VBS_CRIGENT.LK

Posted: April 10, 2014 | Category: Worms | Threat Level: 5/10
VBS_CRIGENT.LK is a worm that spreads through Windows document files and uses innovative methods of evading detection while exploiting your PC. Although VBS_CRIGENT.LK's intended payload may possess other functions, malware researchers can infer that VBS_CRIGENT.LK gathers potentially sensitive information from infected PCs and makes communication with external servers that, in theory, could exert control over the machine. Deleting VBS_CRIGENT.LK, like all threats that try to remain in stealth, requires both appropriate anti-malware products and supportive security protocols, such as...

RTKT_NECURS.RBC

Posted: April 10, 2014 | Category: Trojans | Threat Level: 9/10
RTKT_NECURS.RBC is a new spinoff of the Necurs family of rootkits, a family that could be described as prolific even three or four years ago. This most recent attack has been narrowed down to spam e-mail as the primary infection vector, with RTKT_NECURS.RBC being installed by a variant of a prominent banking Trojan, which is installed by a Trojan downloader that, in turn, is embedded in the e-mail message's file attachment. Since RTKT_NECURS.RBC can block any anti-malware solutions that could disinfect your PC, preventative defenses are crucial, and malware experts also warn that...

TSPY_ZBOT.YYKE

Posted: April 10, 2014 | Category: Trojans | Threat Level: 9/10
TSPY_ZBOT.YYKE is one of the most recent updates to Zeus or Zbot , a banking Trojan that hacks into your bank account by interfering with your Web browser's data transfers. Because TSPY_ZBOT.YYKE is a multifaceted PC threat with multiple ways of attacking your computer, including installing other threats, its elimination should be taken as mandatory, and always should be handled with suitable anti-malware solutions. Until you have deleted TSPY_ZBOT.YYKE with the security solution of your preference, most passwords and other sensitive information on your machine may remain susceptible to...

TROJ_UPATRE.YYKE

Posted: April 10, 2014 | Category: Trojans | Threat Level: 9/10
TROJ_UPATRE.YYKE is a Trojan that propagates via banking-related spam campaign. The spam emails supposedly come from major financial institutions such as Lloyds TSB and Wells Fargo. The fraudulent emails inform recipients that they have received a new secure message. Target PC users are instructed to open the .msg file in the attachment to see the message. The .msg file carries another .msg file which disguises TROJ_UPATRE.YYKE. The method is possibly used to make sure that TROJ_UPATRE.YYKE is not immediately detected by security software. Once TROJ_UPATRE.YYKE affects a PC, it starts...

Utuobeadablock

Posted: April 10, 2014 | Category: Adware | Threat Level: 2/10
Utuobeadablock is known to be adware that may display pop-up messages and advertisements on the computer system. Utuobeadablock may affect all the Web browsers including Google Chrome, Mozilla Firefox and Internet Explorer installed on the PC and show unwanted pop-up advertisements and messages on every website the computer user visits. The pop-up advertisements and banners of Utuobeadablock may be related to the PC user's website content or recent online searches. Utuobeadablock may modify search results in any genuine search provider with sponsored links that may encompass various...

JS:Includer-BAO

Posted: April 10, 2014 | Category: Trojans | Threat Level: 9/10
JS:Includer-BAO is a JavaScript Trojan that may insert a malicious Java Script inside a legitimate website that has been hijacked. JS:Includer-BAO forcibly redirects PC users out of the websites they deliberately visit into commercial websites. JS:Includer-BAO affects not only a Web browser by modifying the default browser settings but also integrates itself inside the memory of a PC. JS:Includer-BAO can also add un unwanted browser add-ons, plug-in or browser extensions with the aim to show unwanted pop-up advertisement and, thus, generate advertising revenue from ad clicks.

Artemis!0914D934EF1D

Posted: April 10, 2014 | Category: Trojans | Threat Level: 9/10
Artemis!0914D934EF1D is a Trojan, which proliferates through network vulnerabilities, harmful websites, insecure downloads, spam emails carrying malicious attachments, and drops other PC threats onto the attacked computer system. Artemis!0914D934EF1D makes modifications to registry entries, creates malevolent files and executes malicious executables on the corrupted PC. Artemis!0914D934EF1D may open up a security hole on the infected computer system to drop and install other malevolent files or security infections from the Internet. Artemis!0914D934EF1D installs itself onto the...

