Discovered by Jakub Kroustek, Club is a malicious program belonging to the Dharma ransomware family. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption. During the encryption process, all affected files are renamed following this pattern:
Wowsearch hijacks browsers by changing certain browser settings to search.wowsearch.net (the address of a fake search engine). Commonly, apps of this type track and record information relating to users' browsing habits, and other details. People often download and install browser hijackers inadve
BBC is a malicious program belonging to the Phobos ransomware family. This malware operates by encrypting the data of infected systems in order to demand ransom payments for decryption. During the encryption process, all affected files are renamed according to this pattern: original filename, uni
Searchsio is a browser hijacker promoted as a tool to improve the browsing experience. It can supposedly provide easy access to favorite topics, news, videos, images and so on. In fact, it diminishes the browsing experience by modifying browsers to promote a fake search engine (feed.searchsio.com)
captcha244[.]ga is a deceptive website, running various scams. It has been observed promoting a scheme claiming that spyware has been detected on visitors' Apple devices. The scam urges users to call a fake technical support line. Trusting the content promoted on this site can lead to serious is
SearchTopic serve advertisements and promote the address of a fake search engine by modifying certain browser settings. In this context, the app has characteristics of adware and a browser hijacker. It is also possible that SearchTopic will gather data relating to users' browsing habits. People
Discovered by GrujaRS, BigLock, also known as corona-lock, is a malicious malware program classified as ransomware. BigLock is designed to encrypt data and demand payment for decryption tools. During the encryption process, all affected files are appended with the ".corona-lock" extension. Theref
News Precinct is classified as a browser hijacker, since it promotes a fake search engine (newsprecinct.com) by changing certain browser settings. Commonly, apps of this type not only modify settings, but also collect various browsing-related information. Users often download and install browser
This ransomware was discovered by GrujaRS. Avaddon encrypts files with the AES encryption algorithm and encrypts an AES key using the RSA algorithm. It also changes the desktop wallpaper and renames all files by appending the ".avdn" extension. For example, it renames a file named "1.jpg" to "1.jp
.rar (Jigsaw) malware is a part of the Jigsaw ransomware family. It encrypts files, modifies their filenames and displays a ransom message (pop-up window). It renames all encrypted files by appending the ".rar" extension to filenames. For example, it renames "1.jpg" to "1.jpg.rar", "2.jpg" to "2.j