Discovered by Michael Gillespie, Hese is high-risk ransomware from the Djvu ransomware family. Following successful infiltration, Hese encrypts most stored data, thereby rendering it unusable. Additionally, Hese appends each filename with the ".hese" extension (hence its name). For example, "1.jp
AsyncRAT is the name of a remote access or administration tool (RAT). RATs are used to control computers remotely, typically for educational, technical support purposes. In many cases, however, cyber criminals try to trick people into installing these tools to perform various actions on their comp
Akin to pushmehoney.com, datsadstrack.com, check-out-this.site and innumerous others, crouchserf[.]com is a rogue website. Designed to redirect visitors to unreliable/compromised sites, as well as force-feed them highly questionable and/or malicious content. Intentional visits to this website are
Similar to weads32.com, robotcaptcha3.info, topernews.me, and many others, checkpost[.]club is a rogue site designed to feed users with dubious content and redirect them to other dubious websites. Research shows that many visitors arrive at checkpost[.]club inadvertently - they are redirected by
Weads32[.]com is a rogue site, sharing many similar traits with naneso.com, pushmobilenews.com, clckworld.club and thousands of others. It operates by redirecting visitors to unreliable and potentially malicious sites, as well as presenting highly questionable content for user consumption. In mo
Fastmailtab.com is the address of a fake search engine that is promoted through a potentially unwanted application (PUA) called Fast Mail Tab. This app is categorized as a browser hijacker and supposedly allows access to multiple email accounts directly from a new browser tab, however, its actual
.pdf is a ransomware-type infection that belongs to the Dharma ransomware family. As with most of infections from this family, .pdf was discovered by Jakub Kroustek. After successful infiltration, .pdf encrypts most stored data, thereby rendering it unusable. Additionally, it renames each file by
revmake[.]com is similar to other sites of this type such as routgpushs[.]com, procontent[.]me, and exclusivenotifications[.]com. When opened, this rogue site opens other untrusted websites or presents visitors with dubious content. In most cases, browsers open these web pages due to potentially u
Topernews[.]me is a rogue site, designed to cause unauthorized redirects and present visitors with highly suspect content (largely, of the click-bait type). There are thousands of rogue websites, sharing many similarities in-between (e.g. rembrandium.com, checking-your-browser.com, getmedia.me, da
plsppushme[.]com is a web address that should not be trusted. Most people do not visit this site intentionally - it is opened by potentially unwanted applications (PUAs) installed on browsers or operating systems. Examples of other web pages of this type are routgpushs[.]com, procontent[.]me, and