ButterflyField Toolbar

Posted: April 10, 2014 | Category: Bad Toolbars | Threat Level: 5/10
ButterflyField Toolbar is a Web browser toolbar that may install itself into Internet Explorer and Mozilla Firefox Web browsers. ButterflyField Toolbar may declare to enhance the computer user's Web browsing activity. ButterflyField Toolbar may proliferate and integrate itself into the Web browser as an extra tool through packaged freeware that computer users can download from unsafe download websites. Once installed, ButterflyField Toolbar may alter the default start page, search provider or a new tab page with an unreliable website. ButterflyField Toolbar may trace the PC user's online...

‘For Better Viewing Performance Please Update Your Movie Player’ Pop-Up

Posted: April 10, 2014 | Category: Fake Warning Messages
'For Better Viewing Performance Please Update Your Movie Player' is a fake pop-up message that may be used to drop and install various potential security threats incorporating potentially unwanted programs (PUPs), adware and browser hijackers on a computer system. If the misleading 'For Better Viewing Performance Please Update Your Movie Player' Pop-Up alert occurs on the computer system, this may mean that the PC has been already contaminated with adware or other security infections. The phony ''For Better Viewing Performance Please Update Your Movie Player' notification may carry the...

Get.desk2opapps.com

Posted: April 10, 2014 | Category: Browser Hijackers | Threat Level: 5/10
Get.desk2opapps.com is a suspicious website, which through the use of associated adware and browser hijackers may display a bogus 'Recommended Download - 'You are just one click away from starting the download - The player is available for download and its installation is recommended to view multimedia content' pop-up message on a computer. If a PC user clicks on the phony 'Recommended Download' pop-up window in a Web browser, the computer system may be contaminated with potentially unwanted programs (PUPs), adware, browser hijackers, unwanted add-ons, plug-ins, browser extensions, and even...

Downloadcrowd.com

Posted: April 10, 2014 | Category: Browser Hijackers | Threat Level: 5/10
Downloadcrowd.com is a questionable website which may be related to PC infections such as browser hijackers and adware that may take over the Web browser and alter the default browser settings. The main goal of the authors of Downloadcrowd.com may be to make computer users visit unreliable websites that may be commercial to most likely boost traffic of the unknown website that may show unwanted ads and messages to benefit from clicks on commercial advertisements and notifications. Browser hijackers and adware may substitute search phrases with web-links leading PC users to unsafe websites,...

Lpcloudbox410.com

Posted: April 10, 2014 | Category: Adware | Threat Level: 7/10
Lpcloudbox410.com is a domain that malware researchers have confirmed to engage in classic kinds of attacks, or behavior attempting to install potentially threatening software automatically. At this time, there also is circumstantial evidence that may indicate that Lpcloudbox410.com pop-ups are being generated by adware or other browser-modifying programs that should be treated as significant security risks until they're removed. Anti-malware scans always should follow up any contact with Lpcloudbox410.com to detect any theoretical threat that may have been installed by Lpcloudbox410.com,...

Win32.Application.KreaPixWebplayer.A

Posted: April 9, 2014 | Category: Potentially Unwanted Programs (PUPs) | Threat Level: 1/10
Win32.Application.KreaPixWebplayer.A is a potentially unwanted program (PUP) that may install itself on a computer while downloading freeware from insecure download websites, visiting malicious websites or opening spam email attachments. Win32.Application.KreaPixWebplayer.A may also spread through torrents, removal drives, social media networking websites and online games. Win32.Application.KreaPixWebplayer.A may perform a variety of unwanted activities such as disable firewall or Task Manager, corrupt Windows security programs and other software, change registry values and occupy...

Blockuttubbeada

Posted: April 9, 2014 | Category: Adware | Threat Level: 2/10
Blockuttubbeada is a Potentially Unwanted Program that markets itself as a means of blocking advertising content on YouTube and similar streaming movie sites. In ironic contrast to the implications of its name, Blockuttubbeada's features are focused on delivering more advertisements to your Web browser, which usually are injected into arbitrary Web pages automatically. Since there aren't any benefits to installing Blockuttubbeada, which is strongly associated with various security hazards, malware researchers would suggest deleting Blockuttubbeada with the proper anti-adware tools in almost...

