Ambrosia is a part of the Scarab ransomware family and was discovered by xiaopao. Like most malicious programs of this type, Ambrosia encrypts files, modifies their filenames and creates a ransom message. It renames encrypted files by changing their filenames to a string of random characters and a
z6airr.com is a fake search engine. Rogue search tools such as z6airr.com are usually promoted by software classified as browser hijackers. They promote these search engines by making modifications to browser settings and restricting/denying access to them. Additionally, browser hijackers and b
Discovered by Jakub Kroustek, Xati belongs to a family of ransomware called Dharma. It encrypts files, modifies their filenames, displays a ransom message in a pop-up window and creates another in a text file called "FILES ENCRYPTED.txt". Xati renames files by adding the victim's ID, xatixxatix@ma
Photo Viewer Free, also known as PhotoViewerFree, is a rogue application. Following successful installation, it runs intrusive advertisement campaigns (i.e. delivers intrusive, unwanted and possibly harmful ads). Therefore, Photo Viewer Free is classified as adware. Additionally, most adware-ty
ConnectedAnalog is designed to operate as adware and a browser hijacker - it feeds users with ads and changes some of the browser's settings to an address of a fake search engine. Research shows that this app is designed to promote the 0yrvtrh.com address. Another problem with apps like Connect
AccessibleBoost is an adware-type application with browser hijacker traits. It runs intrusive advertisement campaigns, makes modifications to browser settings and promotes a fake search engine. AccessibleBoost promotes z6airr.com in this manner. AccessibleBoost monitors browsing activity - mos
Discovered by Jakub Kroustek, GET is a part of the Dharma ransomware family. Typically, malware of this type encrypts files, renames them and displays (and/or creates) a ransom message. GET renames encrypted files by adding the victim's ID, the getscoin2@protonmail.com email address and appending
Oonn is malicious software and part of the Djvu ransomware family. This malware is designed to encrypt data and demand payment for decryption tools. During the encryption process, all compromised files are appended with the ".oonn" extension. For example, a file such as "1.jpg" would appear as "1.
Access TV Streaming is rogue software advertised as a tool for easy access to TV streaming websites. It operates by making modifications to browser settings to promote haccesstvstreaming.com (a bogus search engine). Access TV Streaming also has data tracking capabilities, which are employed to mon
Zes is a ransomware-type malicious program designed to encrypt data and demand payment for decryption. During the encryption process, all affected files are renamed according to this pattern: original filename, unique ID, cyber criminals' email address and the ".zes" extension. For example, a fil