What is gadaccityinces.com? gadaccityinces.com is a malicious browser hijacker connected with adware/PUP (Potentially Unwanted Program) that injects intrusive popup ads, alters browser settings, and secretly harvests user data. First observed in Feb. 2025, it primarily targets Chrome and Edge web browser on Windows 10/11 systems . 🔍 How Most Users Get Infected? [User Quotes]: After…
About Hunters Ransomware Our cybersecurity team spent 72 hours analyzing Hunters Ransomware’s latest attack wave. Here’s the details we uncovered: Hunters Ransomware is one the latest version of Xorist file encrypting ransomware family . It force you to pay $10,000 in Bitcoin to decrypt your files. Under the assistance of the Trojan virus hiding in…
Stop News-xlusawu.cc Phishing Popups! [Last Updated Guide] News-xlusawu.cc is a malicious website which can hijack your web browsers and pushes phishing popup ads to harass you. In most cases, it invades the targeted computers via malicious app installer or spam pop-up message. Once News-xlusawu.cc is activated on infected web browser, annoying fake notifications will be…
What is find-quickly.com? find-quickly.com is categorized as a browser hijacker that recently encountered by our Malware Researcher while analyzing a user’s Chrome browser logs from Austin, TX. The hijacker gets injected through fake PDF converter installers – a classic bundling technique I documented in my malware journal last week. We also received many user reports…
Analysis on News-xxodetu.com Popup Scam On Tuesday morning, there were multiple reports about News-xxodetu.com popups \ ads on Reddit: Sarah from Texas post: “Suddenly getting weird ‘System Alert!’ popups about memory errors – but my Task Manager shows normal usage. Help!” Another PC user Dan reported details about the hijacker: I downloaded “Free YouTube Downloader”…
Technical Breakdown: Bongbonger.org Hijacker Updated 16- Feb, 2025 09:45 PST – Our team observed Bongbonger.org making 142 DNS requests/minute to 104.28.244[.]116 during lab tests. The hijacker injects malicious iFrames using this pattern: <iframe src=”hxxps://bongbonger[.]org/redirect.php?vid=3872″ style=”display:none”></iframe> ⚠️ Forensic Finding: Bongbonger creates mutex objects named “Global\BongMutex_4A3F” and drops payloads in %AppData%\Local\Temp\~bbg_ Infection Chain Dropper executes installer_update.exe (SHA256:…
Information About Holahupa.com Last Tuesday morning, while analyzing client systems at our cybersecurity lab, we encountered Holahupa.com displaying persistent pop-ups in Chrome . This adware typically spreads through cracked PDF converters we’ve seen on torrent sites like TPB-mirror[.]xyz. Our sandbox analysis showed it creates registry entries like HKCU\Software\Holahupa\ and connects to C2 servers at 185.130.104[.]163:443….
POGIEING.CO.IN POGIEING.CO.IN is a malicious computer virus which pushes spam ads and fake notifications scam people. POGIEING.CO.IN virus usually spreads over the internet by means of junk email attachments, pornographic websites, gambling websites, torrents and various free applications. Therefore, you have to be very careful when surfing the web. Once your machine is infected by…
Trojan:Win32/Vigorf Author’s Note (17-Feb, 2025): While analyzing a client’s compromised Windows 10 workstation last week, I stumbled upon Trojan:Win32/Vigorf hiding behind a fake Adobe Flash update installer (“flash_helper_v12.exe”). This firsthand encounter inspired me to document its behavior and share removal steps I personally validated in my lab. Trojan:Win32/Vigorf is a dangerous Trojan infection spreading through:…
Pe32s ransomware Virus Introduction Pe32s ransomware belongs to data encryption ransomware family which is created by the criminal hackers. This horrible virus can access to computer system without asking for any permission. Commonly, Pe32s ransomware is spread through some third party websites, spam email attachments and infected program. Once installed, Pe32s ransomware can lock up…
