GNS encrypts files, changes their filenames and provides victims with instructions about how to contact the developers. This ransomware renames files by adding the victim's ID, geniusid@protonmail.ch email address and appending the ".GNS" extension. For example, it would rename "1.jpg" to "1.jpg.
"System Activation KEY has expired" is a message displayed in a fake technical support scam, promoted by various deceptive websites. Visually this scheme mimics the appearance of the Blue Screen error displayed on Windows Operating Systems (OSs), specifically the graphics of these errors as they a
The Total Mac Fixer application is promoted as a tool capable of optimizing system operations by removing unwanted files, managing apps, and improving system start-up speed. Since most users download/install Total Mac Fixer inadvertently, it is classified as a Potentially Unwanted Application (P
DPS Websafe hijacks browsers by modifying certain browser settings (changing them to dpswebsafe.com, the address of a fake search engine). Users often download and install browser hijackers inadvertently and, for this reason, they are categorized as potentially unwanted applications (PUAs). Note
WebAdvancedSearch is an adware-type application with browser hijacker traits. It delivers intrusive advertisement campaigns and modifies browsers to promote fake search engines. Most adware type apps and browser hijackers have data tracking capabilities, which are used to monitor users' browsin
Typically, cyber criminals behind these spam campaigns send emails disguised as "official" and "important" to trick people into installing malicious software. In many cases, they succeed when recipients open/execute a malicious file (attachment), which then installs malware. In this particular c
ExtendedTask is rogue software classified as adware and possessing browser hijacker traits. This application operates by running intrusive advertisement campaigns, making modifications to browser settings and promoting fake search engines. ExtendedTask promotes Safe Finder via akamaihd.net. It
"Your device was not properly secured" is a scam email, claiming that all recipients' devices have been compromised and their data has been exfiltrated. Unless they pay the ransom, the messages threaten that there are serious consequences. Note that all information provided by "Your device was n
AdvancedProcesser is categorized as adware with browser hijacker traits. Following successful installation, this application runs intrusive advertisement campaigns and modifies browser settings to promote fake search engines. AdvancedProcesser promotes Safe Finder through akamaihd.net. Additio
Discovered by malware researcher, S!Ri, Pojie is malicious software categorized as ransomware. Systems infected with this malware experience data encryption and users receive ransom demands for decryption. During the encryption process, all compromised files are appended with the ".52pojie" extens