PoshCoder

Posted: April 13, 2014 | Category: Ransomware
PoshCoder is a file encryptor Trojan that encrypts various file types automatically, making them theoretically unusable until a BitCoin fee is paid to its administrators. Malware researchers discourage paying for PoshCoder's decryption, which is likely to backfire on any victims trusting enough to do so, and continue to find proper file backup protocols to be the best way of dealing with PoshCoder and similar ransomware. Many PC security products have been reported to fail to identify PoshCoder, and updating your anti-malware utilities prior to deleting PoshCoder could be essential for...

Drop Down Deals

Posted: April 11, 2014 | Category: Adware | Threat Level: 2/10
Drop Down Deals is an adware threat that is connected with Conduit and Yontoo. Drop Down Deals may show unwanted pop-up and in-text ads carrying various deals, special offers, sales, discount coupons while a PC user is browsing the Web. Drop Down Deals may be installed as a browser extension, plug-in and add-on to Google Chrome, Mozilla FireFox and Internet Explorer. Drop Down Deals may attack all Web browsers installed on the PC. Some of the pop-up advertisements displayed by Drop Down Deals, if clicked, may constantly reroute computer users to suspicious websites. Drop Down Deals may...

Shady Rat

Posted: April 11, 2014 | Category: Remote Administration Tools | Threat Level: 7/10
The Shady Rat is a Remote Access Tool, or RAT, that grants third parties control over the compromised computer, including the ability to send commands, change system settings, delete files or collect information. The Shady Rat is closely connected to a supporting PC threat, Trojan.Downbot , and boasts a campaign that has been called one of the widespread acts of cyber aggression in the history of threats. Malware researchers confirmed an e-mail's predominant exploitation for spreading the Shady Rat, and any computers suspected to be compromised should enable anti-malware tools for...

Trojan.Win32.CoinStealer.i

Posted: April 11, 2014 | Category: Trojans | Threat Level: 9/10
Trojan.Win32.CoinStealer.i is a Trojan that steals BitCoin wallet contents and has rapidly been identified as a new point of drama in the ongoing legal and financial issues surrounding the Mt. Gox website. At this time, Trojan.Win32.CoinStealer.i's main distribution point is a hacked blog at Magicaltux.net, which currently is distributing Trojan.Win32.CoinStealer.i's installer inside of an archive that also provides extensive technical information on the website's database and various leaks. If you've opened this file, labeled MtGox2014Leak.zip, malware experts warn that you should...

Win32:Agent-APRIK

Posted: April 11, 2014 | Category: Trojans | Threat Level: 8/10
Win32:Agent-APRIK is a Trojan that may function as a proxy server. Upon installation on a corrupted PC, Win32:Agent-APRIK downloads malevolent files. When loaded, Win32:Agent-APRIK may replicate itself in a specific location. Win32:Agent-APRIK gets data and commands from a distant server or the Web. Win32:Agent-APRIK may carry a list of domain names. Win32:Agent-APRIK may collect specific information used to access particular websites. Win32:Agent-APRIK can run the harmful operations such as eliminate itself from the compromised PC, establish a proxy server and update itself to a newer...

Content Explorer

Posted: April 11, 2014 | Category: Adware | Threat Level: 2/10
Content Explorer is adware that may compromise online searches of the PC user by changing search results in popular search services with sponsored links and constantly diverting the computer user to questionable websites with mainly advertorial-like content. Content Explorer may embed a potentially unwanted add-on, plug-in or extension in the Web browsers such as Internet Explorer, Mozilla Firefox, and Google Chrome when the PC user installs various freeware from unreliable download websites. When the computer user installs any free applications and does not pay attention to any...

PUP.DynConIE

Posted: April 11, 2014 | Category: Potentially Unwanted Programs (PUPs) | Threat Level: 1/10
PUP.DynConIE is a PUP (potentially unwanted program), which may show non-stop pop-up notifications and advertisements while the PC user is surfing online. The pop-up ads and messages delivered by PUP.DynConIE may appear real and trustworthy. However, in actuality, they may be produced with the aim to probably generate advertising revenue from ad and message clicks. The pop-up ads and messages displayed by PUP.DynConIE may be delivered by the related Web browser plug-in, add-on or browser extension, which may be packaged and inserted together with free applications that PC users can...

