Users are often forced to visit pushmoder[.]com, since these sites are opened by potentially unwanted applications (PUAs), which people have installed onto their browsers and/or computers inadvertently. Commonly, PUAs serve ads and collect data. They are classified as PUAs because users do not dow
Sharing many similarities with espublicaldru.info, doswinuba.com, vildq.com and thousands of others, critical-alert[.]info is a rogue website. Visitors are presented with dubious content and/or are redirected to other dubious or possibly malicious pages. Few users access these web pages intention
WebNewSearch is a potentially unwanted application (PUA), which functions as adware and a browser hijacker: it serves advertisements and promotes the address of a fake search engine. Additionally, it might be designed to collect data. Apps like WebNewSearch are classified as PUAs because, in mos
Easy2Lock prevents victims from accessing/using their files by encryption, renames the files, and creates a ransom message for each encrypted file. It renames files by appending the ".easy2lock" extension. For example, "1.jpg" is renamed to "1.jpg.easy2lock", "2.jpg" to "2.jpg.easy2lock", and so o
Discovered by Michael Gillespie, MadDog is a ransomware-type malicious program. It is based on the Hidden Tear (HiddenTear) open-source project. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption. When MadDog encrypts, all affected files a
Generally, users do not visit pages such as espublicaldru[.]info intentionally - they are opened by browsers that have potentially unwanted applications (PUAs) installed on them. PUAs are designed to open sites such as espublicaldru[.]info, serve advertisements, and collect data. They are classif
Efji is ransomware-type malware belonging to the Djvu ransomware family. Efji encrypts files, changes their filenames by appending its extension, and creates the "_readme.txt" file in folders that contain encrypted data. Efji appends the ".efji" extension to files. For example, "1.jpg" is renamed
Erica Encoder is one of many ransomware-type programs. It encrypts data, renames each encrypted file and creates a ransom message. Names of all encrypted files are changed to a string of random characters. For example, "1.jpg" might appear similar to "R29vZ24lIENocm9tZS5s3ms9.qgazlb". Erica Encod
vildq[.]com is an untrusted website, which shares many similarities with oritychiev.top, ritishdeliv.top, a1-nerdhut.com, belighterservice.com and thousands of others. The site presents visitors with dubious content and/or redirects them to other untrusted or possibly malicious web pages. Few use
Generally, users do not visit these websites intentionally - they are force-opened by potentially unwanted applications (PUAs) installed on browsers. These rogue apps also serve ads and collect data. They are classified as PUAs, since, in most cases, users download and install them inadvertently.