Discovered by GrujaRS, Un1que is malicious software belonging to the IEncrypt ransomware family. This malware operates by encrypting the data of infected systems and making ransom demands for decryption tools/software. During the encryption process, each file is appended with the ".un1que" extensi
Get Your Obituaries Now is a potentially unwanted application (PUA), a browser hijacker which promotes search.getyourobituariesnowtab.com (the address of a fake search engine) by changing certain browser settings. In most cases, browser hijackers promote fake search engines and gather browsing dat
CU is the name of malware belonging to the Crysis/Dharma ransomware family. Systems infected with this program have data encrypted and users receive ransom demands for file decryption. When CU ransomware encrypts, all files are renamed according to the following pattern: original filename; unique
When visited, 2fatoffers[.]xyz opens untrustworthy websites or loads dubious content. There are many other rogue websites that operate in this way including, for example, younwild[.]com, zahkit[.]pro and usinesmycete[.]info. Typically, people do not open them intentionally - in most cases they a
Sharing considerable similarities with wbamedia.net, sawhitpew.site, zahkit.pro and countless others, creasonsau[.]info is a rogue website, which operates by presenting visitors with dubious content and/or redirecting them to other untrusted or malicious sites. In most cases, web pages such as cr
allow2continue[.]com is one of many rogue websites that are usually opened via other untrusted pages, deceptive ads or potentially unwanted applications (PUAs) that are installed on browsers and/or operating systems. When opened, sites such as allow2continue[.]com redirect visitors to a number of
CryptoPatronum was discovered by Amigo-A. Like most programs of this type, this ransomware is designed to block access to data by encryption. The program also changes names of all encrypted files by adding the "cryptopatronum@protonmail.com" email address and appending the ".enc" extension. For e
Similar to younwild.com, zahkit.pro, pushbestdevice.com and many others, cocketexercine[.]info is a rogue website. When opened, it presents visitors with dubious content and/or redirects them to other untrusted, malicious web pages. Most users access cocketexercine[.]info and similar websites via
EnCiPhErEd is malicious software and part of the Xorist ransomware family. This malware is designed to encrypt data and demand payment for decryption. During the encryption process, all affected files are converted into executables and their filenames are appended with the ".EnCiPhErEd" extension.
Discovered by Karsten Hahn, .com (Phobos) is a part of the Phobos ransomware family. Like many other programs of this type, .com (Phobos) encrypts victims' files, changes filenames and provides instructions about how to contact the developers (and other details) in a ransom message. It renames al