WinThruster is presented as a program that fixes issues by making other programs load faster and optimizing computers in one click. WinThruster's developers promote it by 'bundling' this program into other software set-ups. This increases the possibility that most people will download and install
DriverAgent is presented as a driver update application. According to developers, it contains a huge database of drivers for Windows 10, 8.1, 8, and 7. This may seem to be a useful tool, however, it is promoted using the "bundling" method, and thus most people install it unintentionally. For this
First discovered by Michael Gillespie, Hofos is yet another variant of high-risk ransomware called Djvu. After initial infiltration, Hofos encrypts most stored files and appends filenames with the ".hofos" extension (e.g., "sample.jpg" becomes "sample.jpg.hofos"). Encrypted data immediately becom
search.hearthandsatellitemaps.com is a fake search engine that supposedly provides faster searches, more accurate results, and so on. In fact, it is promoted using a browser hijacker, a potentially unwanted application (PUA) called Earth And Satellite Maps. Like most apps of this type, it modifies
Discovered by MalwareHunterTeam, WannaOof is a ransomware-type program that is designed to encrypt files stored on the victim's computer. Unlike most programs of this type, however, it is simply prank ransomware and developers demand no ransom payments. When a computer is infected with WannaOof,
Kovter (also known as Trojan.Kovter, Trojan:Win32/Kovter, and Trojan.Kovter.297) is an adware-type trojan designed to generate traffic for various websites. Research shows that Kovter is typically proliferated using malicious Microsoft Office attachments (which are distributed using spam email cam
PUP.Optional.Legacy is a generic detection name used by anti-virus and anti-spyware suites for PUPs (Potentially Unwanted Programs). The name might vary on different programs - in our example, it is the Malwarebytes version. It indicates that the installed security suite has detected some potent
Ransomware is software that encrypts files stored on a computer and keeps them inaccessible unless a ransom is paid. MegaCortex is one of these programs and was discovered by Michael Gillespie. It also renames all encrypted files by adding the ".aes128ctr" extension. For example, "1.jpg" becomes
'Video' is the name of a ransomware-type program that cyber criminals use to encrypt files and force people to pay ransoms. Video belongs to the Dharma ransomware family and was discovered by Jakub Kroustek. Like most programs of this type, it renames encrypted files by adding its own extension,
First discovered by malware researcher, Michael Gillespie and Belonging to the Djvu ransomware family, Roldat is high-risk file-compromising malware. After successful infiltration, Roldat encrypts most stored files, thereby making them unusable. Additionally, Roldat appends each filename with the