InterLockRAT
InterLockRAT is a newly identified Remote Access Trojan (RAT) weaponized by the Interlock ransomware group. This threat uses deceptive techniques…
SamSam Ransomware
SamSam Ransomware is a highly sophisticated and dangerous file-encrypting malware strain that has been responsible for crippling networks across the…
Remove FileCoder: In-Depth Guide for Mac Ransomware Protection
FileCoder, also known as Ransomware.MacOS.FileCoder.A or OSX/Filecoder.E, is a dangerous ransomware threat that specifically targets macOS systems. It encrypts user…
GLOBAL GROUP Ransomware
GLOBAL GROUP is a newly emerged Ransomware-as-a-Service (RaaS) operation first active around June 2, 2025, rebranded from previous BlackLock/Mamona-family ransomware. It targets high-value…
NebulaTachyonen
NebulaTachyonen is a malicious adware and browser hijacker that infiltrates your system—often as a deceptive browser extension or bundled software.…
Remove Dalubform.com
Overview Threat type: Adware / Browser hijacker via push‑notification spamAssociated domain: dalubform.comDetection names: Not widely flagged by antivirus but labeled “Ads by dalubform.com”…
BQTLOCK Ransomware
BQTLOCK is a recently discovered ransomware strain that targets Windows systems. It encrypts victims’ files using robust AES‑256 and RSA‑4096…
NetFastTrack.co.in Ads
Threat Overview Threat type: Adware / Browser Notification HijackerAssociated domain: netfasttrack.co.in (and subdomains)Detection names: Browser notification spam, push notification scamSymptoms of infection: Threat…
Meatitenes.co.in Ads
Meatitenes.co.in is a push-notification adware hijacker that manipulates browser notification permissions to flood users with intrusive advertisements. It uses deceptive…
Mencrodae.com Ads
Mencrodae.com Ads is a malicious push-notification campaign masquerading as a CAPTCHA verification page. It lures users into clicking “Allow,” then…
Rapidnetmove.co.in
Threat Overview Why Rapidnetmove.co.in is a Threat Rapidnetmove.co.in abuses browser push notifications to send spam notifications directly to your device—even…
Ads by speedfixdevice.co.in
Ads by speedfixdevice.co.in is a deceptive adware/browser hijacker that tricks users into allowing push notifications through misleading CAPTCHA prompts. Once permissions…
Waddlesestant.com Ads
Waddlesestant.com is a deceptive push-notification scam that falls under the category of adware and browser hijackers. It uses manipulative tactics…
Color Picker Tool – geco
Color Picker Tool – geco is a deceptive browser extension that poses as a legitimate color picker utility. Although it…
WinAIHService
WinAIHService is a Trojan that stealthily embeds itself into your system, leveraging persistence mechanisms like scheduled tasks and registry keys. Its goal…
Megadraws.click
Megadraws.click is classified as a browser hijacker/adware that modifies your browser settings to push intrusive pop-ups, fake alerts, and unwanted…
ProfitableGateCPM
ProfitableGateCPM is a browser hijacker/adware that infiltrates popular browsers such as Chrome, Firefox, Edge, and Safari by duping users into…
SparkLocker Virus
SparkLocker is a dangerous ransomware strain that encrypts users' personal files and demands a ransom—typically $5,000 in Bitcoin—in exchange for…
Extension‑download.com
Extension‑download.com is a browser hijacker that alters browser settings without user consent. It causes constant redirects, displays intrusive pop-up ads,…
Refpaicctvtm.top Pop‑Up Virus
Refpaicctvtm.top poses as a “notifications service” but is actually a deceptive browser notification virus, pushing pop‑ups that claim your system is…
Ad Block Genius
Ad Block Genius is not a genuine ad blocker—it’s an adware/browser hijacker that pretends to enhance your online experience. Once installed,…
iSready3 Online
iSready3 Online is a suspicious piece of software that users may inadvertently download from untrustworthy sources. Posing as a helpful…
SM$LE Ransomware
SM$LE (Smile) is a crypto‑ransomware strain that encrypts your files, appending the .SM$LE extension to every targeted document, image, or executable. Victims receive a…
Oyster Backdoor
Oyster, also known as Broomstick or CleanUpLoader, is a stealthy Windows backdoor distributed via malvertising and SEO-poisoned fake websites. Cybercriminals…
DRAT Malware
