Globososo Virus

Posted: April 10, 2013 | Category: Browser Hijackers | Threat Level: 5/10
Globososo.com is a search engine portal that claims to organize results from popular search engines for your searches, along with also collecting some types of non-confidential information from its visitors. Although Globososo.com only was registered recently and, therefore, lacks a significant business history for analysis, SpywareRemove.com malware researchers haven't found any reason to rate Globososo.com as a malicious site. However, because there have been cases of browser hijackers causing undesirable redirects to Globososo.com, you should consider any redirecting of your browser to...

BackDoor.Bulknet.847

Posted: April 10, 2013 | Category: Backdoors | Threat Level: 6/10
BackDoor.Bulknet.847 is a backdoor Trojan that is downloaded and installed on the affected computer by another malware threat. BackDoor.Bulknet.847 opens a back door on the compromised PC. Once BackDoor.Bulknet.847 is executed, it copies itself to a certain location. BackDoor.Bulknet.847 may modify the Windows Registry so that it can run every time a PC user starts Windows. BackDoor.Bulknet.847 also shows pop-up warning messages. BackDoor.Bulknet.847 may add and run malicious files onto the affected computer. BackDoor.Bulknet.847 may attempt to steal passwords, update itself, capture...

BackDoor.Bulknet.739

Posted: April 10, 2013 | Category: Backdoors | Threat Level: 6/10
BackDoor.Bulknet.739 is a backdoor Trojan that, in conjunction with a second PC threat ( BackDoor.Bulknet.847 ) uses an infected PC's resources to send automated spam e-mail for malware distribution and other malicious purposes. In a victory for PC security, the Russian AV company known as Doctor Web recently managed to infiltrate one of BackDoor.Bulknet.739's botnet servers, allowing them to gain access to useful information on BackDoor.Bulknet.739's distribution and infection methodology. Despite this positive development, BackDoor.Bulknet.739 still is a danger to PCs that...

Searchtermresults.com

Posted: April 10, 2013 | Category: Browser Hijackers
Searchtermresults.com is a search site that's associated with pop-up attacks caused by various browser-hijacking PC threats. Because Searchtermresults.com makes unusual usage of scripted content, SpywareRemove.com malware researchers recommend browsing Searchtermresults.com with caution – even if Searchtermresults.com's history does not include any explicit signs of being used to deliver malicious content. Pop-ups associated with Searchtermresults.com and other forms of browser hijacker-related attacks always should be considered a symptom of infection by malicious software, which should...

Phoenix Exploit Kit

Posted: April 10, 2013 | Category: Malware | Threat Level: 7/10
Phoenix Exploit Kit is a package of configurable exploits that can be used to download and install malware onto the affected PC in a symptomless fashion, with these attacks usually taking the format of drive-by-download scripts that are embedded on benign but hacked websites. Although Phoenix Exploit Kit has been in the vicinity for several years, recent news implies that Phoenix Exploit Kit's development may be stunted by the arrest of its creator, a resident of Russia. While SpywareRemove.com malware researchers hold out hope that such actions will effectively block future Phoenix...

Kovter Ransomware

Posted: April 10, 2013 | Category: Ransomware | Threat Level: 10/10
Screenshot A Police Trojan that uses warning messages similar to the FBI Cybercrime Division Virus and the U.S. Department of Homeland Security Virus , the Kovter Ransomware claims that the Kovter Ransomware has locked your PC due to the presence of illegal content in your online history. The Kovter Ransomware scours your web-browsing history for any pornographic websites and displays one such website (if any are applicable) in its pop-up. In reality, the Kovter Ransomware is unrelated to any of the legal agencies listed in its pop-up, and any money you pay to unlock your PC will be sent...

Appround.net

Posted: April 9, 2013 | Category: Browser Hijackers
Appround.net is a site that's dedicated to marketing PC Performer, a Potentially Unwanted Program that includes numerous characteristics of adware-based PC threats, even though PC Performer claims to be able to improve your computer's performance by cleaning junk files. Besides the nuisance posed by PC Performer, there's an ongoing set of browser hijackings that promote Appround.net and PC Performer through pop-ups and unwanted redirects. Even though a brush with Appround.net isn't likely to cause any major damage to your computer, browser hijackers linked to Appround.net, as well as PC...

