While investigating new submissions to VirusTotal, our researchers discovered the @BLOCKED ransomware. This malicious program encrypts data and demands ransoms for its decryption. Once we launched a sample of this ransomware on our testing system, it began encrypting files and appended their titl
Evnilost[.]xyz is a misleading website promoting the "McAfee - Your PC is infected with 5 viruses!" scam to deceive visitors. It presents fake virus alerts to persuade users to purchase legitimate software. Moreover, the site asks for authorization to exhibit dubious notifications. Evnilos
PennyWise is the name of malware designed to steal sensitive information from infected computers. Once installed on a system, information stealer malware can collect a wide range of data, such as login credentials, credit card numbers, social security numbers, and other personal information.
Our research team found the kennu[.]click rogue page while investigating untrustworthy websites. It operates by promoting scams, pushing spam browser notifications, and redirecting visitors to different (likely unreliable/dangerous) sites. Most users enter webpages like kennu[.]click through redir
Totalprotection-2023[.]store is a rogue webpage that we discovered while inspecting suspicious sites. It is designed to promote scams and browser notification spam. Additionally, totalprotection-2023[.]store can redirect users to other (likely untrustworthy/harmful) websites. Visitors to rogue pa
After examining this scam, we learned that its purpose is to trick unsuspecting users into calling a fake technical support number. The page running this scam shows multiple deceptive messages claiming that a computer is infected and urging to contact "Windows Support". Users should ignore this sc
After inspecting the "Microsoft Outlook Mailbox Configuration" email, we determined that it is spam. The letter is presented as a notification regarding the recipient's Microsoft Outlook email client configuration. This phishing mail aims to trick recipients into disclosing their email account log
Upon analyzing the HelperFormat application, our team has concluded that it generates advertisements, leading us to categorize it as a typical form of adware. Another detail regarding HelperFormat is that we found it while examining deceitful websites. Interacting with ads shown by Helpe
Our examination of reliablepcsearch[.]com has revealed that the website promotes the "McAfee - Your PC is infected with 5 viruses!" scam and requests permission to display untrustworthy notifications. It is important to understand that none of the messages displayed on this website are authentic.
Our research team discovered the Volume Booster Max browser extension while inspecting scam websites. This piece of software is presented as a tool capable of boosting the volume of audio played via browsers. However, our inspection of this extension revealed that it operates as advertising-suppor