Developers present betterfind.me as an improved Internet search engine that supposedly enhances the browsing experience by generating improved results. Judging on appearance alone, betterfind.me may seem legitimate and useful, however, developers promote this site by employing various download/in
Maxwebsearch.com is a search engine which is distributed through a potentially unwanted application (PUA), a browser hijacker. Typically, apps of this type promote fake search engines. They promote them by changing certain browser's settings. It is common that browser hijackers not only modify se
Zyklon is ransomware that infiltrates victims' computers and encrypts various files using AES 256 - an asymmetric encryption algorithm, which generates two keys (public to encrypt and private to decrypt). It is impossible to restore encrypted files without the private key and, therefore, developer
Shifr is a ransomware-type virus written in the Google Go programming language. This malware was first discovered by MalwareHunterTeam. Once infiltrated, Shifr encrypts various files and appends the ".shifr" extension to the name of each encrypted file (for example, "sample.jpg" is renamed to "sa
AES-NI (full name "AES-NI Ransomware SPECIAL VERSION: NSA EXPLOIT EDITION", named after the recent NSA exploit kit leak) is a ransomware-type virus that stealthily infiltrates systems and encrypts files using AES-256 and RSA-2048 cryptoraphies. During encryption, AES-NI appends filenames with the
First discovered by malware security researcher Marcelo Rivero, ATLAS is an updated version of CHIP ransomware. Following successful infiltration, ATLAS encrypts files using RSA cryptography. During encryption, this malware appends the ".ATLAS" extension to the name of each compromised file (for
Cradle is a ransomware-type virus discovered by malware security researcher, Michael Gillespie. Once infiltrated, Cradle encrypts various files and appends the ".cradle" extension to the name of each encrypted file. For instance, "sample.jpg" is renamed to "sample.jpg.cradle". Following successfu
Philadelphia is an updated version of the Stampado ransomware-type virus. It is distributed via phishing email messages that contain a fake overdue payment notice. These messages, however, often include links to Philadelphia's websites, which contain a Java application that downloads the ransomwar
The MyStart toolbar browser add-on is developed by Visicom Media. This browser toolbar can be downloaded from its homepage, however, it is often 'bundled' with free software downloaded from the Internet. At time of research, this potentially unwanted application was also bundled with fake download
home.dimakadima.com is presented as an Internet search engine that supposedly enhances the browsing experience by generating improved results and by providing quick access to various popular websites. Judging on appearance alone, home.dimakadima.com may seem legitimate and useful, however, this r