Discovered by cybersecurity researcher GrujaRS, BlackOrchid is a malicious program classified as ransomware. Systems infected with this malware have their data encrypted and users receive ransom demands for the decryption tools. During the encryption process, all affected files are appended with t
ExpertProjectSearch is an adware-type application. As well as delivering various intrusive advertisements, this app also has capabilities common to browser hijackers. These include browser modification and promotion of fake search engines. Practically all adware-type programs and browser hijacke
encS (or encL) is an updated variant of DeathHiddenTear ransomware. This variant was discovered by GrujaRS and encrypts victims' files, changes their filenames and creates a ransom message. It renames all files by appending the ".encS" (or ".encL") extension to filenames. For example, a file name
"Your Apple iPhone is seriously damaged by 19 viruses!" is a scam run on deceptive web pages. This scheme claims that the browser has been infected with viruses and recommends a dubious piece of software for the removal of the nonexistent threats. Applications promoted using such deceptive meth
UltraLocator is an adware-type application that delivers various intrusive ads. This app also shares characteristics with browser hijackers - it modifies browsers and promotes bogus search engines. UltraLocator promotes akamaihd.net, which redirects to Safe Finder. Since most users download/ins
MainReady is adware-type software with browser hijacker characteristics. Following successful infiltration, it delivers intrusive advertisements, modifies browsers and promotes bogus search engines. MainReady promotes Safe Finder through akamaihd.net. Most adware-type programs and browser hija
pushisback[.]com is a rogue web page with similar operation to fiaharam[.]net, maroceffects[.]com, basenews7[.]com and many other sites. When visited, pushisback[.]com loads dubious content or redirects visitors to other untrusted web pages. In most cases, these are opened when users click intrus
PrimaryFunction is a rogue application categorized as adware. It operates by running intrusive advertisement campaigns, however, this app also has browser hijacker characteristics. PrimaryFunction modifies browser settings and promotes fake search engines. For example, it promotes Safe Finder t
Like most adware-type applications, GroupSource is designed to feed users with advertisements and collect information. Additionally, it designed to promote the Safe Finder website by opening it via the akamaihd.net web address. People often download and install adware unintentionally and, there
DynamicWindow adware serves advertisements, collects various information and promotes the Safe Finder web page by opening it through akamaihd.net. Apps of this type are categorized as potentially unwanted applications (PUAs), since users often download and install them unintentionally by click