"Killer's IP Address" is a scam run on deceptive websites. This type of scheme is classified as a technical support scam. Typically, they inform users of threats detected on their devices and offer tech support services. "Killer's IP Address" specifically states that the system has been infected w
NetworkHelper is a potentially unwanted application (PUA) that functions not only as an adware-type app but also as a browser hijacker. It serves advertisements and promotes a fake search engine address. Additionally, it is capable of accessing sensitive information. NetworkHelper is classified
Discovered by malware researcher S!Ri, Howareyou is a ransomware-type malicious program. Systems infected with Howareyou have their data encrypted and users receive ransom demands for decryption. During the encryption process, all compromised files are appended with the ".howareyou" extension. Fo
StandardMethod is a rogue application categorized as adware. This app also has browser hijacker characteristics. It operates by running intrusive advertisement campaigns and making modifications to browser settings to promote fake search engines. Additionally, adware and browser hijackers have
Sext was discovered by Marcelo Rivero and is identical to other ransomware-type programs called Connect and Bondy. Sext encrypts and renames files, and creates the "HELP_DECRYPT_YOUR_FILES.txt" text file/ransom message in all folders that contain encrypted files. For example, "1.jpg" is renamed to
Adware serves advertisements, however, RemoteAlgorithm also functions as a browser hijacker - it changes certain browser settings so that users are forced to visit the address of a fake search engine. Additionally, RemoteAlgorithm can read sensitive information from websites. Typically, users
rchesasider[.]top is a rogue website designed to present visitors with dubious content and/or redirect them to other untrusted or even malicious pages. The internet is full of similar sites, including pectionexa.top, mylot.com, undertain.work and finvesterns.work to list just some examples. Users
pectionexa[.]top is one of many websites that users often visit unintentionally. These web pages are promoted by various potentially unwanted applications (PUAs). Note that PUAs also serve ads and gather data. They are classified as PUAs because, in most cases, users download and install them inad
FLAMINGO is a ransomware-type program. Systems infected with this malware experience data encryption and users receive ransom demands for decryption. When FLAMINGO encrypts, all affected files are renamed following this pattern: "[developer_email][ID=victim_ID]original_filename.FLAMINGO". For exa
EQSearch promotes searcheq.com, the address of a fake search engine. Like most browser hijackers, it achieves this by changing certain browser settings. Commonly, these apps monitor and record details relating to users' browsing habits. Typically, people download and install browser hijackers ina