myweathercenter.co (also known as feed.hmyweathercenter.co) is a fake search engine that is presented as legitimate. Developers promote the site as useful, offering various features, enhancing the browsing experience, and so on. Unfortunately, it is promoted using two browser hijackers: My Weather
According to Light Cleaner's developers, this program is designed to clean Windows Registry. It also works as an optimizer to improve PC performance. There are many programs of this type available and some developers promote them using dubious methods. In this case, they distribute Light Cleaner
There are many ransomware-type programs that cyber criminals use to encrypt data and blackmail people (make ransom demands). Note that a800, a new variant of RotorCrypt ransomware discovered by Michael Gillespie, is an example of one of these programs. This malicious program renames every encrypt
ProSearchTip is a deceptive application that supposedly enhances the browsing experience by improving search results, providing faster searches, and so on. This functionality may seem legitimate and useful, however, this app often infiltrates computers without users’ permission. After successfu
There are many spam email campaigns used on the internet. Cyber criminals send emails to infect users' computers with malicious programs. "Centers for Disease Control and Prevention Email Virus" is just one example. It contains a link leading to a malicious attachment that infects computers with
Identical to search.convertallfiles.com, search.playeti.com, search.byoml.com, and many others, search.coloringhero.com is a fake search engine that supposedly enhances the browsing experience by generating improved results. Judging on appearance alone, search.coloringhero.com may seem legitima
Vidar (also known as Vidar Stealer) is a trojan (a malicious program) commonly used by cyber criminals. The program steals various personal information from users who have computers infected with the virus. Vidar is distributed mainly through Fallout exploit kit, however, there might also be othe
NWA is a new variant of high-risk ransomware called Dharma. Following successful infiltration, NWA encrypts most stored data. In addition, this malware appends filenames with the victim's ID, developer's email address, and the ".NWA" extension. For instance, "sample.jpg" might be renamed to a fil
FootbalScores24 is a sports-themed application that, according to its developers, allows users to receive the latest football results directly from their browsers. A convenient, fast web search is also promised. This may seem to be a useful and legitimate application, however, it is categorized as
Yatron is a ransomware-type virus that is promoted as 'Ransomware as a Service' (RaaS). After successful infiltration, Yatron encrypts most stored data and appends filenames with the ".Yatron" extension (e.g., "sample.jpg" is renamed to "sample.jpg.Yatron"). Another variant of Yatron ransomware ap