Onlinefwd.com

Posted: April 9, 2013 | Category: Browser Hijackers
SpywareRemove.com malware research team has seen a rise in browser hijacking attacks that force your browser to load unwanted websites like Onlinefwd.com. Browser hijackers for Onlinefwd.com most likely are using concealed infection vectors (such as drive-by-downloads that are launched through compromised advertising networks and/or websites), and aren't likely to give you any kind of visible installation choices as they infect your computer. Both Onlinefwd.com and browser hijackers related to Onlinefwd.com are dangerous for your PC, and anti-malware applications should be used to disinfect...

TR/Sirefef.A.77

Posted: April 9, 2013 | Category: Trojans | Threat Level: 9/10
TR/Sirefef.A.77 is a Trojan that is not able to propagate on its own. TR/Sirefef.A.77 is either downloaded by the computer user or is downloaded by another PC threat. The program, which drops another program is usually referred to as a vector. In this case, the vector is extremely dangerous rootkit of Zero Access family. TR/Sirefef.A.77 is virtually rather added to the hard drive than installed into the operating system. TR/Sirefef.A.77 stays beyond operating system so that a security tool functioning within operating system only cannot see the malware threat. TR/Sirefef.A.77 is able to...

Trojan-SkyHook

Posted: April 9, 2013 | Category: Trojans | Threat Level: 9/10
Trojan-SkyHook is a browser hijacker that promotes phishing sites – hostile sites that attempt to steal confidential information by posing as legitimate websites. Currently, Trojan-SkyHook's attacks appear to be targeted at residents of Russia, with Hosts file changes that explicitly single out popular .ru sites for redirects to malicious sites, but PC users in other countries also may be impacted negatively by a Trojan-SkyHook infection. Trojan-SkyHook is distributed in a ZIP file that's specially-encoded for a simple defense against analysis by some anti-malware products, and...

Win32/Gys.A Trojan

Posted: April 9, 2013 | Category: Trojans | Threat Level: 9/10
Win32/Gys.A Trojan is a Trojan that spreads via a spam email message. The spam email that infects vulnerable PCs with Win32/Gys.A Trojan has the subject 'Your private photos are there for anyone to see. why??'. The fake email message contains the attachment, which is a ZIP archive named 'EPS00348.zip'. The archive contains an executable file named 'EPS00348.exe'. The icon of the malicious file looks like a very nice picture of nature; Green grass and blue sky, which most likely were created in order to confuse and/or steal the affected PC user's attention. The file is detected as...

Savepath Deals

Posted: April 9, 2013 | Category: Adware | Threat Level: 2/10
Savepath Deals is an adware program that inserts advertisements into your Web pages, supposedly to improve your shopping experience by offering discounts and deals. However, Savepath Deals's advertising content doesn't always appear to be sorted according to preferential price-checking methodology and occasionally includes irrelevant or even malicious advertisements (such as fake Windows Media Player updates). Although coming into contact with the Savepath Deals website or sites related to Savepath Deals is not very dangerous, you should remove Savepath Deals from your PC with reliable...

Hao123 by Baidu

Posted: April 9, 2013 | Category: Browser Hijackers | Threat Level: 1/10
Hao123 by Baidu is a site and service that is offered through the popular Chinese Baidu search engine site. Hao123 by Baidu may be loaded as a newly set default home page on your computer. This action may be due to you previously downloading and installing a freeware program downloaded from the internet. Loading of Hao123 by Baidu may take place during startup of windows causing a browser window to be opened. Unwanted actions performed by Hao123 by Baidu may lead you to questionable sites or redirects to pages that attempt to display advertisements or random links. Removal of the files...

Troj/Agent-ABCT

Posted: April 8, 2013 | Category: Trojans | Threat Level: 9/10
Troj/Agent-ABCT is a Trojan that is included in a Skype email malware attack, which targets German PC users. The spam Skype email, which has the subject line written in German 'Wir haben Ihre Bestellung geliefert' (Translation into English: 'We have delivered your order'), carries a ZIP file attachment, Troj/Agent-ABCT. The unsolicited Skype email states that details of the order can be found in the attached file. The ZIP file, contains a file called 'Die Einzelheiten Ihres Eiknkaufs.pdf.exe', detected as Troj/Agent-ABCT, which is created to use the so-called double-extension trick to...

