This ransomware is a part of the Dharma ransomware family. It prevents victims from accessing/using their files by encrypting them, renames all encrypted files, displays a pop-up window (a ransom message) and creates the "FILES ENCRYPTED.txt" text file (another ransom message). Elvis ransomware a
Banjo is a malicious program belonging to the Phobos ransomware family. Like most programs of this type, Banjo is designed to encrypt files, modify their filenames, and provide instructions about how to contact the developers. It renames files by adding the victim's ID, the mutud@airmail.cc email
Pethya Zaplat Zasifrovano was discovered by xiaopao. This ransomware is designed to encrypt files, modify their filenames, change the desktop wallpaper, display a number of pop-up windows, and create the "HOW TO DECRYPT FILES.txt" text file in folders containing encrypted files. Its desktop wallp
Spacerin promotes spacerin.com (the address of a fake search engine) by changing certain browser settings. These apps also collect information relating to users' browsing habits. Note that people often download and install browser hijackers inadvertently. Therefore, Spacerin and other apps of this
CC1H belongs to the GlobeImposter ransomware family. There are at least two variants of CC1H, both of which encrypt files, rename them, and create "INFO.html" files (ransom messages) in all folders that contain encrypted files. One variant appends the ".CC1H" extension to the filenames of encrypte
V3JS Ransomware encrypts files and displays a window containing a ransom message. Unlike many other malicious programs of this type, it does not rename any of the encrypted files. Note that the ransom message is in Polish and English and, therefore, it is likely that V3JS's developers are Polish a
In affiliate programs, individuals have the opportunity to make money by promoting products or services created by other companies - they can receive a commission for each product that was purchased via their affiliate link. This website promotes legitimate antivirus programs, however, its promoti
UpdateAdmin is designed to serve advertisements, promote 6v5f3l.com and search.basicgeneration.com (fake search engines), and collect sensitive information. This app functions as adware and a browser hijacker. Typically, users do not download or install UpdateAdmin or similar apps intentionally
MixedFin is a typical browser hijacker, which promotes a fake search engine and forces users to visit this address under certain conditions. It also collects browsing-related information. Most users download and install MixedFin and other browser hijackers inadvertently and, therefore, the program
ELDAOSLA is a part of the Phobos ransomware family. It encrypts files, modifies their filenames, creates the "info.txt" text file (a ransom message) and displays a pop-up window (another ransom message). ELDAOSLA renames files by adding victims' IDs, ICQ username owned by its developers, and appen