InitialProgram is untrusted software classified as adware, which also has browser hijacker traits. Following successful infiltration, this application delivers intrusive advertisement campaigns (resulting in various unwanted ads) and makes changes to browser settings to promote bogus search engi
Dexx is malicious software and part of the Dharma ransomware group. It operates by encrypting data and demanding payment for decryption. When Dexx ransomware encrypts, it renames files following this pattern: original filename, unique ID assigned to the victims, cyber criminals' email address, and
Typically, users do not often visit addresses such as freshnewmessage[.]com intentionally, they are opened after deceptive ads are clicked or other bogus websites are visited. These sites are also opened when potentially unwanted applications (PUAs) are installed on browsers and/or operating syste
ElementaryType is an adware-type app with browser hijacker characteristics. This piece of rogue software operates by running intrusive advertisement campaigns and making alterations to browser settings to promote fake search engines. Additionally, adware and browser hijackers usually collect br
ActivityElement displays advertisements and changes browser settings. Therefore, this app functions as adware and a browser hijacker. These apps often gather information relating to users' browsing habits and other data. In most cases, users download and install apps like ActivityElement inadve
Snake is a malicious program classified as a keylogger. As the classification implies, the primary function of this malware is keylogging. Therefore, Snake infections pose a threat to the privacy/safety of all typed information. Snake malware's main feature is keylogging (records key strok
pointcaptchaspot[.]com is a rogue website, which redirects visitors to other untrusted/malicious sites and presents them with dubious content. Check-me.online, holanews.biz, suggestive.com are just some examples of web pages similar to pointcaptchaspot[.]com. Users seldom access these websites in
SUMMON encrypts victim's files, renames them, and displays a ransom message ("#ReadThis.HTA"). It renames each encrypted file by prepending the summonunlock@gmail.com email address, victim's ID, and appending the ".SUMMON" extension to the filename. For example, "1.jpg" is renamed to "[SummonunLo
The PDFConverterSearchHD browser hijacker changes certain browser settings to promote a fake search engine (pdfconvertersearchhd.com). It can also read information relating to users' browsing activities. Browser hijackers are often downloaded and installed by users unintentionally and, therefore,
StreamSiteSearch is a browser hijacker. It operates by making modifications to browsers to promote streamssitesearch.com (a bogus search engine). Additionally, StreamSiteSearch monitors users' browsing activity. Due to the dubious methods used to proliferate this browser hijacker, it is also clas