Upon examining online-deal[.]click, we found that it is a deceptive website running a scam similar to "Your PC is infected with 5 viruses!". Additionally, online-deal[.]click wants to show notifications. We discovered online-deal[.]click while inspecting various pages that use rogue advertising ne
In our examination of pages associated with dubious advertising networks, we encountered checkrobotpage[.]online. Our findings revealed that this website uses a clickbait strategy to mislead visitors into granting notification permission and redirects them to fraudulent websites. Therefore, it is
JSOutProx is a JScript-based Remote Access Trojan (RAT). Malware within this classification operates by enabling remote access and control over infected machines. RATs tend to be highly multifunctional pieces of software capable of performing various actions. JSOutProx has been in use since at le
ObserverStealer is an information-stealing malware. It is available for purchase at a price of $150 per month, targeting Windows operating systems from Windows 8.1 to Windows 11. The creators of ObserverStealer claim that the malware is still in Beta, indicating ongoing development and potential f
Securecaptcha[.]top is a rogue page that promotes browser notification spam and redirects visitors to other (likely untrustworthy/malicious) sites. Our research team discovered this webpage while investigating suspicious websites. Most visitors to pages like securecaptcha[.]top access them via re
During our examination of landscapestab.com, we determined that it operates as a fake search engine that displays results sourced from another search engine. Fake search engines like landscapestab.com are typically promoted through browser hijackers, which alter the settings of web browsers.
Upon careful examination, we have determined that the email in question has been crafted by scammers who impersonate an email service provider with malicious intentions. Their objective is to deceive recipients into divulging sensitive information on a fraudulent page (a phishing site). Consequent
While analyzing newly submitted samples on VirusTotal, our researchers recently encountered the SearchEmpire application. After thoroughly examining the software, we have confirmed that SearchEmpire operates as adware. Its primary function is to display advertisements and may possess other poten
We found the allhypefeed[.]com rogue page while reviewing untrustworthy websites. It operates by endorsing spam browser notifications and redirecting users to other (likely dubious/malicious) sites. Most users access webpages like allhypefeed[.]com via redirects generated by sites that employ rogu
Our research team found the EliteMaximus rogue application during a routine investigation of new submissions to VirusTotal. Following our examination, we determined that this app is adware belonging to the AdLoad malware family. EliteMaximus runs intrusive advertisement campaigns and collects pr