ThaeAdAopp

Posted: April 11, 2014 | Category: Potentially Unwanted Programs (PUPs) | Threat Level: 2/10
ThaeAdAopp is a PUP (potentially unwanted program) that may enter the PC without the computer user's authorization. After installation, ThaeAdAopp may insert an unwanted plug-in, add-on or browser extension on the Web browser. ThaeAdAopp may also be classified as adware. The main goal of ThaeAdAopp may be to show disturbing pop-up ads and notifications while the computer user is browsing the Web. ThaeAdAopp may be able to replace search results in genuine search providers such as Google, Yahoo or Bing. Web-links replaced by ThaeAdAopp may unwillingly divert PC users to untrustworthy...

JS/Blacole.OU

Posted: April 11, 2014 | Category: Trojans | Threat Level: 9/10
Although the Blackhole Exploit Kit has seen a sharp reduction in its distribution, at least one variant has been seen still active as of this month: JS/Blacole.OU. This JavaScript-based PC threat attempts to install threats onto the affected PC automatically, a process that does not require your awareness of the installation. Malware researchers associate most successful BEK attacks with the installation of high-level PC threats, and any contact with JS/Blacole.OU may result in compromises that allow third parties to collect sensitive information or issue invasive commands to your PC....

UnfriendTool

Posted: April 11, 2014 | Category: Potentially Unwanted Programs (PUPs) | Threat Level: 1/10
The UnfriendTool is a Potentially Unwanted Program that makes claims of providing social network-enhancing functions. Contrary to its marketing, malware researchers have not found any functions matching the UnfriendTool's claims, and also have noted the UnfriendTool's past association with known adware distributors and fraudulent advertising campaigns. Deleting the UnfriendTool and all closely-related software from your PC is encouraged for the safety and ideal performance of your browser, as is usually suggested for any PUP that can't provide real benefits. The Tool that Behaves...

PileFile Reminder

Posted: April 11, 2014 | Category: Potentially Unwanted Programs (PUPs) | Threat Level: 1/10
The PileFile Reminder is a file download manager with an extensive history of using fraudulent distribution methods along with installing other, equally unwanted software. Malware researchers may not categorize the PileFile Reminder as a threat, but neither do they see any legitimate benefits from using the PileFile Reminder, which includes software that makes browser modifications that may increase your risk of being affected by online attacks. Deleting the PileFile Reminder and any other Potentially Unwanted Programs always should be your default response to the PileFile Reminder, with...

Passport.game321.com

Posted: April 11, 2014 | Category: Browser Hijackers | Threat Level: 5/10
Passport.game321.com is known to be an adware-related website that may display random pop-up advertisements and messages on a computer. Passport.game321.com may be related to security threats such as adware and browser hijackers that may lead to various unwanted computer problems. Security infections linked to Passport.game321.com may usually spread and enter the computer system through bundled free programs that PC users can download on suspicious download websites. If any malware threats connected with Passport.game321.com are installed on the PC, the Web browser may get forcibly rerouted...

Heartbleed

Posted: April 11, 2014 | Category: Malware | Threat Level: 7/10
Heartbleed is a software vulnerability affecting websites using the OpenSSL data protection standards. In theory, the exploitation of this bug allows third parties to access passwords and other sensitive information for the users of affected websites, the latter of which encompass roughly two-thirds of all widely-used Internet domains. Heartbleed was recently identified but has had a previous lifespan of two years. PC users should take proper actions to protect vulnerable or hacked accounts, and malware experts also encourage making use of appropriate utilities for verifying any...

BitCrypt Ransomware

Posted: April 11, 2014 | Category: Ransomware | Threat Level: 10/10
Screenshot The BitCrypt Ransomware is a file encryptor Trojan that modifies files to prevent you from using them, with a focus on prominent file types like Microsoft documents and images. After blocking your access to different files, the BitCrypt Ransomware will use your desktop to communicate a ransom demand, requiring payment of roughly two hundred USD in BitCoins. Since the BitCrypt Ransomware's controlling creators have no reason to unlock any files encrypted by the BitCrypt Ransomware even after they've received payment, malware experts recommend the tandem use of remote file backups and...

