Adqor.io is the address of a fake search engine that our researchers discovered while analyzing the Guard Search browser hijacker. This rogue extension changes browser settings to generate redirects landing on adqor.io. It is noteworthy that other browser hijackers might endorse this fraudulent pa
Guard Search is a rogue browser extension that modifies browser settings to promote (through redirects) the guardsearch.adqor.io fake search engine. Due to this behavior, Guard Search is classed as a browser hijacker. Note that this extension could endorse other websites and vice versa for guardse
Our researchers found ElementaryInterface while investigating new submissions to the VirusTotal site. After analyzing this piece of software, we determined that it is adware belonging to the AdLoad malware family. Adware is designed to run intrusive ad campaigns. Adware displays ads prom
Upon analyzing yableenta[.]com, we discovered that it uses a deceptive technique to obtain permission to show notifications to users. It is highly advisable to avoid permitting such pages to send notifications. If a site like yableenta[.]com is already allowed to deliver them, this permission shou
While browsing new malware submissions to VirusTotal, our researchers discovered Pomoch. This malicious program belongs to the MedusaLocker ransomware family. We executed a sample of Pomoch ransomware on our testing system, upon which it encrypted files and altered their filenames. Original title
Our inspection of unassise[.]com has revealed that it uses clickbait to trick visitors into granting it permission to send notifications to their devices. Users should avoid visiting pages like unassise[.]com and remove any permissions that have already been granted to them. On unassise[.]
After reading the "Grants And Loans By The World Bank" email, we determined that it is spam. The letter states that the recipient is eligible to receive a grant or loan from a project formed in response to current world events. It must be stressed that the information in this email is false, and
During our analysis of weseeitnow[.]com, we learned that the purpose of this site is to receive permission from visitors to show notifications. This site uses a deceptive method to achieve its goal. Users should be cautious when encountering pages like weseeitnow[.]com and never allow them to show
While examining the email, we discovered that it is a scam commonly referred to as a sextortion scam. The scammers behind such emails usually aim to extort money from recipients by claiming that they have obtained some humiliating or similar material. Any claims in such emails are false and should
After examining the FractionInterface application, we found that it exhibits adware characteristics. This app shows various advertisements, which can lead users to potentially harmful sites. We strongly recommend avoiding the installation of apps like FractionInterface and steering clear of any