We have discovered the PDFEditor application while checking the samples submitted to VirusTotal. Our team has tested PDFEditor and found that it has the qualities of adware - it is an advertising-supported application. Although, it is promoted as a PDF editor - a tool that allows users to edit PDF
We have discovered the Farattack ransomware while inspecting the samples that have been submitted to VirusTotal. During the analysis, we have found that Farattack has three main qualities: it encrypts files, appends the ".farattack" extension to filenames, and creates the "How_to_recovery.txt" tex
Qqqr is the name of ransomware belonging to a family of ransomware called Djvu. We have discovered this ransomware variant while examining the samples submitted to VirusTotal. After analyzing the Qqqr ransomware, we have found that it encrypts files, appends its extension (".qqqr") to filenames, a
Flv3mp3[.]com is an illegal audio (MP3) file downloading site that allows users to convert YouTube videos (via links) into said files. Our researchers found this website while inspecting shady pages. Like most sites that offer illegal/dubious services, flv3mp3[.]com uses rogue advertising networks
Our team has examined the protective-system[.]com website and found that it uses scare tactics to trick visitors into purchasing antivirus software. It also asks for permission to show untrustworthy notifications. We have discovered protective-system[.]com while visiting pages that use rogue adver
We have discovered the gomusic[.]info page while visiting websites that use questionable advertising networks. At the time of the research, gomusic[.]info displayed a fake CAPTCHA and redirected to another similar site. Typically, websites of this type are promoted through illegal movie streaming,
DefenderBadUrl is a browser extension promising to prevent access to suspicious/malicious sites. Our researchers have determined that this extension operates as adware. It runs intrusive advertisement campaigns and spies on users' browsing activity. While DefenderBadUrl displayed advertise
Point dark is the name of a rogue browser extension endorsed as a tool enabling dark mode for simple-design websites. Our researchers have determined that it is a browser hijacker. Additionally, we have observed it promoting the ytood.com fake search engine. Furthermore, point dark has data tracki
Our team has discovered the Ad 'n Popup-Blocker browser extension while visiting a deceptive website offering to download an application that is supposed to block ads and pop-ups. We have tested this app and found that it generates advertisements, which is the opposite of blocking ads. Thus, we ca
Our research team detected silverline-updates[.]com when researching rogue websites. This page operates by promoting browser notification spam, and it can redirect visitors to other dubious/malicious sites. Most visitors to websites like silverline-updates[.]com are redirected to them by pages tha