30tab.com (http://30tab.com/en.htm) is deleterious browser hijacker, that replaces default settings (search engine, homepage) in Google Chrome, Mozilla Firefox and Internet Explorer. It looks like typical search engine start page, with tab, that contains quick links to popular social networks, shopping sites, news portals and advertising banners. The start page is called “30Tab Safe Navigation” and it redirects user search queries to Google Custom Search. 30tab.com targets international market, with local pages for France (30tab.com/fr.htm), Spain (30tab.com/es.htm), Germany (30tab.com/de.htm), Italy (30tab.com/it.htm), Russia (30tab.com/ru.htm), Brazil (30tab.com/br.htm).
Arena Ransomware belongs to CrySis family, previous wide-spread ransomware of this type was Dharma Ransomware, that we described on this blog. Arena Ransomware was detected by security researches first time in August 2017. Since then, it had numerous updates. Different versions of Arena Ransomware demand different ransom amounts. It varies from 0,20 to 0,73 BitCoins, which is near $5000. Security experts do not recommend to pay developers of ransomware, as this encourages them to create new variations and does not guarantee decryption of your files. Actually, most times malefactors don’t send decryption keys. Latest versions of Arena Ransomware are not decryptable, however there is a chance to restore files affected by older versions.
Chromesearch.win is objectionable website, that acts like browser hijacker. It attacks only Google Chrome, changing default settings of search engines and homepage. Chromesearch.win is designed to mislead users, because appearance can be confused with standard Google Chrome start page or new tab. This hijacker redirects user queries either to Google or Yahoo depending on origin of the user. Information that users type in the search box can be collected and used for advertising purposes.
Alpha Shoppers is browser ad-supported add-on, that installs in Google Chrome. After infiltration malware takes control over homepage and search engine settings in this browser. Adware redirects user queries to alphashoppers.co search powered by infospace.com. Search results by Alpha Shoppers may contain sponsored results and extra ads. Additionally, this unwanted application displays ads and coupons on shopping sites in form of drop-down windows, pop-ups, banners.
Search60.com by APN LLC is browser hijacker, that infects Google Chrome, Mozilla Firefox and Internet Explorer. Virus modifies default settings in browsers, such as homepage and search engine. Search60.com redirects user searches to Google Custom Search, that can be filled with additional ads and sponsored pages. This misleading website makes using your browser a real problem.