HelpFeature is an adware-type application that runs intrusive advertisement campaigns (i.e., it delivers various unwanted and harmful ads). This app also shares characteristics with browser hijackers such as browser modification and bogus search engine promotion. HelpFeature specifically promot
eztv[.]io is a dubious Peer-to-Peer sharing website, which allows people to share content through torrent files. These sites infringe copyright laws and often use rogue advertising networks for monetization. Note that eztv[.]io is no exception. Visitors to this site can be redirected to various ot
There are many emails scams on the internet. Scammers send the messages to deceive unsuspecting recipients into providing personal information, transferring money, etc. In this particular case, they attempt to take advantage of fears surrounding the coronavirus outbreak and seek to trick people i
InfoSearch is a rogue application classified as adware. It operates by enabling the placement of various intrusive advertisements on any visited website. This app also shares characteristics with browser hijackers such as browser settings modification and fake search engine promotion. Additiona
Ahegao is designed to encrypt victims' data, rename every encrypted file and display a pop-up window containing a ransom message. This ransomware renames encrypted files by appending the ".ahegao" extension to filenames. For example, it changes "1.jpg" to "1.jpg.ahegao", "2.jpg" to "2.jpg.ahegao",
Lucifer is a malicious program classified as a banking Trojan. It primarily targets banking information, however, this malware also makes attempts to exfiltrate data relating to email, e-commerce and streaming accounts. Its range of attacks has covered most of Latin America, and Europe, Asia and N
The ExperienceLine app supposedly improves the browsing experience. In fact, it promotes the Safe Finder website (by opening it through akamaihd.net) and feeds users with advertisements. Adware can often access and collect various user-system information. Note that apps such as ExperienceLine a
Rhino is a part of the Dcrtr ransomware family. Like other malware of this type, it encrypts files on infected systems and encourages victims to pay a ransom to recover them. Rhino renames encrypted files by adding the generalchin@countermail.com email address and appending the ".rhino" extension
Lesli is a malicious program belonging to the CryptoMix ransomware family. This malware operates by encrypting the data of infected systems and demanding payment for decryption tools/software. When Lesli ransomware encrypts, files are renamed according to this pattern: original filename, cyber cr
PanelStyle is a rogue app, categorized as adware. It delivers various intrusive advertisements, which seriously diminish browsing quality. Additionally, PanelStyle possesses browser hijacker traits, e.g. browser modifications and fake search engine promotion. This application promotes Safe Find