Wnbe is a new variant of the Wannabe ransomware. This variant encrypts files and appends the ".wnbe" extension to filenames. For example, it changes "sample.jpg" to "sample.jpg.wnbe", "1.png" to "1.png.wnbe", and so on. Wnbe changes the desktop wallpaper and creates the "read_instructions.txt".
Moviesnation[.]org is a copyright-breaking movie streaming/download website. This illegal site also uses rogue advertising networks, which endorse various (likely deceptive and malicious) webpages. There are thousands of sites monetized through such networks; 123moviesonline.online, mobi
Businesspayments[.]org is an untrustworthy website similar to ourcoolstories.com, spdate.com, news-lipaze.cc, and countless others. It is designed to load questionable content, push its browser notifications, and/or redirect visitors to various (likely deceptive or malicious) sites. Users typical
WideCluster is the name of an adware-type application with the qualities of a browser hijacker. It can show advertisements and change web browser's settings to promote a fake search engine. Typically, apps like WideCluster are promoted/distributed using questionable methods to trick users into d
Paymentsweb[.]org uses deception to get permission to show notifications and redirects visitors to shady websites. It shares these qualities with lukchit[.]com, ourcoolstories[.]com, spdate[.]com, and many more. Users end up on pages like paymentsweb[.]org inadvertently. Paymentsweb[.]org
Deeep is a malicious program that is part of the Dharma ransomware family. It is designed to encrypt data (render files inaccessible) and demand payment for the decryption. Files are appended with a unique ID assigned to the victim, the cyber criminals' email address, and a ".Deeep" extension. Fo
123moviesonline[.]online is an illegal movie streaming page offering to watch movies online and download them. Another important detail about this page is that it uses rogue advertising networks - it contains shady ads and can redirect users to untrustworthy pages. Ads on 123moviesonline[.
CompactFilter is an adware-type app that has browser hijacker abilities. Since most users download/install software products of this kind inadvertently, they are also categorized as PUAs (Potentially Unwanted Applications). Adware can display intrusive advertisements (e.g., pop-ups, coup
Wnlu is ransomware designed to block access to files and provide a ransom note. It encrypts files, appends the ".wnlu" extension to filenames (for example, renames "1.jpg" to "1.jpg.wnlu", "2.jpg" to "2.jpg.wnlu"), and creates the "_readme.txt" file. Wnlu is one of the variants belonging to the Dj
DoyUk 5.0 is ransomware that blocks access to files by encrypting them. It also renames every encrypted file by appending the ".doyuk" extension to its filename and creates the "Warning.txt" text file (a ransom note). For example, it renames "1.jpg" to "1.jpg.doyuk", "2.jpg" to "2.jpg.doyuk". DoyU