Zorab2 is a new variant of ZORAB ransomware. This variant renames encrypted files by appending the ".zorab2" extension. For example, it would rename a file called "1.jpg" to "1.jpg.zorab2", "2.jpg" to "2.jpg.zorab2", and so on. It also creates the "--DECRYPT--ZORAB.txt" and "--DECRYPT--ZORAB.vbs"
Find New Coupons is rogue software endorsed as a tool for easy access to various popular coupons. In fact, it operates by making modifications to browser settings to promote hfindnewcoupons.com (a fake search engine). Due to this, it is classified as a browser hijacker. Find New Coupons has data
BestPDFSearch is a browser hijacker which changes certain browser settings to bestpdfsearch.com, the address of a fake search engine. Apps of this type often collect details relating to users' browsing habits (browsing data). Commonly, people download and install browser hijackers inadvertently a
AdjustableSkill is an adware-type application with browser hijacker traits. Following successful installation, it runs intrusive advertisement campaigns (i.e. delivers various ads), makes alterations to browser settings and promotes fake search engines. AdjustableSkill promotes z6airr.com in thi
search.navigationbuffer.com is the address of a fake search engine. Typically, these addresses appear in browser settings when people inadvertently install browser hijackers or adware-type applications. In this case, the settings are changed after installation of adware called AdjustableSkill.
eadblock Search Manager is software classified as a browser hijacker. Software within this classification operates by making modifications to browser settings to promote certain search engines. Browser hijackers typically promote fake search engines that are unable to provide unique results. Addi
Rec belongs to the Dharma ransomware family. Malware of this type is designed to prevent victims from accessing data by encryption, renaming all encrypted files, and generating a ransom message with instructions about how to contact cyber criminals and various other details. Rec renames encrypted
NetProgress is a potentially unwanted application (PUA) which functions both as adware and a browser hijacker: it is designed to serve advertisements and promote a fake search engine (0yrvtrh.com) by changing certain browser settings. It is likely that NetProgress also functions as a data tracki
UpdateFilter is a dubious application categorized as adware. It also has browser hijacker traits. Following successful infiltration, UpdateFilter delivers intrusive advertisements and makes modifications to browser settings to promote fake search engines. This application promotes 0yrvtrh.com in
Generally, these emails are sent to deceive recipients into installing malware on their computers through a malicious attachment or website link. In most cases, they are disguised as official messages from legitimate companies and organizations. This email is part of a malspam campaign, which cybe