v316 is 'skidware' based on Jigsaw ransomware. Its installer is disguised as the installer for ProtonVPN (a legitimate VPN client). This malware encrypts files, appends ".v316" as the extension to each encrypted file and displays a pop-up window (ransom message). An example of how v316 renames fi
In most cases, scammers/cyber criminals behind phishing emails such as this one attempt to trick recipients into providing their login credentials, credit card details, and other sensitive information. They usually disguise their emails as official, important messages from legitimate companies. T
AuraSearch is classified as adware because it generates online advertisements. It also functions as a browser hijacker, modifying browser settings without users' permission. It is likely that AuraSearch also collects browsing-related and other data. Apps like AuraSearch are categorized as poten
Lockedfile belongs to the Xorist ransomware family and is designed to encrypt files, modify their filenames, display a pop-up window, and create the "HOW TO DECRYPT FILES.txt" file (ransom message) in folders that contain encrypted files. Lockedfile renames files by appending the ".lockedfile" ex
The installer for FlashPVideo is disguised as the installer for Adobe Flash Player and is available for download on a deceptive website. Typically, users do not download or install these apps intentionally and, therefore, FlashPVideo is categorized as a potentially unwanted application (PUA). N
AweCleaner is advertised as an all-in-one cleaner that cleans, optimizes, and improves Mac computer performance. Due to dubious methods used to proliferate this app, AweCleaner it is categorized as potentially unwanted application (PUA). Typically, users do not download or install PUAs intentio
This ransomware belongs to the Xorist family. Flubo encrypts files (and modifies their filenames), changes the desktop wallpaper, displays a pop-up window, and creates the "HOW TO DECRYPT FILES.txt" text file in folders that contain encrypted files. It renames files by appending the ".flubo" exte
The FPVideo app can be classified as a potentially unwanted application (PUA) because it is promoted via a deceptive website and distributed via a fake Adobe Flash Player installer (users typically do not download or install these apps intentionally). Like many other installers, the installer f
PDFSearchApps is classified a browser hijacker because it changes certain browser settings without permission (in this case, settings are changed to pdfsearchapps.com). It is likely that PDFSearchApps also gathers browsing data and other details. Typically, users download and install apps such as
Mijnal is designed to encrypt and rename victims' files by appending the ".mijnal" extension to filenames. For example, "1.jpg" is renamed to "1.jpg.mijnal", "2.jpg" to "2.jpg.mijnal", and so on. It is also designed to create a text file named "README_LOCK.TXT" (ransom message) and an HTML file n