Protocpz[.]xyz is a rogue page that we discovered while investigating dubious websites. It operates by pushing browser notification spam and redirecting visitors to other (likely unreliable/harmful) webpages. Users primarily access pages like protocpz[.]xyz via redirects generated by sites employi
During a routine investigation of suspicious websites, our research team discovered the iamadsnews[.]com rogue page. It is designed to promote browser notification spam and generate redirects to different (likely untrustworthy/harmful) sites. Most users enter these webpages via redirects caused by
Our research team discovered the RemoteManager app while inspecting new submissions to the VirusTotal website. After we investigated this piece of software, we determined that it is adware. RemoteManager belongs to the AdLoad malware family. Adware stands for advertising-supported softwa
Ad Free Web is promoted as an ad blocker for Google Chrome that allows users to browse without interruption. However, our examination of the app showed that the app displays advertisements (contrary to its advertised functionality). For this reason, we classified Ad Free Web as adware. Additionall
After examining the "Your Outlook Is Full" email, we determined that it is spam. The letter makes false claims regarding the recipient's Outlook storage having reached capacity. The goal is to trick users into disclosing their account log-in credentials. It must be stressed that this mail is fake,
During our examination of malware samples submitted to VirusTotal, we came across Tcvjuo, a ransomware variant associated with the Snatch family. Tcvjuo is designed to encrypt files, append its extension (".tcvjuo") to the filenames of encrypted files, and generate a ransom note named "HOW TO REST
During our investigation of mithrilminer[.]top, we uncovered its deceptive practices of coaxing visitors into granting permission to show notifications. Additionally, the website redirects users to similar pages. Our team encountered mithrilminer[.]top while analyzing websites associated with ques
While inspecting malware samples submitted to VirusTotal, we discovered Hgjzitlxe, which is ransomware belonging to the Snatch family. We found that Hgjzitlxe encrypts files, appends its extension (".hgjzitlxe") to filenames, and creates a ransom note ("HOW TO RESTORE YOUR HGJZITLXE FILES.TXT").
During our investigation of nighridadered[.]com, we found that the website employs a clickbait technique to entice visitors into subscribing to its notifications. Furthermore, nighridadered[.]com may redirect users to unreliable websites. As a result, it is strongly recommended to avoid accessing
Our research team discovered the news-dudafa[.]com rogue webpage during a routine investigation of untrustworthy sites. This page is designed to push browser notification spam. It can also redirect users elsewhere (likely unreliable/hazardous websites). Most visitors to webpages like news-dudafa[