VuLiCaPs is a malicious program belonging to the Xorist ransomware family. It is designed to encrypt data and demand payment for decryption. During the encryption process, files are appended with the ".VuLiCaPs" extension. For example, a file originally named something like "1.jpg" would appear as
CoordinatorBoost serves advertisements, collects sensitive information and promotes the z6airr.com and adjustablesample.com fake search engines. This app functions as adware and a browser hijacker. Typically, users download and install apps of this type inadvertently and, for this reason, they a
ExtendedLibrary is an adware-type application with browser hijacker characteristics. This app delivers intrusive advertisements and makes modifications to browsers to promote bogus search engines. Additionally, most adware-type apps and browser hijackers collect browsing-related information. Du
Npph is ransomware belonging to the Djvu ransomware family. It encrypts files, modifies their filenames and creates a ransom message. Note that Npph renames files by appending the ".npph" extension to filenames. For example, it would rename "1.jpg" to "1.jpg.npph", "2.jpg" to "2.jpg.npph", and so
Criminals behind this scam website attempt to trick visitors into transferring a sum of Bitcoins to them by offering to return ten times the amount to the provided BTC wallet address. Websites of this type (money-swindling schemes) should never be trusted. Note that most users do not visit these
pro-web[.]net is one of many untrusted web pages that open other websites of this kind or load dubious content. It is similar to xrclicks[.]xyz, cachenews[.]biz, lastmedias[.]biz and many others. These sites are often opened by web browsers that have potentially unwanted applications (PUAs) instal
Discovered by xiaopao, Chuk is a malicious program belonging to the Dharma ransomware family. Systems infected with this malware experience data encryption and users receive ransom demands for decryption. During the encryption process, files are renamed following this pattern: original filename,
search.standartanalog.com is a fake search engine. These bogus search tools are usually promoted by browser hijackers. Note that search.standartanalog.com is promoted by adware-type software with browser hijacker traits (e.g. ExtendedProcesser). Fake search engines typically have data tracking c
ExtendedProcesser functions as a browser hijacker and adware. Depending on the browser, it changes certain browser settings to 0yrvtrh.com or search.standartanalog.com (the address of a fake search engine) and serves various advertisements. It can also access (collect) sensitive information. Co
xrclicks[.]xyz displays dubious content or opens other untrusted websites. There are many pages similar to xrclicks[.]xyz including, for example, cachenews[.]biz, lastmedias[.]biz and vinphone[.]xyz. Commonly, they are opened by installed potentially unwanted applications (PUAs). These apps often