lewsheaned[.]club is an untrusted website that promotes other sites of this kind or loads dubious content. There are many web pages similar to lewsheaned[.]club including, for example, directbase[.]ru, yourtopnews[.]com and news-back[.]net. Most users do not visit these sites intentionally - they
AnalyzerSource functions as adware and a browser hijacker. I.e., it serves advertisements and changes certain browser settings to promote a fake search engine. Apps such as AnalyzerSource collect browsing-related and other data. Typically, users download and install these apps inadvertently and
DominantMapper is an adware-type app with browser hijacker characteristics. Therefore, following successful installation, it delivers intrusive advertisement campaigns and makes alterations to browser settings in order to promote fake search engines. Additionally, most adware-type apps and brows
Bird Miner is malicious software that uses computer resources to mine cryptocurrency via emulation. Research shows that it runs two miners and, therefore, it consumes extensive resources. Cyber criminals distribute Bird Miner using an installer for a 'cracked' (pirated) version of ValhallaVintag
Discovered by Jakub Kroustek, FLYU is a malicious program, which is part of the Dharma ransomware family. This malware is designed to encrypt data and demand payment for decryption. During the encryption process, all affected files are renamed following this pattern: original filename, unique ID
search.productivebrowser.com is the address of a fake search engine. Generally, these sites are promoted through potentially unwanted applications (PUAs) classified as browser hijackers, adware-type apps. Apps of this type promote fake search engines by changing browser settings and hijacking br
mommaskids[.]com is a rogue website designed to present visitors with dubious material and/or redirect them to other bogus or possibly malicious web pages. There are thousands of sites similar to mommaskids[.]com on the web including, for example, thedailynews.report, directbase.ru, yourtopnews.co
Moss belongs to a ransomware family called Djvu. It encrypts files, modifies their filenames by appending its extension, and creates the "_readme.txt" file (the ransom message with instructions about how to contact the developers and other details) in all folders that contain encrypted files. Mos
Searchgoose.com is the address of a fake search engine. Most fake search engines are promoted by unwanted applications that are classified as browser hijackers. Therefore, if a browser opens searchgoose.com, this indicates that a browser hijacker is installed on it. Most users download and insta
Covid is malicious software classified as a 'stealer'. As the classification implies, this malware steals information. Stealers can employ various functionality to stealthily obtain data from infected systems. This Covid malware is highly dangerous, and thus infections must be eliminated immediate