ProductArchive is advertising-supported software that displays advertisements and hijacks a web browser (changes its settings to promote a fake search engine). Apps like ProductArchive usually are promoted/distributed using questionable methods. In such cases, users are likely to download or ins
PDFConverterWeb is a piece of browser-hijacking software promoting the pdfconverterweb.com fraudulent search engine. Additionally, due to the questionable methods used to spread browser hijackers, they are also classified as PUAs (Potentially Unwanted Applications). Browser hijackers (e.g.
OriginType is a browser hijacker promoting the search.5k8zh0i.com fake search engine. Software products within this classification are also deemed to be PUAs (Potentially Unwanted Applications). Browser hijackers assign fake web searcher addresses as browsers' homepage, new tab/window, a
Accuj is ransomware that blocks access to files (encrypts them) and creates the "b8Bo_HOW_TO_DECRYPT.txt" file to provide instructions on how to contact cybercriminals for file decryption. It also appends a string of random characters to filenames and the ".accuj" extension. For example, a file n
It is a phishing email used to trick recipients into providing email login credentials on a fake Roundcube website. Roundcube is a web-based IMAP email client that has nothing to do with this phishing email. This email must be ignored. Scammers behind this email ask recipients to review a
"The raffle of prizes" is a scam promoted on various rogue sites. This scheme is presented as a prize raffle from Instagram. It must be emphasized that this giveaway is fake, and it is in no way associated with the Instagram social media platform. Deceptive websites are typically accessed through
Rook is ransomware (an updated variant of Babuk) that prevents victims from accessing/opening files by encrypting them. It also modifies filenames and creates a text file/ransom note ("HowToRestoreYourFiles.txt"). Rook renames files by appending the ".Rook" extension. For example, it renames "1.jp
Giuliano is a piece of malicious software classified as ransomware. This type of malware encrypts data (i.e., renders files inaccessible) and demands payment for the decryption. This ransomware appends files with a ".Giuliano" extension. For example, a file initially titled "1.jpg" would appear a
OperationBeta is advertising-supported software with the characteristics of a browser-hijacking application. It displays advertisements and promotes a fake search engine by changing settings of a web browser. Typically, apps like OperationBeta are promoted/distributed using deceptive or at least
This ransomware variant belongs to a family of ransomware called Djvu. It prevents victims from accessing their files by encrypting them and appends the ".rigj" extension to filenames. For example, it renames a file named "1.jpg" to "1.jpg.rigj", "sample.jpg" to "sample.jpg.rigj". Also, Rigj creat