Discovered by malware researcher S!Ri, Sivo is a malicious program categorized as ransomware. It is designed to encrypt data and demand ransom payments for decryption tools/software. When Sivo encrypts, all compromised files are appended with the ".sivo" extension. For example, a file named "1.jp
yeus.xyz is one of many fake search engines, typically promoted through potentially unwanted applications (PUAs), which are also classified as browser hijackers. Research shows that yeus.xyz is promoted through at least two PUAs: CERX and Dorss APP. CERX is related to QIP, another browser hijacke
Similar to lifeimpressions.net, lodder1.biz, skolk.pro and many others, sms-mail-message[.]com is a rogue webpage. Visitors to it are presented with dubious content and/or are redirected to other untrustworthy and malicious sites. Few visitors to sms-mail-message[.]com enter it intentionally, mos
fastnewstream[.]com is the address of a rogue website, which redirects visitors to other untrustworthy sites or presents dubious content. There are many other websites similar to fastnewstream[.]com including, for example, lifeimpressions[.]net, lodder1[.]biz and skolk[.]pro. Typically, browsers
Gamers Buddy is a rogue application advertised as a tool for quick access to various online games, gaming platforms, game retailers and more. In fact, this app operates as a browser hijacker - it modifies browsers and promotes a fake search engine (search.gamersbuddyapptab.com). Additionally, Gam
The Online TV Streams app is advertised as providing quick access to various TV streaming websites, however, it is categorized as a browser hijacker, a potentially unwanted application (PUA), since it promotes a fake search engine (search.onlinetvstreamsapptab.com) by changing browser settings. A
Discovered by malware researcher S!Ri, Horsedeal is a malicious program classified as ransomware. Systems infected with Horsedeal suffer data encryption and ransom demands are then issued for recovery of files. During encryption, all affected files are appended with the ".horsedeal" extension. Fo
QuickBooks is legitimate accounting software developed by Intuit, however, this company has nothing to do with this email/spam campaign. Scammers commonly disguise their emails as messages from legitimate or well-known companies, using their names and the names of associated products, services, an
ReachChoice supposedly improves the browsing experience, however, this app is categorized as adware. Therefore, users are served with various intrusive advertisements. Apps such as ReachChoice are also categorized as potentially unwanted applications (PUAs), since people tend to download and in
Maps & Driving Directions supposedly provides quick access to various maps, however, this app promotes search.mapsanddrivingdirectionstab.com (a fake search engine) by changing browser settings. Apps of this type are browser hijackers, since most change settings and gather browsing data. Brow