pdfsrch.com is the address of a fake search engine. These bogus search tools are typically unable to provide unique results. They are promoted by Potentially Unwanted Applications (PUAs) classified as browser hijackers. Note that pdfsrch.com has been observed being promoted by the DoctoPDF, PDF O
Tituricsec is an adware-type application designed to serve advertisements and promote a fake search engine by changing certain browser settings. Therefore, it operates both as adware and a browser hijacker. Commonly, apps such as Tituricsec collect browsing-related (and other) data. Note that u
Black Claw (also known as BlackClaw) makes files inaccessible by encrypting them with AES and RSA encryption algorithms, renames every encrypted file, and generates two ransom messages. It renames files by adding the victim's ID (e.g., "hgcapmh02i") and appending the ".bclaw" extension to filename
Wbqczq is malicious software belonging to the Snatch ransomware family. This malware encrypts data and demands payment for decryption. During the encryption process, all affected files are appended with the ".wbqczq" extension. For example, a file originally named something like "1.jpg" would appe
MacAppsHD is rogue software classified as adware. It delivers intrusive ad campaigns. Additionally, this application has browser hijacker characteristics such as browser modification and promotion of bogus search engines. Most adware apps and browser hijackers monitor users' browsing activity, a
Searchsnow.com is the address of a fake search engine. In most cases, these addresses/fake search engines are promoted through browser hijackers, which change certain browser settings. Browser hijacking apps can also collect browsing-related and other information. People often download and inst
Discovered by Jakub Kroustek, FRM is a malicious program belonging to the Dharma ransomware family. Systems infected with this malware experience data encryption and users receive ransom demands for decryption. During the encryption process, FRM ransomware renames affected files according to this
TypicalFraction is designed to promote the Safe Finder web page via akamaihd.net (the address of a fake search engine) by changing certain browser settings and feeding users with advertisements. Therefore, it is classified as an adware-type app, which has characteristics of a browser hijacker.
Like many other spam (malspam) campaigns, this one is disguised as an official message from a legitimate company and is sent to trick recipients into opening (executing) a malicious file. The file contains a malicious attachment, an archive file (ZIP), which contains another malicious file designe
NetGuideSearch is an adware-type application that has browser hijacker characteristics. This app runs intrusive ad campaigns and modifies browser settings to promote a fake search engine. Additionally, most adware infections and browser hijackers monitor users' browsing activity. Due to the dub