We have found a number of websites whose sole purpose is to try and force an extension on anyone visiting that…
Tag: Pieter Arntz
Configuring the Windows firewall
Show of hands—How many of you have heard someone say something like this: “You don’t need an extra firewall. The one…
Fake pharma sites are getting even more obnoxious
Recently, we have noticed that fake pharma sites seem to have discovered the use of JavaScript to change the “Stay or…
Get your RAT on Pastebin
While it is not uncommon to find malware or code on Pastebin, it is a surprise to find a dropper that…
PUP Friday: Content Protector
Content Protector or Content Defender as it was called before, is an adware not to be confused with the legitimate WordPress…
Youndoo creates new Chrome profile
We have found members of the Elex family to create an extra Firefox profile and wrote about it on our blog…
Explained: WMI hijackers
Windows Management Instrumentation (WMI) hijackers are proving to be a plague to remove for the average user. Even experienced users may…
Here’s your unlimited ATM card
This is not exactly a new kind of scam, but since some genius posted this on our Facebook page we want…
Hosts file hijacks
In an earlier blog post about DNS hijacks, we briefly touched on the hosts file. The hosts file is like your…
Surfacing HTA infections
Given the recent rise in numbers of spam mails with .hta attachments, we decided to follow up on a few infections…