DockModule is a rogue app that our research team found while checking out new submissions to VirusTotal. After analyzing DockModule, we determined it operates as advertising-supported software (adware) and belongs to the AdLoad malware family. Adware may not display advertisements if cer
Our team has examined this email and found that it is disguised as a letter from a company named Dynaseiki Industrial Supplies Sdn. Bhd., and contains a malicious website link. It delivers malware (clicking the link in this email downloads a malicious file). Thus, this email must be ignored.
It is a scam used to trick visitors into believing that their computers are infected and purchasing antivirus software to remove "detected" viruses. It is disguised as a security warning from the McAfee site. We have discovered this scam while examining websites that use rogue advertising networ
Our analysis of the "Xerox Multifunction Printer" email revealed that is spam operating as a phishing scam. This letter attempts to deceive recipients into providing their email account log-in credentials by claiming that they were sent a document through a service of Xerox. It must be emphasized
We discovered the AdvanceServices application while inspecting a deceptive website claiming that some installed software is outdated. After downloading and installing it on the operating system, we learned that AdvanceServices generates advertisements and has no useful features. Therefore, we co
Downloading Files is a rogue browser extension that our researchers discovered while inspecting dubious software-promoting sites. This extension is endorsed as a download management tool. After analyzing Downloading Files, we determined that it operates as advertising-supported software (adware).
Our research team found the CompellingEntry application during a routine inspection of new submissions to VirusTotal. After analyzing this piece of software, we determined that CompellingEntry is adware that belongs to the AdLoad malware family. Adware may require certain conditions to r
While inspecting new submissions to VirusTotal, our researchers found a new variant of the Rozbeh ransomware named Quax0r. We acquired a sample of this ransomware and executed it on our test system. Typically, these malicious programs alter the filenames of encrypted files; however, that is not t
Redox is the name of a stealer-type malware that our researchers found while inspecting hotspots for selling malicious software. Redox is designed to extract sensitive information from infected systems and various applications installed onto them. According to Redox stealer's promotional m
Windows-hold[.]com is a deceptive website that runs a scam similar to "McAfee - Your PC is infected with 5 viruses!". Also, it asks for permission to display notifications. We discovered windows-hold[.]com while inspecting other pages that use rogue advertising networks (illegal movie streaming, t