Typically, users do not visit bestdealfor20[.]life or similar sites intentionally - they are opened through deceptive advertisements, other untrusted websites or by potentially unwanted applications (PUAs) that are installed on browsers and/or computers. When visited, websites such as bestdealfor2
Lina is a part of the Dharma ransomware family. Like other malware of this type, it is designed to encrypt files, change their filenames and provide victims with instructions about how to contact the developers. Lina renames files by adding the victim's ID, linajamser@aol.com email address and app
VuLiCaPs is a malicious program belonging to the Xorist ransomware family. It is designed to encrypt data and demand payment for decryption. During the encryption process, files are appended with the ".VuLiCaPs" extension. For example, a file originally named something like "1.jpg" would appear as
CoordinatorBoost serves advertisements, collects sensitive information and promotes the z6airr.com and adjustablesample.com fake search engines. This app functions as adware and a browser hijacker. Typically, users download and install apps of this type inadvertently and, for this reason, they a
ExtendedLibrary is an adware-type application with browser hijacker characteristics. This app delivers intrusive advertisements and makes modifications to browsers to promote bogus search engines. Additionally, most adware-type apps and browser hijackers collect browsing-related information. Du
Npph is ransomware belonging to the Djvu ransomware family. It encrypts files, modifies their filenames and creates a ransom message. Note that Npph renames files by appending the ".npph" extension to filenames. For example, it would rename "1.jpg" to "1.jpg.npph", "2.jpg" to "2.jpg.npph", and so
Criminals behind this scam website attempt to trick visitors into transferring a sum of Bitcoins to them by offering to return ten times the amount to the provided BTC wallet address. Websites of this type (money-swindling schemes) should never be trusted. Note that most users do not visit these
pro-web[.]net is one of many untrusted web pages that open other websites of this kind or load dubious content. It is similar to xrclicks[.]xyz, cachenews[.]biz, lastmedias[.]biz and many others. These sites are often opened by web browsers that have potentially unwanted applications (PUAs) instal
Discovered by xiaopao, Chuk is a malicious program belonging to the Dharma ransomware family. Systems infected with this malware experience data encryption and users receive ransom demands for decryption. During the encryption process, files are renamed following this pattern: original filename,
search.standartanalog.com is a fake search engine. These bogus search tools are usually promoted by browser hijackers. Note that search.standartanalog.com is promoted by adware-type software with browser hijacker traits (e.g. ExtendedProcesser). Fake search engines typically have data tracking c