GoBotKR is high-risk trojan-type infection that entered the scene in May, 2018. It is essentially an updated version of another trojan called GoBot2, which is written in the Go programming language. GoBotKR opens a 'backdoor' for cyber criminals to access and remotely control the infected machine.
Lokas is yet another ransomware from Djvu family. It was firstly discovered by malware researcher Michael Gillespie. This malware is designed to lock (encrypt) victim's data and to make ransom demands. While encrypting, Lokas appends each filename with ".lokas" extension. For instance, a file nam
nitroflare[.]com is a rogue website that supposedly provides free file hosting services. Judging on the appearance alone, nitroflare[.]com may seem appropriate and handy. Nevertheless, developers monetize this site by using rogue advertising networks which promote unreliable (potentially malicious
approvedresults.com is a rogue website presented as high-end web search engine that significantly enhances web browsing experience by generating improved search results. Judging on the appearance alone, approvedresults.com actually seems appropriate and handy. However, it is worth mentioning that
Get Coupons Now is a rogue application that supposedly saves time and money by providing discount coupons for various online shops. Judging on appearance alone, Get Coupons Now may seem legitimate and useful, however, it is categorized as a potentially unwanted application (PUA) and a browser hij
Basilisque Locker is high-risk ransomware designed to encrypt data and make ransom demands. Note that Basilisque Locker typically targets server devices rather than home computers. During encryption, Basilisque Locker renames each file to a random string and appends the ".basilisque@protonmail_com
Discovered by Michael Gillespie, ERIS is a ransomware-type malicious program. Cyber criminals who create malware of this type use it to encrypt other users' files and extort money by forcing them to pay a ransom. Like most programs of this type, ERIS renames all encrypted files and changes their e
Belonging to the Djvu ransomware family, Cezor is a high-risk ransomware infection discovered by Petrovic. Once infiltrated, Cezor encrypts most stored files and appends filenames with the ".cezor" extension (e.g., "sample.jpg" is renamed to "sample.jpg.cezor"). Encrypted data immediately becomes
nanoadexchange[.]com is a URL address used by various rogue advertising networks, which typically employ deceptive applications and websites. Therefore, users are redirected to this website when their computers are infected with potentially unwanted applications (PUAs) or adware, or when they vis
Astaroth is high-risk trojan-type virus. It is typically distributed using spam email campaigns. Criminals send hundreds of thousands of emails that contain deceptive messages encouraging users to open attached files (Microsoft Office documents). Once opened, these files run commands that inject A