VaPo is a type of malware that prevents victims from accessing their files by encryption. It also changes the desktop wallpaper, creates the "HOW TO DECRYPT FILES.txt" files in folders that contain encrypted files, and displays a pop-up window. All three contain messages demanding a ransom to rest
The internet is full of untrusted websites, including settings-chrome[.]com, which shares many similarities with thehypenewz.com, lcutterlyba.top, thehypenewz.com, and countless others. Visitors to these sites are presented with dubious content and/or are redirected to other bogus and malicious we
newsfeedscroller[.]com is an untrusted website: it promotes other bogus web pages and contains deceptive, dubious content. These site are not often visited by people intentionally - they are opened after clicking deceptive ads, through other untrusted web pages, or by potentially unwanted applica
ExploreActivity is classified as a potentially unwanted application (PUA) because of the method employed for distribution: via a fake installer for Adobe Flash Player. Note that users do not often download/install ExploreActivity or similar apps intentionally. The main purpose of ExploreActivit
JCleaner is a potentially unwanted application (PUA) with an identical name as a cleaner/system optimizer from Vitsoft. PUAs are often bundled with other software by including them with downloaders and installers as "extra offers". These programs are classified as potentially unwanted, since user
arenabg[.]ch is the address of a Peer-to-Peer sharing website. It invites users to download pirated software and media via Torrent files. As well as infringing copyright laws, this site uses rogue advertising networks. Visitors to websites that employ this monetization technique are redirected to
Txziyp is a type of malware that makes files inaccessible by encryption and keeps them unusable until a ransom is paid. It also renames each encrypted file by appending the ".txziyp" extension to filenames. For example, "1.jpg" is renamed to "1.jpg.txziyp", "2.jpg" to "2.jpg.txziyp", and so on.
VideoBoxApp is described by its developer as a high-quality standard video player. The problem with this app is that it is distributed using a fake Adobe Flash Player installer. Therefore, there is a significant chance that users will be unaware of how this app was installed. Apps that users do
SystemMonitor is a rogue piece of software classified as adware. It operates by running intrusive advertisement campaigns and causing redirects to untrustworthy/malicious websites. Furthermore, it adds the "Managed by your organization" feature to Google Chrome browsers. SystemMonitor collects br
Paralock is a new variant of Parasite ransomware. It operates by locking data, rendering it inaccessible for victims, and demands a ransom payment to restore access. This is the modus operandi of ransomware: file encryption for the purpose of demanding payment for decryption tools. When this mali