Belonging to the Dharma/Crysis family ransomware family, Back is malicious software designed to encrypt data and demand ransom payments for decryption. When Back encrypts, all affected files are appended with the victim's unique ID, the developer's email address and the ".back" extension. For exa
Operateuberdevelopedprogram[.]icu is a deceptive webpage, the purpose of which is to push a fake Flash Player updater. It indirectly recommends visitors to update the aforementioned plug-in. Fraudulent updates are commonly used to infiltrate PUAs (Potentially Unwanted Applications) into devices
Youtubemp3[.]today is website that allows users to convert YouTube videos to MP3 files and download them. It is worth mentioning that it is not legal to download videos from YouTube, however, that is not the only problem with youtubemp3[.]today. This website uses rogue advertising networks, peopl
Tl30z is one of the variants of Snatch ransomware, this particular variant was discovered by Raby. It renames encrypted files by appending the ".tl30z" extension, for example, it renames a file named "1.jpg" to "1.jpg.tl30z", and so on. Like most programs of this type, Tl30z also creates a ransom
Helpforyoupc is a ransomware-type malicious program. Its discovery is credited to GrujaRS. This malware operates by encrypting the data of infected devices and demanding a ransom to be paid for the decryption tools/software. As it encrypts, all affected files are appended with the ".help" extensio
Like most programs of this type, MZP is designed by cyber criminals and used to extract money from victims by forcing them to pay for a decryption tool and key that can decrypt encrypted files. It renames encrypted files by appending an extension with 8 random characters. For example, it renames
Operatedevelopeduberprogram[.]icu is a website which is designed to trick people into installing two PUAs, adware-type apps called Media Player and MyCouponsmart. These PUAs get installed through a fake installer of new version of Adobe Flash Player that this page offers to download. Operatedev
Installcompletelyspeedyprogram[.]icu is a deceptive/scam website, the purpose of which is to trick visitors into downloading a fake Flash Player updater. It suggests (without explicitly stating) that Flash is outdated and requires to be updated. Illegitimate updaters are often used to proliferat
Reliableultimatesafevideoplayer[.]info is a deceptive website designed to trick visitors into installing some potentially unwanted application (PUA). It encourages them to download and use a fake installer of Adobe Flash Player update which is designed to install some adware, browser hijacker,
FocusProvide is an adware-type application, promoted as a piece of software supposedly designed to improve the browsing experience. It is advertised as a tool that can allegedly provide fast searches, accurate search results and so on. Instead, this app diminishes browsing quality by running int