It is a technical support scam using scare tactics to trick unsuspecting visitors into calling the provided number. Usually, scammers behind pages of this type ask to install remote administration software, pay for unnecessary services or programs, and (or) provide sensitive information. T
GoAdblockSearch is a piece of browser-hijacking software. It promotes the goadblocksearch.com fake search engine. Since most users unintentionally download/install browser hijackers, they are also classified as PUAs (Potentially Unwanted Applications). GoAdblockSearch causes redirects to g
Wnmd is a ransomware-type program. This malware is designed to encrypt data (render files unusable) and demand ransoms for the decryption. Files encrypted by Wnmd are appended with a ".wnmd" extension. For example, a file initially titled "1.jpg" would appear as "1.jpg.wnmd", "2.jpg" as "2.jpg.wn
News-befuka[.]cc is an untrustworthy website designed to load questionable content and/or redirect visitors to other (likely unreliable or malicious) pages. The Internet is full of such rogue webpages; hrougthatsidh.club, businesspayments.org, captcharesolverhere.top, and totalnicefeed.com are jus
Ndjmu is ransomware designed to encrypt files, change the filename of every encrypted file and create the "MEag_HOW_TO_DECRYPT.txt" file (a ransom note). It renames files by appending a string of random characters and the ".ndjmu" extension to filenames. For example, Ndjmu renames "1.jpg" to "1.j
Page Ranking Tool is an adware-type browser extension. This piece of software is endorsed as a tool allowing users to check a website's reputation. Due to the dubious methods used to distribute adware products, they are also categorized as PUAs (Potentially Unwanted Applications). Adware e
It is a phishing email claiming that recipients have received an encrypted message and can open it via the attached file. The purpose of this email is to trick recipients into opening an HTML file designed to open a fake Microsoft page and entering their account login credentials on it. Th
Similar to businesspayments.org, ourcoolstories.com, spdate.com, new-updates-service.com, and many others, hrougthatsidh[.]club is a rogue site. It is designed to load questionable content and/or redirect visitors to other (likely dubious or malicious) webpages. Users typically access rogue websi
NAME LOCKER is a malicious program belonging to the Babuk Locker ransomware family. It is designed to encrypt data (render files unusable) and demand ransoms for the decryption. Compromised files are appended with the ".crypt" extension. For example, a file like "1.jpg" would appear as "1.jpg.cry
Wixawm is ransomware that encrypts files (makes them inaccessible), modifies filenames of all encrypted files, and generates two ransom notes: "Decryption-Guide.txt" and "Decryption-Guide.HTA". It renames files by appending a string of random characters, the wixawm@gmail.com email address, and ".w