Run is ransomware belonging to the MedusaLocker family. We discovered it during our analysis of samples uploaded to the VirusTotal page. Run encrypts files and appends its extension to filenames. It also provides a ransom note in a file named "How_to_back_files.html". An example of how Run modifi
Our examination of shauckaimo[.]com has revealed that it is an unreliable website that uses a deceptive tactic known as clickbait to lure visitors into accepting its notifications. Also, there is a high chance that shauckaimo[.]com can redirect users to other shady pages. Overall, it is highly rec
While inspecting tentedstars[.]com, we learned that this page is designed to deceive visitors into allowing it to show notifications. Tentedstars[.]com uses a technique known as clickbait to achieve this. Typically, sites like tentedstars[.]com send untrustworthy notifications. Thus, users should
Our analysis of realeus24[.]com has revealed that this is a deceptive website created to trick unsuspecting users into consenting to receive notifications from the site. Notifications from websites like realeus24[.]com cannot be trusted. Thus, such pages should not be allowed to send them.
We have inspected poratfit[.]com and found that it is a misleading website designed to display deceptive content. The purpose of poratfit[.]com is to trick visitors into permitting it to send notifications. Also, this web page may redirect users to similar unreliable pages. Thus, poratfit[.]com sh
We have examined naukagil[.]com and found that it diplays deceptive content and aims to trick visitors into agreeing to receive notifications. Additionally, naukagil[.]com is designed to redirect users to other unreliable sites. Thus, it is recommended not to allow naukagil[.]com to send notificat
Realstkozirads[.]com is the URL of a rogue webpage discovered by our researchers during a routine inspection of suspect sites. After examining this page, we learned that it promotes spam browser notifications and redirects users to different (likely untrustworthy/hazardous) websites. Webpages of
While inspecting new file submissions to the VirusTotal website, our researchers discovered the ToolFilter application. Our examination revealed that it is advertising-supported software (adware). ToolFilter is part of the AdLoad malware group. Adware is designed to generate revenue for
Maxask.com is a fake search engine that we discovered while investigating the Max Ask browser hijacker. Unlike most sites of this kind, maxask.com can generate search results, although they are inaccurate. Browser-hijacking software promotes fraudulent search engines via redirects, which are achie
While browsing dubious sites, our researchers found the news-tekica[.]com rogue webpage. Our analysis revealed that it endorses browser notification spam and redirects users to other (likely unreliable/hazardous) websites. Most visitors to news-tekica[.]com and similar pages enter them via redire