Troj/Bredo-AEG is a Trojan that's distributed in fake airline e-mail messages that are spammed out to seemingly random targets. Like the majority of Trojans from the Bredo category, Troj/Bredo-AEG appears to be purposed to compromise the infected PC's security and may be used in backdoor attacks that can allow high-level PC threats to be installed without your permission, amongst other likely problems. Because Troj/Bredo-AEG requires you to download and launch a malicious file attachment for its installation, SpywareRemove.com malware analysts have found the best way to protect your...

Trojan.Agent/Gen-Festo is a Trojan that propagates via bogus emails supposedly coming from Air Canada. The unsolicited Air Canada email that is used to spread Trojan.Agent/Gen-Festo shows a falsified id of a sender 'Air Canada tickets@aircanada.com' together with a subject line 'Your Order#74267102 - PROCESSED', the spam email, addressing the PC user as customer, announces that there has been a perfect processing of the order. Respectively, the details are: Flight Number: TB739 highlight.2CA, Electronic 74267102; Date and Time: 6th December 2012 at 10.30am; Leaving Toronto; and Ticket...

Trojan-Spy.Win32.Zbot.gtvm is a variant of Zeus, a Trojan that's especially noted for its widespread nature, association with Blackhole Exploit Kits and complicity in attacks that steal bank account information. Spam e-mail messages are the main infection vector for Trojan-Spy.Win32.Zbot.gtvm, which is installed after victims click a mislabeled that's disguised to look as though it's pointing the official website for the Air Canada airline. Like any major variant of Zeus , Trojan-Spy.Win32.Zbot.gtvm uses advanced methods to avoid being seen while Trojan-Spy.Win32.Zbot.gtvm reduces...

Troj/BatDel-B is a technical identification for various components of the Batchwiper Trojan, including its Trojan dropper and an updated variant of Batchwiper that deletes files more regularly than previous versions. Even though Troj/BatDel-B isn't an especially advanced PC threat, Troj/BatDel-B does have a meaningfully dangerous payload: the ability to delete files automatically at pre-specified times. SpywareRemove.com malware research team especially recommends that PC users in the Middle East practice good anti-malware habits to protect their computers from Troj/BatDel-B, which has...

In attacks that echo back to the Shamoon worm variant of Disttrack , Batchwiper is a new Trojan that specializes in Iran-focused attacks for deleting large swathes of files on infected PCs. Batchwiper is most likely being distributed through removable devices, such as USB thumb drives, although other infections vectors also are entirely possible. Due to its the general lack of sophistication of its code, Batchwiper doesn't appear to be related to advanced industrial saboteur-based malware of previous Iran-targeting attacks, but SpywareRemove.com malware researchers, nonetheless, warn...

PWS:HTML/Phish.EB is a password-stealing Trojan that propagates via a malicious website, known as a phishing page (an HTML page), that hides itself as a genuine Lloyds TSB bank website. The phishing page is usually attached to a spam email, which urges the affected PC user to click and open it. PWS:HTML/Phish.EB attempts to steal sensitive and personal financial information from victims to perform fraud. The fake email message, which is used to spread PWS:HTML/Phish.EB asks the recipient to fill out his/her details including online banking or credit card details in a form on a fraudulent...

PWS:Win32/Zbot.gen!AK is Trojan that allows attackers to gain unauthorized remote access and control of the infected computer, and steals personal information, such as online banking and shopping passwords, email credentials and network information from victims. PWS:Win32/Zbot.gen!AK is distributed and installed on the affected computer by other malware threats, downloaded as a payload for exploit kits such as blackhole, detected as Blacole, or spammed out attached to email. Once executed, PWS:Win32/Zbot.gen!AK creates a modified copy of itself with a randomly-generated file name in the...

Trojan:Win32/Startpage.UY is a Trojan that changes the home page and search settings for the hacked web browser such as Google Chrome, Internet Explorer, Mozilla Firefox and Opera. Once installed on the affected computer, Trojan:Win32/Startpage.UY makes system changes by setting the affected web browser's default start page and search engine to http://ecostartpage.com. Trojan:Win32/Sirefef!cfg may be inadvertently downloaded and executed, thinking it is a legal program or file. After Trojan:Win32/Startpage.UY has performed its payload, it downloads the certain file, which deletes its...

Trojan:Win32/Sirefef!cfg is a rootkit Trojan that is created of many components. Trojan:Win32/Sirefef!cfg can be installed on the vulnerable computer by loading programs such as keygens. Trojan:Win32/Sirefef!cfg conceals itself on the targeted PC to bypass the detection and removal by security programs. Therefore, Trojan:Win32/Sirefef!cfg is difficult to detect and remove from the infected computer. Trojan:Win32/Sirefef!cfg hijacks the affected Internet browser and results in annoying redirects to dubious advertising websites designed by scammers to make money from the pay-per-click...

The 'Unlock this Page to Continue!' Virus is ransomware that locks your PC – preventing you from using any programs or major Windows features. The goal of the 'Unlock this Page to Continue!' Virus's attack is to force you to fill out various web-based surveys and other offers, for which the 'Unlock this Page to Continue!' Virus's criminal masterminds presumably collect a small commission. However, like most ransomware, the 'Unlock this Page to Continue!' Virus doesn't unlock your PC even if you obey its demands. While unusual in that the 'Unlock this Page to Continue!' Virus eschews...

