Discovered by Jakub Kroustek, BandarChor is a new variant of high-risk ransomware called CryptFile2. Once infiltrated, BandarChor encrypts most stored data, making it impossible to use. During encryption, BandarChor appends filenames with the "id-[victim's_ID]-[shivamana@seznam.cz].pip" extension.
Like most rogue websites (including seodollars.com, trkur4.com, tityx.com, etc.), notify.support redirects visitors to other untrustworthy/potentially malicious sites. Research shows that most users arrive at notify.support unintentionally - they are redirected to it by potentially unwanted appli
As with many other adware applications of this type, PQwick is promoted by offering "useful" tools/features. In fact, this app is categorized as a potentially unwanted application (PUA), since it is installed without users' permission or knowledge, delivers advertisements, and collects user-inform
chillcardiac.com is a rogue site identical to homeburu.xyz and many others. It redirects users to other dubious (potentially malicious) websites. Most visitors arrive at chillcardiac.com inadvertently - they are redirected by potentially unwanted applications (PUAs) or intrusive ads displayed o
The Media Player 1004 application states that it allows users to play various media using their player. Like many deceptive applications of this type, it may seem legitimate and useful, however, Media Player 1004 is known as potentially unwanted application (PUA) and an adware-type application. P
favor1t.com is one of many rogue websites (virtually identical or very similar to seodollars.com, trkur4.com, tityx.com, etc.) designed to cause redirects to other potentially malicious or untrustworthy sites. Most users arrive at favor1t.com unintentionally - potentially unwanted applications (PU
My Email Center is a rogue application that supposedly allows users to access and operate their email accounts. Initially, My Email Center may seem legitimate and useful, however, this app is categorized as a potentially unwanted application (PUA) and a browser hijacker. There are three main reas
ProjectBabyName is a deceptive application that supposedly allows users to find suitable names for babies. On initial inspection, ProjectBabyName may seem legitimate and useful, however, this application promotes a fake search engine. Furthermore, it is likely to infiltrate systems without permiss
.good is another ransomware-type virus based on an open-source ransomware project called Hidden Tear. After successfully infiltrating the system, .good encrypts most stored data using an AES encryption algorithm. During the process, this malware appends filenames with the ".good" extension (the re
CintaNotes is promoted as an application that offers various useful tools and features, however, it is a potentially unwanted application (PUA) that is often installed inadvertently. This type of app delivers intrusive ads and collects user-system information. CintaNotes is an adware-type ap