Like most browser hijackers, Muti-webtool promotes a fake search engine address. Additionally, it collects browsing data. Typically, users do not download or install browser hijackers intentionally. Therefore, Muti-webtool is categorized as potentially unwanted application (PUA). Muti-webtoo
NocryCrypt0r was discovered by xiaopao. This ransomware encrypts files, changes their extensions and creates a ransom message. It renames files by appending ".partially.nocry" as the new extension. For example, "1.jpg" is renamed to "1.jpg.partially.nocry", "2.jpg" to "2.jpg.partially.nocry", and
PowerMyMac is advertised as a tool that optimizes and cleans Mac computers, however, this app is proliferated using dubious methods, which increases the chance that users will download and install it inadvertently. For this reason PowerMyMac is categorized as a potentially unwanted application (
Dex ransomware belongs to the Dharma family. It encrypts victims' files, renames each encrypted file, displays a pop-up window, and creates the "FILES ENCRYPTED.txt" text file. The pop-up and text file contain instructions about how to contact the ransomware developers. Dex renames files by addin
RequestPlan is designed to function as an adware-type application and a browser hijacker. Therefore, it serves advertisements and promotes a fake search engine address by making changes to certain browser settings. This app can also read sensitive information from browsers that have this app ins
Belonging to the Djvu ransomware family, Sglh encrypts files and renames them by appending the ".sglh" extension to filenames. For example, "1.jpg" is renamed to "1.jpg.sglh", "2.jpg" to "2.jpg.sglh", and so on. Like most programs of this type, Sglh creates a ransom message (in this case, within
TopSportsSearch is rogue software classified as a browser hijacker. Following successful installation, it makes modifications to browser settings to promote topsportssearch.com (a bogus search engine). Additionally, TopSportsSearch collects browsing-related information. Due to the dubious techniq
Hidden is a malicious program belonging to the Voidcrypt ransomware family. It operates by encrypting data and demanding ransoms for decryption tools. During the encryption process, all affected files are renamed following this pattern: original filename, cyber criminals' email address, unique ID
R2block was discovered by xiaopao. In most cases, ransomware is designed to encrypt files, rename them, and generate ransom messages. R2block renames encrypted files by appending the ".r2block" extension. For example, "1.jpg" is renamed to "1.jpg.r2block", "2.jpg" to "2.jpg.r2block", and so on. I
Dpr is a malicious program and part of the VoidCrypt ransomware family. Systems infected with this malware experience data encryption and users receive ransom demands for decryption tools. During the encryption process, all compromised files are renamed following this pattern: original filename,