LEAKS is a ransomware-type program. It is designed to encrypt data (render files inaccessible) and demand ransoms for the decryption. During the encryption process, files are appended with a ".LEAKS" extension. For example, a file initially titled "1.jpg" would appear as "1.jpg.LEAKS", "2.jpg" as
"Payment completed on behalf of my boss" is the name of a spam campaign - a mass-scale operation during which thousands of deceptive emails are sent. The letters distributed through this campaign - request recipients to confirm a supposed payment. The goal of these scam letters is to push a phishi
L30 is a type of malware that blocks access to files until a ransom is paid. It encrypts files and appends the ".L30" extension to their filenames (for example, it renames "1.jpg" to "1.jpg.L30", "2.jpg" to "2.jpg.L30"). Also, L30 creates the "HOW_TO_RECOVER_DATA.html" file (a ransom note). This r
BrowserState is a potentially unwanted application (PUA) that has the qualities of advertising-supported software and a browser hijacker. It generates advertisements and changes the web browser's settings. It is worth mentioning that apps of type often are designed to collect various information
BasicKey is a rogue app categorized as adware. Additionally, it has browser hijacker qualities. This piece of software operates by delivering intrusive advertisement campaigns and making modifications to browser settings in order to promote fake search engines. BasicKey likely has data tracking
Efdc ransomware encrypts victim's files and renames them by appending the ".Efdc" extension to their filenames (for example, it renames "1.jpg" to "1.efdc", "2.jpg" to "2.efdc"). It provides contact and payment information in its ransom note, a text file named "_readme.txt". Efdc is part of the Dj
HYDRA is a piece of malicious software designed to encrypt data and demand payment for the decryption. In other words, this ransomware renders files inaccessible, and victims are asked to pay - to restore access to their data. During the encryption process, files are renamed following this patter
ExpandedValue displays annoying advertisements and hijacks web browsers (promotes a fake search engine). ExpandedValue may be designed to collect information about its users as well. Pretty often, adware is distributed using deceptive methods. ExpandedValue is distributed via a fake Adobe Flash
Youtube Ad Blocker is a rogue browser extension classified as adware. It is endorsed as a tool to eliminate advertisements on the YouTube video-hosting platform. However, instead of blocking ads - this piece of software delivers intrusive advert campaigns. Additionally, Youtube Ad Blocker spies o
Sharing many similarities with fewergkit.com, loloclicks.biz, helthtop.space, myactualblog.com, and thousands of others, boustahe[.]com is a rogue webpage. It operates by presenting visitors with dubious content and/or redirecting them to different websites (likely unreliable or malicious ones).