Adware.ArcadeFrontier

Posted: April 11, 2014 | Category: Adware | Threat Level: 2/10
Screenshot Arcadefrontier.com is an online gaming site that bundles adware with its products. As a site promoted by social networking spam, any interaction with Arcadefrontier.com is to be discouraged, and malware researchers personally wouldn't recommend installing Arcadefrontier.com's adware to partake of its gaming features. Like so many sites prior to it, Arcadefrontier.com offers free games that can be found just as easily on other sites, and there's no need to pause in removing Arcadefrontier.com adware to enjoy your Flash-based entertainment. A New Frontier with Little to Offer...

Trojan.POSRAM

Posted: April 10, 2014 | Category: Trojans | Threat Level: 9/10
Trojan.POSRAM is a PoS or Point-of-Sale Trojan that collects credit card information from systems used in business transactions. Trojan.POSRAM is a major player in the Kaptoxa campaign, which successfully compromised the data of millions of customers of major shopping outlets. Since Trojan.POSRAM possesses advanced means of avoiding detection, updated anti-malware utilities and security protocols are important in preventing Trojan.POSRAM's installation or removing Trojan.POSRAM, and malware experts recommend that customers of compromised stores watch their credit card bills for signs of...

VBS_CRIGENT.LK

Posted: April 10, 2014 | Category: Worms | Threat Level: 5/10
VBS_CRIGENT.LK is a worm that spreads through Windows document files and uses innovative methods of evading detection while exploiting your PC. Although VBS_CRIGENT.LK's intended payload may possess other functions, malware researchers can infer that VBS_CRIGENT.LK gathers potentially sensitive information from infected PCs and makes communication with external servers that, in theory, could exert control over the machine. Deleting VBS_CRIGENT.LK, like all threats that try to remain in stealth, requires both appropriate anti-malware products and supportive security protocols, such as...

RTKT_NECURS.RBC

Posted: April 10, 2014 | Category: Trojans | Threat Level: 9/10
RTKT_NECURS.RBC is a new spinoff of the Necurs family of rootkits, a family that could be described as prolific even three or four years ago. This most recent attack has been narrowed down to spam e-mail as the primary infection vector, with RTKT_NECURS.RBC being installed by a variant of a prominent banking Trojan, which is installed by a Trojan downloader that, in turn, is embedded in the e-mail message's file attachment. Since RTKT_NECURS.RBC can block any anti-malware solutions that could disinfect your PC, preventative defenses are crucial, and malware experts also warn that...

TSPY_ZBOT.YYKE

Posted: April 10, 2014 | Category: Trojans | Threat Level: 9/10
TSPY_ZBOT.YYKE is one of the most recent updates to Zeus or Zbot , a banking Trojan that hacks into your bank account by interfering with your Web browser's data transfers. Because TSPY_ZBOT.YYKE is a multifaceted PC threat with multiple ways of attacking your computer, including installing other threats, its elimination should be taken as mandatory, and always should be handled with suitable anti-malware solutions. Until you have deleted TSPY_ZBOT.YYKE with the security solution of your preference, most passwords and other sensitive information on your machine may remain susceptible to...

TROJ_UPATRE.YYKE

Posted: April 10, 2014 | Category: Trojans | Threat Level: 9/10
TROJ_UPATRE.YYKE is a Trojan that propagates via banking-related spam campaign. The spam emails supposedly come from major financial institutions such as Lloyds TSB and Wells Fargo. The fraudulent emails inform recipients that they have received a new secure message. Target PC users are instructed to open the .msg file in the attachment to see the message. The .msg file carries another .msg file which disguises TROJ_UPATRE.YYKE. The method is possibly used to make sure that TROJ_UPATRE.YYKE is not immediately detected by security software. Once TROJ_UPATRE.YYKE affects a PC, it starts...
previous  59  60  61  62  63  64  65  66  67  68  69  70  71  72  73  74  75  76  77  78  79  next     total items: 17622
Home "Articles"