DEcovid19bot is a malicious program classified as ransomware. It is designed to encrypt files and rename them in order to demand payment for decryption. There are two variants of this ransomware - the way these versions change filenames and the ransom message they create differs. During the encry
By sending phishing emails, scammers seek to trick unsuspecting recipients into providing sensitive information. For example, bank account numbers, social security numbers, credit card details, and login credentials. Generally, these emails are disguised as messages from legitimate organizations,
"BRT Email Virus" refers to a spam campaign spreading the Ursnif trojan. The term "spam campaign" defines a large-scale operation, during which thousands of deceptive emails are distributed. The "BRT" scam emails target Italian users and are presented as notifications about due invoices. These me
Sett4545 ransomware is based on Hidden Tear (open-source ransomware) and was discovered by Emmanuel_ADC-Soft. Sett4545 encrypts and renames files by appending the ".encryptedQjbQpkgd.sett4545" extension. For example, "1.jpg" is renamed to "1.jpg.encryptedQjbQpkgd.sett4545", "2.jpg" to "2.jpg.encry
DigitalEngine is an adware-type app with browser hijacker characteristics. This piece of software delivers intrusive ad campaigns and makes alterations to browser settings to promote fake search engines. Additionally, most adware-type apps and browser hijackers can track data and use these capab
RadioFanaticSearch promotes radiofanaticsearch.com (the address of a fake search engine) by changing browser settings without users' permission. It can also read browsing data. People users do not often download or install apps such as RadioFanaticSearch intentionally and, for this reason, they ar
Qsayebk is a malicious program belonging to the Snatch ransomware family. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption. During the encryption process, files are appended with the ".qsayebk" extension. For example, "1.jpg" would appea
Covid21 is coronavirus-themed malware that corrupts The Master Boot Record (MBR), the first sector on a startup drive that contains executable code operating as a loader for the operating system. In this way, Covid21 prevents users from accessing the Windows Operating System. It also changes the d
WizardUpdate is an adware-type application with browser hijacker traits. It operates by delivering intrusive advertisement campaigns and making alterations to browser settings to promote fake search engines. Additionally, most adware and browser hijackers have data tracking capabilities, which a
crypt-protection[.]com is a deceptive website designed to trick visitors into downloading and installing a potentially unwanted application (PUA), which supposedly removes viruses that this site has "detected" on devices. You should ignore crypt-protection[.]com and similar sites - the virus no