Trojan Upclicker is a backdoor Trojan that establishes unauthorized contact with a remote server for the purpose of compromising your PC in various ways – such as stealing information, installing other malware or letting criminals control your operating system's major functions. With respect to its ability to evade automated anti-malware analyses, Trojan Upclicker is an exceptionally advanced Trojan, due to the inclusion of both memory process injection (a feature often used by rootkit components and banking trojans like Trojan Zeus ) and a mouse-hooking function that guarantees that...

CleanBoan is a fake anti-malware program from the Onescan family, a family of scamware products that are noted for targeting South Korean PCs. Although their choice of regions for victimization is somewhat unusual, Onescane-based rogue anti-malware programs like CleanBoan are consistently confirmed as using the same types of inaccurate system alerts and scans that are found in fake anti-malware programs from other countries. In spite of its appearance, CleanBoan isn't capable of detecting malware or any other system problems, and SpywareRemove.com malware experts never recommend...

Worm:Win32/Phorpiex.O is a worm that downloads other malicious files, which may be detected as malware threats. Worm:Win32/Phorpiex.O circulates via instant messaging applications, such as Google Talk, Skype, ICQ, Paltalk, Xfire, and Windows Live Messenger. Computer users may unknowingly download Worm:Win32/Phorpiex.O, thinking it is a legitimate application. Worm:Win32/Phorpiex.O sends a message to all of the victim's contacts, seducing or tricking him/her into downloading and opening a picture, which may be a copy of Worm:Win32/Phorpiex.O. The message is localized, and...

Adware Generic5.ODL is an adware program that displays annoying pop-up advertisements related to the victim's browsing habits and needs on the screen of the targeted computer. These pop-up advertisements delivered by Adware Generic5.ODL include links that will direct affected PC users to deceptive or malicious website. Adware Generic5.ODL can download and install other malware threats such as Adware:Win32/Winzeni . Adware Generic5.ODL keeps track of your online activities and after installing on the vulnerable Window computer, steals the computer user's personal data and information and...

From time to time social media pranksters have fun by spreading false news about a popular entertainer or well-known figure dying. In today's always-connected social network culture, the news of someone popular passing tends to spread rapidly where various sources pick up the news and spread it without any type of validation. Adware and spam peddlers are now picking up on this very technique, once used at random by the common prankster, to cash in on the credulous social media public by specifically making a claim about Jim Carrey dying in a snowboarding accident. What better way to...

Derived from the infamous Zeus banking Trojan, Skynet is a botnet that includes all of the capabilities of Zeus along with other functions, such as Tor-based C&C server anonymity and a Bitcoin mining component. Although Skynet is a recent PC threat, Skynet already has infected an estimate of over ten thousand PCs, all of which are recruited to its botnet for conducting additional attacks. SpywareRemove.com malware researchers recommend that you use anti-malware products of the highest degree of competency to remove Skynet, which is a sophisticated Trojan that doesn't display symptoms...

Trojan:Win32/Sirefef.AB is a rootkit Trojan that causes unwanted redirects of the hacked Internet browser to malicious websites used by attackers to make money from the pay-per-click technique. Trojan:Win32/Sirefef.AB hijacks the targeted web browser and makes changes to the browser settings. Trojan:Win32/Sirefef.AB changes search results in any search engine to web-links irrelevant to initial queries and redirects affected PC users to suspicious websites. Trojan:Win32/Sirefef.AB might be difficult to detect and remove from the affected computer system by many security software....

Trojan:Win32/Lyposit.B is Trojan that is a part of a ransomware attack. Trojan:Win32/Lyposit.B locks the affected computer system and does not allow a victim to access and use it. Trojan:Win32/Lyposit.B displays a frightening full-screen pop-up alert, which is allegedly sent and speaks on behalf of one of the EU law enforcement agencies accusing an affected PC user of law violation. Trojan:Win32/Lyposit.B may deliver a fake warning message with the title 'Der Computer ist für die Verletzung der Gesetze von Belegen wurde blockiert', which affects German computer users....

Trojan horse Agent_r.BLB is a backdoor Trojan that allows attackers to gain remote unauthorized access and control of the affected computer without an affected PC user's permission. Trojan horse Agent_r.BLB may gather a victim's personla information and send it to a remote server. Trojan horse Agent_r.BLB may drop and install other malware threats on the infected computer system. Trojan horse Agent_r.BLB may block affected PC users from accessing Windows programs. Trojan horse Agent_r.BLB will also slow down the victimized PC.

'Your computer has been blocked by the United States Department of Justice' Ransomware pretends to be a legal notification from the US government, but actually is a ransomware Trojan that aims to steal your money through the MoneyPak voucher system. 'Your computer has been blocked by the United States Department of Justice' Ransomware may pretend to be authorized to lock your computer and even will pretend to be monitoring your webcam feed for legal purposes, but 'Your computer has been blocked by the United States Department of Justice' Ransomware is, itself, a completely illegal and...