DRAT (also known as DRAT Remote Access Trojan) is a stealthy and potent remote access Trojan (RAT) that emerged in mid-2025. Delivered…
Ads by connectchainnet.com
ConnectChainNet.com shows fake CAPTCHA tests prompting you to “Click ‘Allow’ to confirm you are not a robot.”But this is a trick…
Ads by Selexciest.com
Ads by Selexciest.com is not traditional malware, but a browser-based adware/browser hijacker that abuses web push notifications. It tricks users into clicking “Allow” under…
Vornixuma.com Ads
Vornixuma.com is a deceptive adware-style threat that abuses browser notification permissions to push intrusive advertisements. It typically tricks users into…
ClavixZura.com Ads
ClavixZura.com is a browser-based adware and hijacker that tricks users into subscribing to push notifications via deceptive CAPTCHA prompts. Once…
BlackFl Ransomware
BlackFl is a recent ransomware strain that targets organizations and individuals by encrypting files and attempting to extort victims through…
Onionmail/Air Ransomware
Onionmail/Air—also known as AIR or Makop—belongs to the notorious Phobos-derived ransomware family. It encrypts your files, changing their extension to .AIR and…
SpiderPery Ransomware
SpiderPery is a newly identified ransomware strain discovered in early July 2025. It belongs to the crypto‑virus family and encrypts…
Darkness Ransomware
Darkness Ransomware Darkness ransomware is a newly identified malicious strain designed to encrypt user files and demand payment for their…
Qwizzserial Stealer
Qwizzserial is a Kotlin‑based Android stealer trojan that has infected nearly 100,000 devices—particularly in Uzbekistan—by masquerading as legitimate financial or…
Sinobi Ransomware
Sinobi is a newly discovered ransomware that encrypts personal and business files by appending the .SINOBI extension. It then locks you out…
AdsDataFusionTop
AdsDataFusionTop is a stealthy browser hijacker and adware that commandeers your browsing habits, bombarding you with intrusive ads, redirecting your…
Ads by Larygeously.co.in
Ads by larygeously.co.in are intrusive, deceptive browser notifications originating from rogue webpages that trick users into granting permission. Once allowed, they…
Ads by bridgechainnet.com
Ads by bridgechainnet.com is an adware / push-notification hijacker that tricks users into enabling browser notifications via fake CAPTCHA and “Click Allow” prompts.…
Defender Security Update v2.1 Virus
Defender Security Update v2.1 is not a genuine update—it’s a deceptive pop-up scam that urges users to download and install malicious…
Oroectua.co.in Ads
Threat Overview FeatureDetailsThreat typeAdware / Browser notification spamAssociated domain(s)oroectua.co.inDetection namesBlocklisted by Seclookup, marked as spam by Sophos, flagged by VirusTotal…
SearchingTrends.com Redirect
"Search Trends" is a browser hijacker that stealthily changes your homepage, new tab pages, and default search engine to searchingtrends.com. This…
Kyj Ransomware
A recent surge in Kyj ransomware attacks revealed victims waking up to locked files marked with the .kyj extension—prompting ransomware notes demanding contact via kyjpc@cock.li or…
SilentRoute Trojan
Cybercriminals are distributing a trojanized version of SonicWall’s SSL VPN NetExtender (version 10.3.2.27), misleading users into installing what appeared to be legitimate…
Blackransombdbot
A user discovered their files renamed with a .blackransombdbot extension, a tell‑tale sign of the new Blackransombdbot ransomware—a Chaos family variant. The…
Pope/Vatican Ransomware
A recent case saw “Vatican” ransomware strike, renaming files to “filename.POPE” and displaying a multi-language ransom pop-up referencing the Vatican…
007 Ransomware
A recent case saw a Windows system infected by a discovered strain named “007,” which added a “.007” suffix to…
Review4.in Redirect
A recent case revealed browsers suddenly routing all searches to a suspicious domain: review4.in, accompanied by fake malware alerts and…
UraLocker Ransomware
You log into your PC and discovering every document, photo, and project file renamed with a strange new extension: “.rdplocked.” Alongside the…
stylemeshconnect.com
Imagine this: a user clicks on what seems like a harmless video site. Suddenly, a pop-up warns their device is…
KaWaLocker
A recent incident within a mid-sized European logistics firm illustrates the emerging threat of KaWaLocker. After an unsuspecting employee opened…