FindWide

Posted: April 8, 2013 | Category: Adware | Threat Level: 5/10
Screenshot FindWide is a browser hijacker that, once installed on the infected computer, adds a browser add-on on the compromised Internet browser. FindWide installs itself on the targeted PC together with numerous shareware or freeware applications. Usually, the option to install a toolbar of FindWide is pre-checked and even invisible during the common installation process. FindWide hijacks search results in any legal search engine and redirect victims to its own website called search.findwide.com. Search.findwide.com is supported by FindWide, which displays pop-up ads from Microsoft and is...

Coupon Genie

Posted: April 8, 2013 | Category: Adware | Threat Level: 2/10
Screenshot Coupon Genie is an adware program that is created by '215 Apps'. Coupon Genie displays offer coupons, pop-up advertisements and sponsored links via a pop-up box on Walmart, Amazon, Ebay and other online shopping websites that are visited by web users. These pop-up advertisements will be displayed as boxes, which contain a variety of coupons that are available or as underlined keywords, which, when clicked, will show a pop-up advertisement that declares it is sent to the victimized PC user by Coupon Genie. Coupon Genie is an extension for Internet Explorer, Mozilla Firefox and Google...

Google WebHP Virus

Posted: April 8, 2013 | Category: Viruses | Threat Level: 8/10
As a browser hijacker that's unaffiliated with the famous search engine in its name, the Google WebHP Virus redirects its victims – rather unusually – towards a legitimate sub-domain of Google. These redirect attacks appear to be ruses to misdirect victims into trusting the results, wherein the Google WebHP Virus may subsequently create redirects to other sites less trustworthy than Google such as searchab.com . While contact with Google in any form, including through a Google WebHP Virus's attack should not hurt your PC, SpywareRemove.com malware researchers do consider the Google...

Websearch.helpmefindyour.info

Posted: April 8, 2013 | Category: Browser Hijackers
Websearch.helpmefindyour.info looks like a search site but does not include any functional search features of its own, preferring to hand the job of finding search results off to other search sites. What brings Websearch.helpmefindyour.info to the eyes of SpywareRemove.com malware experts is its tendency to be promoted by browser hijackers and PUPs that change your browser's settings to force it to load Websearch.helpmefindyour.info. These attacks always should be considered at least potentially dangerous to your PC, even if Websearch.helpmefindyour.info, itself isn't notably malicious. To...

Portaldosites.com

Posted: April 8, 2013 | Category: Browser Hijackers
Screenshot Portaldosites.com is a search site that redirects all of its queries towards Yahoo.com – presumably as a cheap way of acquiring traffic and any associated revenue. Portaldosites.com is promoted through its browser add-on, which, in some cases, has been found to be installed without the PC user's permission and exhibits an exceptional resistance to being removed. These traits force SpywareRemove.com malware researchers to label Portaldosites.com's browser plugin a PUP (or Potentially Unwanted Program). If your browser loads content related to Portaldosites.com without your consent, or...

Abu Dhabi Police GHQ Ransomware

Posted: April 8, 2013 | Category: Ransomware | Threat Level: 10/10
Screenshot The Abu Dhabi Police GHQ Ransomware is an extension of a prominent Police Trojan family into the region of the Middle East, with designs, obviously, on residents of Abu Dhabi. As a quick copy-paste job of past Police Ransomware Trojans, the Abu Dhabi Police GHQ Ransomware displays well-defined characteristics like a fake police alert, ransom attempts through inappropriate cash transaction channels, and attacks that block you from using other Windows applications. Even though the Abu Dhabi Police GHQ Ransomware's pop-up claims to be sent by Abu Dhabi's local police as punishment for a...
previous  320  321  322  323  324  325  326  327  328  329  330  331  332  333  334  335  336  337  338  339  340  next     total items: 20612
Home "Articles"