Hello xD makes files inaccessible by encrypting them, and changes their file extensions to ".hello". For example, it renames "sample.jpg" to "sample.jpg.hello", "1.png" to "1.png.hello". Also, Hello xD creates a text file ("Hello.txt") containing a ransom note. Screenshot of files encrypted by
Fayg2 ransomware is malicious software that encrypts files to force victims to purchase a decryption tool from the attackers. It also provides a ransom note (the "MyEY_HOW_TO_DECRYPT.txt" file) and appends a random string of characters and the ".fayg2" extension to filenames. For example, Fayg2 r
UltraSystem is an adware-type app with browser hijacker abilities. It is designed to run intrusive ad campaigns, and it can promote fake search engines. Furthermore, software products of this type - are also classified as PUAs (Potentially Unwanted Applications). It is noteworthy that UltraSyste
TheSearchMaps is a browser-hijacking extension. It promotes the thesearchmaps.com fake search engine. Due to the dubious methods used to distribute browser hijackers, they are also categorized as PUAs (Potentially Unwanted Applications). Browser hijackers (e.g., TheSearchMaps) assign fake
Quicknewtab is a browser hijacker that changes a web browser's settings. This application aims to promote quicknewtab.com - a fake search engine. Another detail about browser-hijacking apps is that users rarely download and install them knowingly. Quicknewtab sets quicknewtab.com as the ho
Belonging to the Dharma ransomware family, DC is a piece of malicious software that encrypts data (renders files unusable) and demands ransoms for the decryption. Files are appended with a unique ID assigned to the victim, the cyber criminals' email address, and a ".DC" extension. For example, a
Intercobros is designed to encrypt files and provide instructions on how to contact cybercriminals for data recovery. This ransomware creates a ransom note, a text file named "is_it_possible_return_back lost documents.txt". It also appends ".intercobros-9k7syfus" extension to filenames. For insta
OnlinePDF-Converter is a rogue browser extension promoting the onlinepdf-converter.com fake search engine. Due to this behavior, OnlinePDF-Converter is classified as a browser hijacker. Furthermore, software products of this type are considered to be PUAs (Potentially Unwanted Applications).
The purpose of HoroscopeZone is to hijack a web browser by changing some of its settings to horoscope-zone.com (a fake search engine). Additionally, this app might be designed to gather information about its users. Most users end up having their browsers hijacked inadvertently. Most browse
Hgsh is the name of ransomware belonging to the Djvu ransomware family. Hgsh encrypts files and changes their extension to ".hgsh". For example, it renames "1.jpg" to "1.jpg.hgsh", "sample.png" to "sample.png.hgsh". Hgsh provides contact information and other details in a ransom note named "_readm