EveRed is designed to encrypt files and append the ".evered" extension to their filenames. Its main purpose is to keep files inaccessible until victims pay a ransom/purchase a decryption tool. EveRed creates a text file ("readme.txt") to provide contact and payment information. It also changes the
Karma ransomware blocks access to files by encrypting them. Also, it renames all affected files by appending the ".KARMA" extension to their filenames and creates a ransom note (the "KARMA-ENCRYPTED.txt" text file). For example, Karma renames a file named "1.jpg" to "1.jpg.KARMA", "2.jpg" to "2.jp
AboutExtended displays advertisements and changes web browser's settings to promote a fake search engine. It has the qualities of adware and a browser hijacker. Users download and install apps of this kind inadvertently. Therefore, AboutExtended and similar apps fall into the category of potenti
Speed Check is supposed to check the speed of websites. Although, it is known that this program functions as adware (it displays advertisements) and can read, and change data on visited websites. Speed Check is promoted on a dubious website. Therefore, it is categorized as a potentially unwanted a
Poison is the name of malware designed to encrypt files, append the ".poison" extension to their filenames, and display a pop-up window and the "___RECOVER__FILES__.poison.txt" file containing a ransom note. For instance, it renames a file named "1.jpg" to "1.jpg.poison", "2.jpg" to "2.jpg.poison"
Landingpagesecure[.]com is a website promoting various scams. At the time of research, this page ran a scam claiming that visitors' Apple mobile devices had been infected. Most schemes of this type aim to endorse untrustworthy software, e.g., fake anti-viruses, adware, browser hijackers, and ot
Sharing similarities with ositieonthat.space, news-hoyisa.cc, emoxan.xyz, and many others, captcha-smart[.]top is a rogue site. It is designed to present visitors with dubious content and/or redirect them to different (likely unreliable or malicious) webpages. Users typically enter rogue sites vi
The purpose of uboungera[.]com is to get permission to show notifications and promote questionable websites. There are hundreds of pages like uboungera[.]com, for example, yarriedstron[.]xyz, news-hoyisa[.]cc, and stream-best-vid[.]com. Uboungera[.]com asks for permission to show notificat
Yverworkedt[.]xyz uses a clickbait technique to get permission to show notifications and promotes shady websites. It is uncommon for pages like yverworkedt[.]xyz to be visited on purpose. Most of them are promoted through potentially unwanted apps (PUAs), dubious ads, other shady pages. Yv
Ositieonthat[.]space is a rogue website sharing common traits with news-hoyisa.cc, financesurvey24.top, aclientirethe.xyz, and countless others. It is designed to host dubious content and/or redirect visitors to various (typically, unreliable or malicious) sites. Rogue webpages are seldom accesse