Win32:Evo-gen is a virus that opens a backdoor on the affected computer system. Win32:Evo-gen may enable attackers to gain full remote access and control over the compromised PC. Once Win32:Evo-gen invades the vulnerable computer, it can accomplish numerous malicious actions that may be damaging to the computer system. Win32:Evo-gen can steal personal information from the victimized machine. Win32:Evo-gen can make changes to system files, log keystrokes, cause identity theft, and exploit the infected computer for a 'bot' operation. Win32:Evo-gen can also be detected as a Trojan...

'Metropolitan Police Total Policing' Ransomware is a fake alert-issuing ransomware Trojan that claims to block your applications and the Windows desktop due to copyright infringement-related crimes that supposedly have been committed through your computer. Despite its pretensions of being a legal authority, 'Metropolitan Police Total Policing' Ransomware is a criminal program that can't detect crimes or monitor such activities. Since SpywareRemove.com malware researchers have confirmed that there's no point in paying 'Metropolitan Police Total Policing' Ransomware's fraudulent legal...

Softonic Hijacker is a browser extension that enters a targeted computer without an affected PC user's users permission. Softonic Hijacker is a potentially dangerous program as it raises the chances of getting the vulnerable computer system affected by malware threats and disturbs the victim's normal activity. Softonic Hijacker changes the default homepage and the default search engine to Search.softonic.com, which doesn't provide PC users with the same search results as most of the legal search engines because it is a misleading search system. Softonic Hijacker changes search results in...

We have already made assessments of what to expect in the year 2013 when it comes to new emerging scams and how to help prevent identity theft . The top malware threats to be on the lookout for in 2013 will go hand-in-hand with keeping yourself and your own family protected as we delve into a new year with new types of malware threats.

Trojan:Win32/Reveton.P is a ransomware Trojan that affects computer users from certain countries. Trojan:Win32/Reveton.P locks the hacked computer and displays a localized web page that covers the desktop and demands a ransom from affected computer users to be paid for the alleged violation of laws to unlock the machine. Trojan:Win32/Reveton.P may make system changes to the infected computer that make it difficult for PC users to download, install, run, or update anti-virus software. When installed, Trojan:Win32/Reveton.P makes system changes by dropping potentially malicious files....

TrojanDropper:Win32/Kanav.E is a Trojan that adds malicious files onto the infected computer system. TrojanDropper:Win32/Kanav.E may occur on the targeted computer with the same name as a legitimate system file called 'lpk.dll'. The malicious file of TrojanDropper:Win32/Kanav.E will exist in parallel with the genuine file, so that both files can execute on the corrupted PC. Once run, TrojanDropper:Win32/Kanav.E will add a file 'apple.exe' into the same folder that it it located in, and run the file, which may be found as TrojanDownloader:Win32/Kanav.F.

Backdoor.Sosork is a backdoor Trojan that opens a back door on the affected computer system. Backdoor.Sosork is usually downloaded by a malicious RTF document that exploits a vulnerability, such as the Microsoft Windows Common Controls ActiveX Control Remote Code Execution Vulnerability. Once executed, Backdoor.Sosork creates potentially malicious files on the infected computer. Backdoor.Sosork connects to a command-and-control (C&C) server. Backdoor.Sosork gathers the information including CPU, memory and computer name and transmits it to the C&C server. Backdoor.Sosork then enables...

HTML/Redir.EB.8 is a JavaScript Trojan that is a component of a spam malware campaign linked to Craigslist and eFax Corporate. HTML/Redir.EB.8 is distributed via spam eFax Corporate and Craigslist emails. Spammers are using a combination of social engineering methods to fool attacked computer users into opening emails that incorporate malware infections, namely HTML/Redir.EB.8. The bogus emails are allegedly sent by Craigslist via eFax Corporate. The fake emails, which are not connected with either Craigslist or eFax, announce recipients that they've received a fax of 24 pages. However,...

JS/Column.EB.1 is a JavaScript Trojan that is included in a spam malware campaign related to Craigslist and eFax Corporate. JS/Column.EB.18 spreads via bogus eFax Corporate and Craigslist emails. Cybercrooks are using a combination of social engineering techniques to dupe affected PC users into opening emails that carry malware, specifically JS/Column.EB.18. The spam emails supposedly come from Craigslist that are sent via eFax Corporate. The unsolicited email messages, which are not associated with either Craigslist or eFax, notify recipients that they've received a fax of 24 pages....

Pesky is a worm that attempts to distribute itself through Skype messages that automatically target any known contacts on the current Skype user's list. Additionally, a separate worm, Phorpiex , also may install Pesky on a PC that it's already compromised. Currently, SpywareRemove.com malware researchers rate Pesky as a low-level threat due to its lack of major functions besides self-propagation. However, because Pesky may be accompanied by Phorpiex and other PC threats, they also recommend that you use thorough anti-malware scans from suitable programs to remove Pesky and catch any...

