NextPharma ransomware was discovered by Raby and designed to lock files by encrypting them with a cryptographic algorithm. Therefore, people with computers infected by NextPharma cannot access their files unless they purchase specific software (decryption tool). This malicious program renames all
Auto PC Cleaner 2019 is a piece of software, allegedly capable of optimizing and speeding up systems. It is also advertised as able to remove various systems threats and making various enhancements. This application is often distributed as an addition within download/installation setups of other p
The Aurora Cheat tool is presented as an "injector" for the Apex Legends video game. It supposedly allows users to enable features such as player movement prediction, distance control, aimbot, and so on. In fact, it infects computers with a Remote Access Trojan (RAT). When downloaded and ope
bitscleanutil.xyz is a dubious website that is usually opened through other scam and untrustworthy sites. Most people do not visit bitscleanutil.xyz intentionally. Currently, this page promotes a potentially unwanted application (PUA) called Super Mac Cleaner. Do trust apps advertised on dubiou
File Converter Hub is but one of many browser hijackers. It is advertised as a tool for easy and quick access to file converters, accompanied by a fake search engine (search.fileconverterhubtab.com). Due to most users installing this rogue app inadvertently, it is categorized as a PUA (potentially
"Flight Booking" is the name of a spam campaign, used to spread the Agent Tesla malware (malicious software). This spam campaign was discovered by My Online Security. To spread such malignant programs, massive scale spam campaigns are used; huge numbers of emails are sent, containing executable fi
"Randomly selected to test the new iPhone" is a phrase from a scam website that invites visitors to claim a prize. Note, this is a deceptive website and should not be trusted. Typically, these sites are opened by potentially unwanted applications (PUAs) installed on the browser or computer. Few
Amadey is malicious software categorized as a trojan. Cyber criminals can purchase Amadey on a Russian dark web forum and then use it to perform various malicious tasks: download and install (execute) other malware, steal personal information, log keystrokes, send spam from a victim's computer, an
It is a fraudulent pop-up alert, claiming that (in this case, Norton) antivirus suite subscription has expired and requires renewal. Such scam messages are displayed by various deceptive websites. These sites are rarely visited willingly, most visitors access it through unauthorized redirects. Us
thevpnsafety[.]com is one of many deceptive websites that targets mostly iPhone and iPad users, however, computer users are also targeted. This scam site is designed to display a fake virus message and trick people into installing an application that supposedly removes 'detected threats'. Neith