'Membership Rewards' Pop-Ups

'Membership Rewards' Pop-Ups Description

The 'Membership Rewards' pop-up windows in your browser may not come from trusted advertisers. The 'Membership Rewards' pop-up windows may be generated on phishing pages, which you may open when you click on corrupted ads or are infected with a browser hijacker. Computer users that are interested in receiving the gifts promised by the 'Membership Rewards' should know that the gifts are fake and used as bait. You will not receive a free iPhone 7, Apple iMac or an Amazon Gift Card because you opened a random page on the Internet. The 'Membership Rewards' pop-ups may appear when you click on advertising banners and click-bait ads. The domains used to host the 'Membership Rewards' messages are flagged by VA vendors as phishing pages and should not be trusted. We have seen a campaign using the 'Membership Rewards' slogan been originate from the 184.50.238.225 IP address. The IP address showed that Web surfers might find content associated with the 'Membership Rewards' pop-ups at the following domains:

  • 24b9c2b31b06c472fcca-681664e3535063ecf3a37aa4fc97770c.r32.cf5.rackcdn.com
  • a46af83c1c5379e3c17a-2dcee0ae44e156a948c4a420d0839111.r97.cf5.rackcdn.com
  • att.giveaways-news.com
  • english1.gift-today57.online
  • malaysia.phoneprotect62.online
  • pc.avnotification.com/pcs/jp
  • portuguese.gift-today22.online
  • three.com-update1.co/uk

Browser hijacking software that runs as add-ons and extension for Google Chrome, Internet Explorer, Mozilla Firefox, Edge and Opera may be used to redirect users to the 'Membership Rewards' notifications. When the 'Membership Rewards' notifications appear, the Web browser may freeze and allow interaction with the tab you are on. That way, users are prevented from closing the browser and can't check the legitimacy of the message on their screen by navigating to Google and other search services. Experts have seen the following text placed on the 'Membership Rewards' pop-ups:

'Membership Rewards 2017
Congratulations user!
You have been chosen! You won one of the following gifts: iPhone 7 Apple iMac or an Amazon Gift Card !
Click OK to claim your prize before anyone else will claim it!'

The OK button reveals a white page featuring the Windows OS logo and a short message. Web surfers that decide to try their luck with the 'Membership Rewards' are suggested to act according to the following instructions:

'Congratulations user, you are today's Lucky Visitor!
Every day, we randomly select 10 lucky visitors who get a gift from our sponsors.
It’s our way of saying thank you for being a [the name of your Internet provider] user.
You won one of the following gifts: iPhone 7 , Apple iMac or an Amazon Gift Card To win, you need to answer the following 3 questions correctly.
Note: 10 random visitors got this invitation, and there only a few gifts available.
You only 1 minutes and 39 seconds to answer correctly the following 3 simple questions before the gift will be awarded to someone else. Good luck!'

As stated above, the gifts promised by the 'Membership Rewards' are not real. Web surfers are lead to a page where they are welcomed to input contact information and confirm their identity by using their phone number and credit card number. Needless to say, you follow through with the directions given on the 'Membership Rewards' pop-ups you might be subscribed to premium phone services for an indefinite period and provide untrusted advertisers with access to information like your address and P.O. Box. It is not a good idea to interact with the pages that host content related to the 'Membership Rewards' notifications. You may want to use a reliable anti-spyware instrument to remove executable and tracking cookies associated with the 'Membership Rewards' pop-ups. The phishing domains linked to the 'Membership Rewards' messages may include offers to download software. AV vendors are known to detect programs related to 'Membership Rewards' as:

  • Adware.Shopper.993
  • MultiDropper_c.AHGN
  • PUA/Vbates.311096.1
  • PUP.Optional.PitayaTech
  • TrojWare.Win32.Injector.DSTF
  • Trojan.Agent.KI
  • Trojan:W32/Bepush.B
  • Win32.Application.Agent.MUZOY1
  • Win32:Malware-gen

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.


HTML is not allowed.