First discovered by Raby, BORISHORSE is yet another variant of the Dharma ransomware infection. The purpose of this malware is to stealthily infiltrate systems and encrypt stored data. In doing so, BORISHORSE renames each compromised file by appending the victim's unique ID, developer's email addr
The QuickMail download page states that this app provides quick access to users' email accounts. In fact, QuickMail is a browser hijacker that promotes the srchbar.com fake search engine. Browser hijackers promote search engines of this type by changing browser settings. Typically, people do not
freehdsearch.com is supposedly a legitimate search engine, however, it is fake and promoted through a potentially unwanted application (PUA) called AnyDocToPdf. Note, however, that AnyDocToPdf might not be the only app used to promote freehdsearch.com. PUAs promote fake search engines by changing
WindowArea is a potentially unwanted application (PUA), an adware-type type app very similar to MatchKnowledge and Top Results. The app supposedly allows users to search more effectively, however, adware is a type of software that feeds users with unwanted ads. Furthermore, apps such as WindowA
FileConverterPro is a deceptive application that supposedly allows users to convert various file formats online. Judging on appearance alone, FileConverterPro may seem legitimate and useful, however, this app is categorized as a potentially unwanted application (PUA) and a browser hijacker. The m
The Delete Facebook Messages app supposedly allows users to archive and/or delete Facebook messages. In fact, this is a browser hijacker that changes browser settings (thereby promoting a dubious website) and gathers details relating to users' browsing habits. Most people do not download or insta
Discovered by Jan0fficial, Arsium is the name of a ransomware builder - software that allows cyber criminals to generate malicious executables. If launched, these infect computers with ransomware. Programs of this type lock files strong encryption algorithms. Ransomware is used to blackmail peopl
likemyculture[.]info is a rogue website that shares many similarities with checking-your-browser.com, goodmedia.me, loostnews.biz, and many others. The purpose of this site is to redirect users to other rogue websites and feed them with dubious content. Websites such as likemyculture[.]info are t
Discovered by Michael Gillespie, Masok is a ransomware-type program that belongs to the Djvu family. The cyber criminals who designed Masok spread it to make money from unsuspecting people who cannot access their files due to encryption by this ransomware. To decrypt their files, victims are enco
Identical to ernorvious.com, clckworld.club, dreamteammyfriend.com, and many others, dingboronhartal[.]pro is a rogue website designed to feed users with dubious content and redirect them to other rogue sites. Most visitors arrive at dingboronhartal[.]pro inadvertently - they are redirected by po