Adware

Quartzquester.top is a malicious website that exploits browser push notifications to bombard users with intrusive spam advertisements. It is categorized as a potentially unwanted program (PUP) and browser hijacker. The site deceives visitors into enabling push notifications through the use of fake system warnings and alerts, such as claiming that the browser is "out of date" and needs to "allow notifications" to update it. However, allowing notifications does not update the browser; instead, it grants Quartzquester.top permission to send push notification spam. Quartzquester.top affects multiple browsers, including Google Chrome, Microsoft Edge, Mozilla Firefox, and Safari. The spam notifications can appear on various devices, such as desktop computers, laptops, and smartphones. To protect against such threats, users should be cautious when clicking on links and avoid enabling notifications from untrusted websites.

Moltenmoldmaster.top is a deceptive website that exploits browser push notifications to bombard users with intrusive spam advertisements. It is categorized as a potentially unwanted program (PUP) and browser hijacker The site deceives visitors into enabling push notifications through the use of fake system warnings and alerts, such as claiming that the browser is "out of date" and needs to "allow notifications" to update it. However, allowing notifications does not update the browser; instead, it gives Moltenmoldmaster.top permission to send push notifications containing disruptive ads, even when the browser is closed. Moltenmoldmaster.top can potentially affect any device with a modern web browser, including Chrome, Firefox, Edge, and Safari. It can infect devices running on Windows, Mac, iOS, and Android operating systems.

CumulusFractus is a malicious browser extension that has been found to enable the Managed by your organization feature in the Chrome browser, collect data, and manage browser components. The original Latin name means a type of cloud characterized by small, ragged edges and outlines that continuously undergo rapid changes. This extension can access and modify data on all websites, which means it can view and manipulate the content displayed on any website. CumulusFractus is associated with browser hijacking, which is a malware program that modifies web browser settings without the user's permission and redirects the user to websites they had not intended to visit. The aim of a browser hijacker is to help cybercriminals generate fraudulent advertising revenue by redirecting the victim's homepage to the hijacker's search page and manipulating search results.

ProgramProcessor is an adware-type application that belongs to the AdLoad malware family. Adware generates revenue for its developers by displaying undesirable and deceptive advertisements, such as pop-ups, coupons, banners, and overlays, on various interfaces. ProgramProcessor is specifically designed to target macOS systems and can endanger both the device and user's safety. Once installed on a Mac, ProgramProcessor can hijack the browser homepage and search engine, displaying unwanted advertisements not originating from the sites users are browsing. It can also redirect browser search queries through ProgramProcessor Search, which then redirects to search result pages from search.yahoo.com, likely to generate advertising revenue. ProgramProcessor may open new tabs in the browser displaying advertisements trying to sell software, push fake software updates, and promote tech support scams.

PrimeVersion is a potentially unwanted program (PUP) that targets macOS systems. It is a type of adware that injects advertisements into websites you visit and redirects your browser search queries. PrimeVersion hijacks your browser homepage and search engine, displaying unwanted advertisements not originating from the sites you are browsing. It typically uses a browser extension or program to achieve this. Adware creates various files and folders on your Mac when it infects the system. Some files and folders it may create include browser extensions, configuration files, and other components that allow it to inject advertisements and hijack your browser settings. These files can be located in different directories, such as the Applications folder, Library folder, and browser extension folders. To completely remove PrimeVersion from your Mac, it is essential to delete all associated files and folders, as well as any browser extensions related to the adware.

Daily.gratis is a malicious website that tries to trick users into subscribing to its push notifications so that it can send notification spam directly to their desktop or phone. The site displays fake messages to deceive users into subscribing to its spam push notifications. If users subscribe to Daily.gratis notifications, they will start receiving spam popups directly on their desktop or phone even if the browser is closed. These ads are for adult sites, online web games, fake software updates, and unwanted programs. Daily.gratis exploits browser notifications by displaying fake messages that prompt users to click the "Allow" button to verify that they are not robots. If users click "Allow," notifications from Daily.gratis will begin popping up on their screens from time to time, spamming them with ads, prompts to download software, fake alerts from the operating system, and fraudulent messages. Daily.gratis can infect popular web browsers, including Google Chrome, Mozilla Firefox, Microsoft Edge, and others. It can affect both desktop and mobile devices, as the push notifications can be sent to both platforms.

Azqt Ransomware is a malicious software that belongs to the Djvu malware family and is a variant of the notorious STOP/Djvu ransomware. It is designed to encrypt files on the victim's computer and demand payment, usually in cryptocurrency, for their decryption. The primary purpose of Azqt Ransomware is to target the victim's wallet by encrypting files and then asking for a ransom to decrypt them. Upon infiltrating a computer, Azqt ransomware encrypts files using a robust and unique encryption method, such as the Salsa20 encryption. It adds the .azqt extension to the filenames of the encrypted files, for example, changing 1.jpg to 1.jpg.azqt and 2.png to 2.png.azqt. Azqt ransomware generates a ransom note in the form of a text document named _readme.txt. The note explains that all files, including images, databases, documents, and essential data, have been encrypted and directs victims to purchase a decryption tool and a key to regain access to their files. The ransom amount ranges from $490 to $980 in Bitcoins.

News06.biz is a malicious site that displays fake error messages to trick users into subscribing to its browser notifications. It is a browser-based scam that aims to send unwanted advertisements directly to users' computers or phones. The site uses social engineering techniques to encourage users to click on the "Allow" button, which enables push notifications from the website. Once users click on the "Allow" button, they will start receiving unwanted pop-up ads from News06.biz, even when their browser is not visible. News06.biz exploits browser notifications by tricking users into enabling them. The site claims that users need to click "Allow" on a "Confirm notifications" window to access the content they are looking for. Once users click on the "Allow" button, they grant permission for the site to send notifications to their desktop, which results in unwanted pop-up ads. News06.biz can infect various browsers, including Google Chrome, Mozilla Firefox, Internet Explorer, and Microsoft Edge. The site can also affect Android devices.