HEUR:Exploit.SWF.Agent.id

Posted: April 9, 2014 | Category: Trojans | Threat Level: 9/10
HEUR:Exploit.SWF.Agent.id is a backdoor Trojan that can launch DDOS attacks on a PC. The authors of HEUR:Exploit.SWF.Agent.id may use a specific obfuscator not to allow researchers analyzing it and security tools finding it. When HEUR:Exploit.SWF.Agent.id corrupts a PC, based on the OS, it may carry out certain activities to guarantee that it will be executed on the next system boot-up. In Windows, HEUR:Exploit.SWF.Agent.id may make changes to the Windows Registry. After installation, HEUR:Exploit.SWF.Agent.id may start communicating with its remote server via the IRC protocol....

Win32/Rovnix.gen!C

Posted: April 9, 2014 | Category: Trojans | Threat Level: 8/10
Win32/Rovnix.gen!C is a Trojan indicating that a malicious Volume Boot Record (VBR) has been installed on a PC. Win32/Rovnix.gen!C attempts to tamper with some Windows kernel data to load its own malicious driver. Win32/Rovnix.gen!C uses this trick to possibly bypass Driver Signature Enforcement on a 64-bit system. Win32/Rovnix.gen!C can be installed on a computer by other malware threats from the same family. To conceal itself, Win32/Rovnix.gen!C may intercept the hard disk I/O (input/output) operation. Win32/Rovnix.gen!C may restore the original clean copy of the VBR if it is accessed...

Jdl.findpre.net

Posted: April 9, 2014 | Category: Browser Hijackers | Threat Level: 5/10
Jdl.findpre.net is an unreliable website that may show a fake pop-up notification 'Please Install LightSpark Player Pro to Continue (Recommended)' on a computer system while a PC user is browsing the Web. The fraudulent pop-up notification from Jdl.findpre.net may be shown by adware that may propagate and access the computer system while PC users are downloading free applications from untrustworthy download websites. The tricky pop-up warning message delivered by PC threats such as adware browser hijackers pertaining to Jdl.findpre.net may claim that the computer user needs to install a...

Jcr.driverfind.net

Posted: April 9, 2014 | Category: Browser Hijackers | Threat Level: 5/10
Jcr.driverfind.net is a questionable website which may be linked to browser hijackers, potentially unwanted programs (PUPs) and adware that may spread and access the computer system through bundled free applications that are available for download on untrustworthy download websites. Security threats associated with Jcr.driverfind.net may substitute the default homepage and search service with Jcr.driverfind.net, or open it as a new tab window. These security threats may also add numerous pop-up ads and sponsored links into search results in any well-known search provider. If clicked,...

Gyt.coreopt.net

Posted: April 9, 2014 | Category: Browser Hijackers | Threat Level: 5/10
Gyt.coreopt.net is a questionable website that may display a bogus web page 'Your software may be out of date' and pop-up alert 'Your download is ready. Please click the download button to continue' on a PC while computer users are surfing the Internet. The fake pop-up warning message from Gyt.coreopt.net may be displayed by adware and PUPs (potentially unwanted programs) that may circulate and enter the PC while computer users are downloading free software from suspicious download websites. The tricky pop-up notification displayed on Gyt.coreopt.net may declare that the PC user's software...

Get.default-page.com

Posted: April 9, 2014 | Category: Browser Hijackers | Threat Level: 5/10
Get.default-page.com is a suspicious website, which through the use of associated adware and browser hijackers may display a bogus 'Player Update is Recommended to view Multimedia Content' alert on a computer. If a PC user clicks on the tricky 'Player Update' pop-up window in a Web browser, the computer system may be affected by potentially unwanted programs (PUPs), adware, browser hijackers, unwanted add-ons, plug-ins, browser extensions, and even malware infections. If the fraudulent 'Player Update is Recommended to view Multimedia Content' pop-up message appears on the PC, the computer...
previous  59  60  61  62  63  64  65  66  67  68  69  70  71  72  73  74  75  76  77  78  79  next     total items: 17606
Home "Articles"