Yuqhf is a piece of malicious software classified as ransomware. It is designed to encrypt data (render files inaccessible) and demand payment for the decryption. Affected files are appended with a character string and the ".yuqhf" extension. For example, a file like "1.jpg" would appear as somet
Joaglouwulin[.]com asks for permission to show notifications and promotes dubious websites. There are lots of pages like joaglouwulin[.]com (for example, tionalmorei[.]online, acefarlessc[.]online, erewasnos[.]xyz). These pages are promoted via shady ads, questionable websites, and potentially unw
MP3Converter is a questionable application that is supposed to download videos from YouTube, Facebook and convert YouTube videos to MP3 or MP4 files. It is worth mentioning that it is illegal to download or copy content posted on YouTube without permission. MP3Converter may be monetized by
Tionalmorei[.]online is a rogue website, sharing similarities with expensivesurvey.live, offersworld4u.online, onemacusa.com, and thousands of others. It operates by presenting visitors with dubious content and/or redirecting them to different (likely unreliable or malicious) pages. Most users ar
Yandex is the name of a ransomware-type program. It encrypts data (renders files unusable) and demands payment for the decryption. Affected files are appended with a ".yandex" extension. For example, a file named "1.jpg" would appear as "1.jpg.yandex", "2.jpg" as "2.jpg.yandex", etc. Once this pr
Acefarlessc[.]online uses a clickbait technique to get permission to show notifications and opens shady websites. It is promoted through untrustworthy advertisements, questionable pages, and (or) potentially unwanted applications (PUAs). Acefarlessc[.]online displays a message encouraging
Invert is the name of ransomware that encrypts files and appends the ".fun" extension to their filenames. For example, a file named "1.jpg" gets renamed to "1.jpg.fun", "2.jpg" to "2.jpg.fun", and so on. Invert displays a pop-up window as its ransom note. Screenshot of a message encouraging us
Numando is a banking trojan written in the Delphi programming language. As the malicious program's classification implies, it is designed to steal banking information. Numando primarily targets Brazil, with seldom campaigns occurring in Mexico and Spain. Numando operates by displaying over
Erewasnos[.]xyz displays a fake CAPTCHA to trick visitors into agreeing to receive notifications and opens other untrustworthy sites. Erewasnos[.]xyz is pretty similar to expensivesurvey[.]live, offersworld4u[.]online, onemacusa[.]com, and many more. Users do not visit websites of this type on pur
Spydr is the name of ransomware that is a variant of another ransomware called Babuk. Spydr encrypts files and provides a ransom note (creates the "RESTORE FILES.txt" file). It also renames encrypted files by appending the ".spydr" extension. For example, it renames "1.jpg" to "1.jpg.spydr", "2.jp