AstraLocker is a malicious program classified as ransomware. It operates by encrypting files and demanding payment for the decryption tools. In other words, AstraLocker renders data inaccessible and asks victims to pay - to restore access to it. During the encryption process, files are appended w
Movie Side is designed to hijack a web browser by altering its settings (by changing certain addresses to movieapp.net - a fake search engine). Most browser hijackers are promoted and distributed using questionable methods. Therefore, it is uncommon for them to be downloaded and installed on purpo
Belonging to the Dharma ransomware family, Dts is a piece of malicious software designed to encrypt data and demand payment for the decryption. In other words, victims cannot access the files affected by Dts, and they are asked to pay - to restore access to their data. During the encryption proce
Rcgaxg[.]com asks for permission to show notifications (in a deceptive way) and promotes questionable pages. It is more or less similar to news-ciwuwi[.]cc, allhotfeed[.]com, yourseismo[.]top, and more. It is uncommon for pages of this type to be visited intentionally. Pretty often, they get opene
Wearefriends encrypts files (prevents victims from accessing them) and appends the ".wearefriends" extension to their filenames (for example, it renames "1.jpg" to "1.jpg.wearefriends", "2.jpg" to "2.jpg.wearefriends", and so on). Also, Wearefriends ransomware displays a pop-up window (a ransom no
"I know you are cheating on your partner Email Scam" is a spam campaign - a mass-scale operation during which deceptive emails are sent by the thousand. The letters distributed through this campaign use a variation of the sextortion scam model. These emails claim that the recipient is cheating on
Orkf is one of the ransomware variants that belong to the Djvu ransomware family. This variant encrypts files and appends the ".orkf" extension to their filenames (for instance, Orkf renames "1.jpg" to "1.jpg.orkf", "2.jpg" to "2.jpg.orkf"). Also, it creates the "_readme.txt" file, a ransom note.
It is unknown what is the purpose of the NewProduct application. However, it is likely that it functions as adware or a browser hijacker. It is common for apps of this kind to be distributed using deceptive methods. Therefore, users rarely download and install them intentionally. Apps of this kind
ProRadioSearch is a browser hijacker designed to change web browser's settings to promote the proradiosearch.com address. Like most browser hijackers, ProRadioSearch promotes a fake search engine. It is likely that this app is designed to collect browsing-related data as well. Typically, users ins
News-ciwuwi[.]cc is designed promote questionable websites and to trick users into allowing it to show notifications. There is a countless number of websites like news-ciwuwi[.]cc. A couple of examples are allhotfeed[.]com, yourseismo[.]top, and check-this-video[.]com. As a rule, users do not visi