Kepsy is a worm that usually is installed as part of a component of Bublik and other multiple-component PC threats. As just a small tool in a large toolkit of software that's devoted to attacking your PC, Kepsy's main duty is to assist with Bublik's distribution by spamming instant messenger communications with links to Bublik enclosed within them. Kepsy also may interfere with other features of Skype to avoid detection. SpywareRemove.com malware researchers recommend that you avoid any contact with a Kepsy-infected PC, which usually will be infected by Bublik and, potentially, other...

Bublik is a general-purpose PC assailant that contains attributes of a worm, a backdoor Trojan and a Trojan downloader. Besides its own attacks, Bublik also benefits from the assistance of Kepsy, a related worm that helps distribute Bublik through instant messengers. Because Bublik is designed to compromise your PC to the highest extent possible, SpywareRemove.com malware experts strongly urge you to use proactive defenses against potential Bublik infections and, whenever it's necessary, make use of reliable anti-malware programs to remove Bublik if you do have any reason to think that...

Medfos is a family of Trojans with both browser-hijacking and malware-downloading functions, most recently distributed by malicious sites claiming to offer software updates for programs like Adobe's Flash and the Google's Chrome browser. Unusual browser behavior – and, in particular, redirects to unfamiliar sites – are the top symptoms of Medfos infections. However, SpywareRemove.com malware experts stress that Medfos also may conduct activities that don't display symptoms, such as installing spyware or other forms of harmful software. Because Medfos's most recent distribution...

Trojan.Gamarue.E is one of the newer variants of Gamarue -based worms to make noise throughout cyberspace, abandoning old scams of fake hotel reservations to indulge in spam e-mail messages that claim to carry a set of mobile phone MMS-archived pictures. Current Trojan.Gamarue.E attacks appear to center around Britain and the Netherlands, and Trojan.Gamarue.E includes the same types of invasive backdoor-based attacks as other versions of Gamarue. As a Trojan that may install other forms of malware, Trojan.Gamarue.E infections should be dealt with as quickly as possible, and ideally with...

PUP.Crossfire.SA is a potentially unwanted program/adware that takes advantage of other programs to spread a copy of itself to targeted computers. PUP.Crossfire.SA comes bundled with these applications so that when a PC user installs it, PUP.Crossfire.SA is also loaded on the PC. PUP.Crossfire.SA does not show any signs computer users could notice throughout the installation process. PUP.Crossfire.SA encompasses minimal command to run itself on the corrupted machine. Once installed, PUP.Crossfire.SA is added and launched as a plug-in to most affected web browsers. PUP.Crossfire.SA can...

Win32:Crypt-OUI is a Windows Trojan that can damage the affected computer system if not removed from the PC immediately after detection. Win32:Crypt-OUI is able to affect and destroy system files on the corrupted PC. Win32:Crypt-OUI spreads itself to vulnerable computers by attaching itself to other applications that PC users can download from public servers. Win32:Crypt-OUI can also circulate via malicious spam email messages sent by attackers. Web-links coming from suspicious sources can direct the web browser of the affected computer to a malicious website that downloads and installs...

Trojan:Win32/Grymegat.B is a Trojan that is not able to propagate on its own. Trojan:Win32/Grymegat.B may perform numerous actions chosen by an attacker on an infected computer system. Once installed on the targeted PC, Trojan:Win32/Grymegat.B makes system changes by dropping potentially malicious files and making registry modifications. Trojan:Win32/Grymegat.B modifies the registry entries so that its copy can be executed automatically every time you start Windows. Trojan:Win32/Grymegat.B changes system security settings by disabling the LUA (Least Privileged User Account), also known...

Trojan:Win32/Grymegat.A is a ransomware Trojan that locks a targeted computer and displays a webpage including a bogus full-screen image/alert that covers the whole desktop. The fake pop-up notification distributed by Trojan:Win32/Grymegat.A pretends to come from a legal institution, such as the Federal Bureau of Investigation (FBI), and accuses PC users of the imaginary downloading and spreading of illegal material. Trojan:Win32/Grymegat.A demands a ransom from victims to be paid via the legitimate payment and financial transfer service Green Dot MoneyPak to unlock the computer....

Trojan:Win32/Grymegat is a group of Trojans that include both ransomware Trojans and backdoor Trojans with potential malware-downloading capabilities. Symptoms of Trojan:Win32/Grymegat attacks may include fraudulent FBI-themed pop-up alerts, an inability to access your desktop, blocked applications and/or disabled administrator account-based security features. Variants of Trojan:Win32/Grymegat are specific to Windows and are unable to affect other OSes like Linux or Mac, although those operating systems are vulnerable to similar, albeit distinct PC threats. As a malicious and illegal...

PokerAgent is a Trojan that specializes in stealing credentials for the well-known social networking website of Facebook, with over ten thousand confirmed account hijacks at this time. So-named for its capacity of taking advantage of the financial and account-related features of Zynga Poker, PokerAgent is a particular concern for Israel, which has inadvertently been the host for the greatest numbers of PokerAgent-infected PCs. PokerAgent also is capable of using compromised Facebook accounts to post malicious content, and Spywareremove.com malware researchers urge anyone who sees such...