"Flash Player Update Download New Version" is a deceptive pop-up displayed by various scam websites. When sites running this scam are accessed, visitors are offered download/installation of fake Flash Player updates. Note that bogus updaters are commonly used to infiltrate systems with untrusted
Discovered by dnwls0719, Razor is part of the Garrantydecrypt ransomware family. Like many other programs of this type, Razor is designed to encrypt files (rendering them unusable/inaccessible), modify filenames, create ransom messages and change desktop wallpapers. Razor renames files by appendi
"Dear user, congratulations!" is one of many scam websites used to trick visitors into believing that they have won a prize, can receive a gift, and so on. In this particular case, visitors are informed that they have won a mobile telephone and can claim it by completing a survey. As with many ot
Getprizes is a group of scam websites. Their behavior is varied, yet these sites are primarily designed to display deceptive content and/or generate redirects to other scam pages. It has been noted that "Dear Chrome User, Congratulations!" and "Latest version of Adobe Flash Player" scams are co
PETRONAS is a spam campaign that cyber criminals spread to infect recipients' computers with LokiBot, a trojan-type malicious program. They send emails with attached archive files (RAR) that contain malicious executables. Cyber criminals behind the PETRONAS spam campaign attempt to trick people in
The mpgun[.]com website allows users to download videos from YouTube and convert them to MP3 and MP4 formats. In fact, it is illegal to download videos from YouTube. Furthermore, mpgun[.]com employs rogue advertising networks. In summary, this website displays dubious advertisements and opens unt
Discovered by malware researcher Raby, Bhacks is a malicious program categorized as ransomware. It operates by encrypting data and demanding payment for decryption tools/software. During the encryption process, all affected files are renamed following this pattern: "Lock.", original filename, and
DRV is malicious software categorized as ransomware. It encrypts files, renames them and creates a ransom message. It renames encrypted files by appending the ".lasan" extension to their filenames. For example, "1.jpg" becomes "1.jpg.lasan", and so on. It also creates a ransom message in the form
srchpx.xyz is one of many fake search engines on the internet. Like most of them, this search engine is promoted through a potentially unwanted application (PUA), a browser hijacker. The name of the PUA that promotes srchpx.xyz is called SApp+. Typically, browser hijackers promote fake search eng
Bboo is malicious software, which is part of the Stop/Djvu ransomware family. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption. When Bboo ransomware encrypts, all affected files are appended with the ".bboo" extension. For example, a fil