extrasafe[.]xyz is a deceptive website, the main purpose of which is to trick visitors into downloading and installing a potentially unwanted application (PUA). The app is apparently capable of removing viruses that this website has supposedly detected. Commonly, pages such as extrasafe[.]xyz a
SearchSeries is rogue software which modifies browser settings to promote search-series.com (a bogus search engine). Therefore, it is classified as a browser hijacker. Additionally, SearchSeries has data tracking capabilities, which are employed to gather browsing-related information. Since most
Discovered by Amigo-A, LickyAgent ransomware encrypts victims' files, modifies their filenames and creates ransom messages. It renames files by appending a random extension. For example, ".dMQDF" (it would then rename "1.jpg" to "1.jpg.dMQDF", "2.jpg" to "2.jpg.dMQDF", etc.). It also drops the "[
Zwer is malicious software belonging to the Djvu ransomware family. This malware is designed to encrypt the data of infected systems in order to demand ransoms for decryption tools. During the encryption process, files are appended with the ".zwer" extension. Therefore, a file named something lik
WCH was discovered by Jakub Kroustek. This malware belongs to the Dharma ransomware family. Like many other programs of this type, WCH is designed to encrypt files, modify their filenames and create a ransom message. It renames encrypted files by adding the victim's ID, wecanhelpu@tuta.io email ad
SearchNetLetter is a rogue application classified as adware and possessing browser hijacker characteristics. It operates by running intrusive advertisement campaigns, making modifications to browser settings, and promoting fake search engines. Additionally, most adware infections and browser hi
SmartQuestSearch is classified as a browser hijacker and an adware-type app. It is designed to promote a fake search engine by modifying browser settings and displaying advertisements. Users often download and install these apps unintentionally and, therefore, they are categorized as potentially
Discovered by Jakub Kroustek, Club is a malicious program belonging to the Dharma ransomware family. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption. During the encryption process, all affected files are renamed following this pattern:
Wowsearch hijacks browsers by changing certain browser settings to search.wowsearch.net (the address of a fake search engine). Commonly, apps of this type track and record information relating to users' browsing habits, and other details. People often download and install browser hijackers inadve
BBC is a malicious program belonging to the Phobos ransomware family. This malware operates by encrypting the data of infected systems in order to demand ransom payments for decryption. During the encryption process, all affected files are renamed according to this pattern: original filename, uni