StandardMethod is a rogue application categorized as adware. This app also has browser hijacker characteristics. It operates by running intrusive advertisement campaigns and making modifications to browser settings to promote fake search engines. Additionally, adware and browser hijackers have
Sext was discovered by Marcelo Rivero and is identical to other ransomware-type programs called Connect and Bondy. Sext encrypts and renames files, and creates the "HELP_DECRYPT_YOUR_FILES.txt" text file/ransom message in all folders that contain encrypted files. For example, "1.jpg" is renamed to
Adware serves advertisements, however, RemoteAlgorithm also functions as a browser hijacker - it changes certain browser settings so that users are forced to visit the address of a fake search engine. Additionally, RemoteAlgorithm can read sensitive information from websites. Typically, users
rchesasider[.]top is a rogue website designed to present visitors with dubious content and/or redirect them to other untrusted or even malicious pages. The internet is full of similar sites, including pectionexa.top, mylot.com, undertain.work and finvesterns.work to list just some examples. Users
pectionexa[.]top is one of many websites that users often visit unintentionally. These web pages are promoted by various potentially unwanted applications (PUAs). Note that PUAs also serve ads and gather data. They are classified as PUAs because, in most cases, users download and install them inad
FLAMINGO is a ransomware-type program. Systems infected with this malware experience data encryption and users receive ransom demands for decryption. When FLAMINGO encrypts, all affected files are renamed following this pattern: "[developer_email][ID=victim_ID]original_filename.FLAMINGO". For exa
EQSearch promotes searcheq.com, the address of a fake search engine. Like most browser hijackers, it achieves this by changing certain browser settings. Commonly, these apps monitor and record details relating to users' browsing habits. Typically, people download and install browser hijackers ina
Firmadatalari is a malicious program from the Scarab ransomware family. Like most ransomware-type programs, it encrypts and renames files, and creates a ransom message. Firmadatalari renames files by replacing their filenames with a string of ransom characters and appending the ".firmadatalari" ex
Spark Search is a browser hijacker which promotes tailsearch.com, a fake search engine. It can also read browsing history. Typically, users download and install browser hijackers inadvertently and, therefore, they are classified as potentially unwanted applications (PUAs). Typical browser hi
Keysite is rogue software categorized as a browser hijacker. Following successful infiltration, Keysite begins promoting keysearchs.com (a fake search engine). Browser hijackers typically promote bogus search engines by making modifications to browser settings, however, Keysite operates in this ma