While investigating untrustworthy websites, our research team discovered the adsforfunrtb[.]top rogue page. After inspecting it, we learned that it promotes spam browser notifications and redirect visitors to different (likely dubious/dangerous) sites. Adsforfunrtb[.]top and analogous webpages ar
IndexerType is a rogue application discovered by our researchers during a routine inspection of file submissions to VirusTotal. Upon examination, we determined that it is yet another adware-type app from the AdLoad malware family. Advertising-supported software (adware) aims to generate revenue
Worry, also known as WhatsWrongScared, is a ransomware-type program. Our research team discovered this malicious program while inspecting new submissions to the VirusTotal platform. Ransomware operates by encrypting victims' files in order to demand payment for the decryption. On our test machine
Our researchers discovered the "VirtualShield - Your PC Is Infected With 18 Viruses" scam while investigating suspicious sites. It claims that the webpage visitor's computer is infected and urges them to renew their anti-virus subscription. At the time of research, it ran an affiliate scam endors
Our examination of the BufferView application has shown that it is adware. This type of software displays ads, and BufferView has been flagged as malicious by security vendors. As a result, its ads may be misleading and could direct users to harmful websites. It is recommended that users avoid i
We have tested the OrderPlans application and found that it is adware. Software of this type delivers advertisements. OrderPlans has been flagged as malicious by security vendors. Therefore, its ads can be deceptive and promote potentially malicious websites and applications. Users should avoid
We have inspected networkenhancecore.co[.]in and found that it hosts the "You've visited illegal infected website" scam and requests permission to show notifications. This web page can expose users to more scams, unwanted downloads, and other issues. Thus, it is advisable to close networkenhanceco
We have inspected the Optimus malware and found that it is ransomware based on Chaos ransomware. Our discovery of Optimus occurred during an examination of malware samples uploaded to VirusTotal. This ransomware encrypts and renames files (appends a random extension containing four characters), ch
Anubis is a malicious program written in the Python programming language. It is classed as a backdoor – a type of malware that opens a "backdoor" into systems and infiltrates additional malicious software. Anubis malware has been around since at least 2025. It has been linked to a threat actor du
Our researchers found the ExpandedFraction app while browsing new submissions to the VirusTotal website. After inspecting this application, we learned that it is adware from the AdLoad malware family. ExpandedFraction is designed to generate revenue for its developers through advertising.