easymedia2[.]com is a rogue website designed to load dubious content or open a number of other rogue web pages. Other examples of websites of this type include newsbreak[.]com, daystream[.]club and gubudakis[.]com. Typically, people do not visit these sites intentionally - they are opened by brows
Flash App+ is a browser hijacker that changes browser settings to promote searchpowerapp.com (a bogus search engine). Additionally, Flash App+ has data tracking capabilities, which are employed to monitor and record browsing-related information. Due to the dubious methods used to proliferate this
ShadowTechRAT is a Remote Access Trojan (RAT). Cyber criminals proliferate programs of this type to remotely access and/or control infected computers. I.e., to infect systems with other high-risk malware, steal personal/confidential information, and so on. Typically, RATs are difficult to detect,
First discovered by Jirehlov, The Cursed Murderer is the name of a malicious program classified as ransomware. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption tools/software. During the encryption process, all affected files are appended
Fun APP is one of many potentially unwanted applications (PUAs) that are classified as browser hijackers. Apps of this type usually promote the address of a fake search engine by changing browser settings and gathering browsing data. Fun APP promotes searchnewworld.com in this way. people do not u
xscx.xyz is a fake search engine, which is promoted through a potentially unwanted application (PUA), a browser hijacker called Smash App+ (or SApp+). It might also be promoted through other browser hijackers. Generally, apps of this type promote fake search engines by changing certain browser set
Discovered by Michael Gillespie, Repp is a malicious program and part of the STOP/Djvu ransomware family. This rogue software is designed to encrypt the data of an infected system and demand payment for decryption. When Repp ransomware encrypts, files are appended with the ".repp" extension. For
Discovered by Michael Gillespie, Alka is one of many ransomware-type programs that belong to the Djvu family. Alka encrypts files and appends the ".alka" extension to filenames. For example, it renames "1.jpg" to "1.jpg.alka", and so on. It also creates a ransom message within a text file named "_
newsbreak[.]com is a rogue site sharing many similarities with daystream.club, gubudakis.com, brotherenuryc.pro and countless others. It generates redirects to other untrusted/malicious web pages and presents visitors with dubious content. Most users enter newsbreak[.]com and similar pages via re
Discovered by GrujaRS, Mailto (also known as NetWalker) is malicious software and an updated version of Kokoklock ransomware. Mailto encrypts files, thereby rendering them unusable. The program encrypts data and renames files with the developer's email address and an extension comprising the victi