Discovered by Michael Gillespie, Cetori is a high-risk ransomware-type infection that belongs to the Djvu family. After successful infiltration, Cetori encrypts most stored files and appends filenames with the ".cetori" extension (e.g., "sample.jpg" becomes "sample.jpg.cetori"). Once encryption i
PreApp is a browser hijacker, a potentially unwanted application (PUA), however, developers claims that it helps to browse the web more efficiently. Typically, browser hijackers change browser settings, thereby promoting fake search engines. In this case, PreApp promotes searchnewworld.com. Befor
The Internet is full of rogue websites and rembrandium[.]com is one of them. It shares many similarities with lesindingretne.info, dredrewlaha.info, getmedia.me and others. Designed to cause redirects to unreliable and possibly malicious content, it also present users with likewise dangerous conte
Live Radio Now supposedly provides quick links to popular online radio stations. Unfortunately, this app is a browser hijacker that changes browser settings to promote a dubious (fake) search engine (search.hliveradionow.com) and collects various user-system data. Live Radio Now is also known as
Shark PC Protector software supposedly scans computers for various threats in real-time, provides real-time protection, a firewall, browsing protection, and an 'on request' scan. This may seem to be a useful tool to protect your computer from potential dangers, however, Shark PC Protector is a po
Push4free[.]com is a dubious website, akin to dredrewlaha.info, newsfrog.me, goodmedia.me and countless others. It operates by redirecting to untrustworthy/dangerous sites and presenting users with highly suspect, potentially malicious content. It should be mentioned that it is rarely accessed int
Identical to Quick Local Weather, Your Email Simplified, Get Free Translations, and many others, Maps Utility is a rogue application that supposedly provides GPS-related functionality. Its appearance suggests that Maps Utility is a legitimate and useful application, however, it is categorized as
Newsredir[.]com is a rogue website, one of many thousands out there. Sharing similarities with clckworld.club, loteron.com, ciessimple.pro and countless others. It causes unauthorized redirects and forces visitors to consume highly unreliable/malicious content. It should be known that users rarel
Like most ransomware-type programs, Viagra is designed to encrypt files (in this case, using AES-256 and RSA-4096 encryption algorithms) and deny access to them unless a ransom is paid. It also creates an HTML file named "README-VIAGRA-E3m7Zwvk.HTML", which contains instructions about how to decry
There are many rogue websites similar to newsmode[.]me. Other examples include naneso[.]com, vakogid[.]com, and ciessimple[.]pro. Typically, these web pages cause unwanted redirects to untrustworthy, potentially malicious sites or display suspicious content. People do not generally visit sites su