ransomware encrypts data, files are appended with the ".geminis3" extension. The
hesterinoc[.]info is one of many sites that redirect visitors to other untrusted websites or load dubious content. More examples of pages that function in this way are promodayz[.]com, overiesarticu[.]info and pushpush[.]net. Typically, these web pages are opened through dubious ads, rogue web pag
magnetdl[.]com is a torrent website which uses rogue advertising networks and might contain copyrighted content. Note that buttons within magnetdl[.]com can lead to other untrusted and potentially malicious websites, including illegal streaming web pages. Note that 'torrenting' (using torrent clie
Discovered by Amigo-A, GoCryptoLocker is malicious software classified as ransomware. Ransomware is designed to encrypt data and demand payments for decryption. When GoCryptoLocker encrypts, all affected files are appended with the ".GEnc" extension. For example, a file originally named something
History Hide is advertised as a privacy-focused app that keeps users' searches private. In fact, it changes browser settings to promote its associated search engine (historyhide.com) and might also gather browsing-related and other data. Apps of this type are classified as browser hijackers. Peop
zooqle[.]com is an untrusted P2P (Peer-to-Peer) sharing website, which allows users to share content through torrent files. In fact, this site infringes copyright laws and uses rogue advertising networks. Therefore, visitors to this website are redirected to other dubious, deceptive and malicious
WisePCDoctor is advertised as program which allows users to scan, repair and improve the performance of their computers, however, due to its distribution method, WisePCDoctor is categorized as a potentially unwanted application (PUA). Generally, users do not download or install PUAs intentionally.
The "U.S. Small Business Administration" email is part of yet another spam campaign exploiting the Coronavirus/COVID-19 pandemic. Supposedly from the US Small Business Administration (SBA), the emails are disguised as containing information regarding the Paycheck Protection Program, Economic Inju
TopicFirst is a potentially unwanted application (PUA), an adware-type app supposedly designed to improve the browsing experience. In fact, it feeds users with advertisements, promotes Safe Finder (by opening it via akamaihd.net) and might also gather information. Users often download and instal