PUADlManager:Win32/OfferCore is a generic detection name used by anti-virus programs like Microsoft Defender to detect bundled installers. If Defender or another anti-virus program is detecting it on your computer, it means that a program you installed had some kind of junk program (adware or a browser hijacker) attached to it as an additional offer. It doesn’t necessarily mean that your…
Noodlophile is a stealer trojan that aims to extract and steal highly sensitive information from users’ computers, including stored passwords, browser information (e.g., cookies), saved payment card details, etc. It’s a very dangerous type of infection that may stay in the background to avoid detection and steal as much information as possible. The operators of this stealer trojan are taking…
P*zdec ransomware, or .p*zdec virus, is a file-encrypting malware from the GlobeImposter ransomware family. This is a serious malware infection because it encrypts files and essentially takes them hostage. This ransomware can be identified by the .p*zdec extension added to encrypted files. Unfortunately, all files users hold host important will have this extension, as they’re the ones users are usually most…
D0glun ransomware, or .@D0glun@ virus, is a file-encrypting malware. These types of infections are designed to take users’ files hostage by encrypting them and demanding a payment for their recovery. This ransomware can be identified by the .@D0glun@[original file extension] extension. The ransomware appears to be targeting Chinese-speaking users, as the ransom note is in Chinese. If the computer does…
Black (Prince) ransomware, or .black virus, is a type of malware that encrypts files. These types of infections take files hostage by encrypting them and demanding a payment for their recovery. The ransomware targets all personal files, encrypts them, and adds the .black extension to them. The ransomware operators will offer you a decryptor, though the price is not specified. Whatever…
Cdtt ransomware, or .cdtt virus, is ransomware from the Djvu malware family. It’s a type of malware that takes users’ personal files hostage and demands payment if victims want to recover them. This specific ransomware can be identified by the .cdtt extension that gets added to all encrypted files. Unfortunately, you will not be able to open any files that…
The “Binance Airdrop” scam refers to a fake Binance airdrop hosted on claimairdrop-reflection.xyz. It goes without saying that the scam has nothing to do with Binance Holdings, the cryptocurrency exchange platform. Malicious actors are merely using the platform’s popularity to steal users’ money. The fake site invites users to claim the airdrop and asks them to connect their digital wallets. If…
revupdevice.co.in is a deceptive website that tries to trick users into allowing ads on the desktop by misusing a legitimate browser feature. The feature allows sites to request permission from users to show notifications on users’ desktops. Legitimate sites show the content they post in these notifications. It serves to allow users to quickly access new content from sites they…