NEFILIM is a malicious program categorized as ransomware. It operates by encrypting the files of infected systems in order to demand payment for decryption tools/software. During the encryption process, all compromised files are appended with the ".NEFILIM" extension. For example, a file original
View Live News Promos is one of many applications that feeds users with advertisements. Apps of this type are categorized as adware and potentially unwanted applications (PUAs), since people usually download and install them inadvertently. These adware-type apps also operate as information tracki
protected-connection[.]com is one of many deceptive, untrusted websites that often tricks visitors into downloading and installing software. These web pages display notifications stating that the device (computer, mobile telephone or other device) is infected with viruses and encourage visitors
Check My Email Tab is a rogue application classified as a browser hijacker and a Potentially Unwanted Application (PUA). It is advertised as a tool for easy access to email accounts, but operates by making modifications to browsers to promote a fake search engine (search.hcheckmyemail.co or hp.hch
mapssrchpro is one of many browser hijackers that promote addresses of fake search engines by changing certain browser settings. This app promotes srchbar.com in this manner. Furthermore, apps of this type often gather information. Browser hijackers are classified as potentially unwanted applicat
Discovered by Ravi, Teslarvng belongs to the Ouroboros ransomware family. It encrypts files, renames them, and provides victims with instructions about how to contact the developers (and other details). Teslarvng renames files by adding the de-crypt@foxmail.com email address and appending ".teslar
"Windows Was Blocked Due To Questionable Activity" is yet another scam message used to extort money from unsuspecting users. Delivered by deceptive websites, the message states that the system has been blocked and encourages users to immediately contact 'tech support' via a telephone number provid
ProcessLocator is a rogue application categorized as adware and a Potentially Unwanted Application (PUA). It is promoted as supposedly improving the browsing experience by providing accurate search results, fast searches and so on. In fact, this app diminishes the browsing experience. ProcessLo
Discovered by dnwls0719, CoronaVi2022 is a malicious program classified as ransomware. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption tools/software. During the encryption process, all affected files are renamed according to the follow
goodbase[.]biz is a rogue website sharing many common traits with 1000-dollar.cash, thefastpush.com, place-web.com and thousands of others. Visitors to this site are presented with dubious content and redirected to untrusted or even malicious pages. Websites such as goodbase[.]biz are usually ope