The main purpose of the IncognitoSearchNet browser hijacker is to force users to visit incognitosearchnet.com (a fake search engine). Like most apps of this type, it promotes the bogus address by modifying certain browser settings. IncognitoSearchNet also collects details relating to users' browsi
Global-support[.]space (apple.global-support[.]space) is a deceptive website designed to promote scams. At the time of research, this site ran a scheme targeting iPhone users, yet the web page might be accessed on other Apple devices as well. This scam claims that users' iPhones have been infec
Commonly, browsers open websites such as tutupdate29[.]com when they have potentially unwanted applications (PUAs) installed on them. I.e., users do not often visit these pages intentionally. Note tutupdate29[.]com (and similar sites) are also promoted via other dubious web pages and advertisement
UpgradeCommand is designed to serve ads (like most adware-type apps) and promote a fake search engine. Therefore, UpgradeCommand functions both as adware and a browser hijacker. It is also likely to gather information relating to users' browsing habits and other data. Users often download and i
rarbg[.]to is a P2P (Peer-to-Peer) sharing website, which allows users to share content via Torrent files. As well as infringing copyright laws, this site also employs rogue advertising networks. Therefore, visitors to this web page are redirected to various other dubious and possibly malicious we
Nusmash is a browser hijacker that promotes nusmash.com, the address of a fake search engine. Generally, apps of this type promote fake search engines by modifying certain browser settings. Additionally, they can gather various browsing-related information. Users often download and install browse
Discovered by Petrovic, LAZPARKING is malicious software categorized as ransomware. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption. During the encryption process, all affected files are appended with the ".LAZPARKING-[random_string]" ex
Garbage Cleaner is an untrustworthy application and a new variant/updated version of G-Cleaner. It is endorsed as a tool for cleaning operating systems (i.e. removing junk files and other unnecessary content), however, due to the dubious methods used to proliferate Garbage Cleaner, it is also clas
Since Hmmmmm is classified as ransomware, it encrypts files, modifies their filenames and generates a ransom message. It renames encrypted files by adding the aser51a0@mailfence.com email address, victim's ID, and appends the ".hmmmmm" extension. For example, "1.jpg" is renamed to "1.jpg.[ASer51a
OnlinePDFConverterSearch is a browser hijacker. Following successful installation, it makes alterations to browser settings to promote onlinepdfconvertersearch.com (a fake search engine). Furthermore, OnlinePDFConverterSearch has data tracking capabilities, which are employed to monitor users' bro