Protectionrequired[.]com is a rogue site that hosts dubious content, pushes browser notifications, and/or redirects visitors to other questionable/malicious webpages. Websites of this type are most commonly accessed via others that use rogue advertising networks. Websites base their behavi
"TO CONTINUE - ADD EXTENSION TO CHROME" is a deceptive message displayed by an untrustworthy website designed to trick users into downloading and installing adware, browser hijackers, and other potentially unwanted applications (PUAs). Users end up on such pages mainly through websites that use ro
Bestsystemav[.]xyz is a site that loads deceptive content, pushes its browser notifications, and redirects visitors to other untrustworthy or malicious webpages. Sites like bestsystemav[.]xyz are accessed inadvertently, primarily via other pages that use rogue advertising networks. Bestsys
Webprotectionprogram[.]com is designed to trick visitors into believing that their computers are infected and agreeing to receive notifications. There are many pages like this one on the Internet, for example, security-scanner[.]xyz, checkthesafety[.]com, mydesktopdefence[.]com. Webprotect
NUNCATARDE is a malicious program categorized as ransomware. It operates by encrypting files and demanding ransoms for the decryption. The locked files are appended with a ".NUNCATARDE" extension. For example, a file initially named "1.jpg" would appear as "1.jpg.NUNCATARDE", "2.jpg" as "2.jpg.NU
Windowsdetector[.]com displays deceptive content and asks for permission to show notifications. Additionally, it can be designed to redirect users to potentially malicious pages. Examples of pages similar to windowsdetector[.]com are checkthesafety[.]com, mydesktopdefence[.]com, security-scanner[.
Fmu9d is ransomware that encrypts files, modifies filenames of all encrypted files, and creates the "auw1_HOW_TO_DECRYPT.txt" file containing a ransom note. It renames files by appending a string of random characters and the ".fmu9d" extension to filenames. For instance, Fmu9d renames a file name
ActiveCoordinator is a rogue app with adware and browser hijacker abilities. Since most users inadvertently download/install software products of this kind, they are also categorized as PUAs (Potentially Unwanted Applications). Adware enables the placement of intrusive adverts (e.g., pop
"Pornography Warning Error" is a technical support scam. It has been observed being promoted via the Amazon AWS service. Scams of this type are elaborate and start by presenting users with fake alerts designed to trick them into calling bogus helplines, which can then lead to monetary losses, malw
CheckFeature generates advertisements and promotes a fake search engine. It does the second by hijacking a web browser (by changing its settings). Typically, apps like CheckFeature are promoted and distributed using questionable methods. Thus, users download and install them unintentionally (the