Home.sweetim.com is a sub-domain of sweetim.com, a website that promotes an emoticon product for Internet Explorer. In spite of its seemingly benevolent function, the SweetIM product has been found to be guilty of having several traits of malicious software, including changing your browser's settings to promote Home.sweetim.com and related sites without your consent. In general, malware analysts recommend that you remove SweetIM software with an anti-malware product to ensure the full reversal of all undesired settings changes, and contact with Home.sweetim.com is discouraged for the...

The SGAE Virus is Spain's very own variant of a regional Lockscreen Trojan that varies its language and the legal bodies referenced with the country (determined by your IP) of the infected computer. Like other members of Lockscreen , the SGAE Virus claims, wielding the hefty authority of the SGAE, that your computer has been locked due to its association with intellectual property violations (such as downloading or uploading copyrighted music). While the SGAE Virus would love for you to panic and pay a fee via Paysafecard, SpywareRemove.com malware analysts don't see any reason for...

The SIAE Virus is an Italy-specific ransomware Trojan from the Lockscreen family. True to the standards of its family, the SIAE Virus presents itself as a warning from a legitimate agency and claims to have locked down your PC due to detected illegal activities. Although the SIAE Virus warns that you must pay a fine or face heavy legal penalties that can include imprisonment, SpywareRemove.com malware researchers have confirmed that the SIAE Virus is unrelated to the real SIAE and doesn't have any type of legal authority. As a scammer like other Lockscreen-based Trojans, the SIAE Virus...

Troj/Bredo-ABB or Gen:Variant.Barys.7136 is a recently-detected Trojan that's distributed by fraudulent e-mail messages that claim to be from Groupon – a discount website that e-mails its bargains straight to the mailboxes of its members. Unlike normal Groupon e-mails, Troj/Bredo-ABB e-mails include a zipped file attachment that infects your PC with Troj/Bredo-ABB. The recently-identified nature of Troj/Bredo-ABB has left its payload and overall capabilities uninspected as of the time of this writing, but SpywareRemove.com malware experts have noted that similarly-distributed Trojans...

Black Hat USA, a yearly premier conference on security information attracting thousands of attendees, was the brunt of over 1,500 severe independent security events on its wireless LAN during this year's conference. Wireless networks remain to be an open target for those with just enough 'hacker' experience. During this year's Black Hat 2012 event at Caesars Palace in Las Vegas, NV, there were a variety of devices used by attendees accessing the WLAN. It was estimated that 3,155 of the attendees accessed the network at one time where most of them, about 30% of the total, used Apple...

Ownership of an Android OS device has brought about some new consequences in knowing that about a third of available apps have malware. In the race to be the ultimate smartphone and tablet operating system with over 400 million active users, the Android OS has taken a major blow in a new report released by security firm BT determining that about one-third of Android-based apps have malware. BT made these remarks during a NetEvents Americas conference where they set-out to find more information on malware findings on a moderator's very own Samsung Galaxy S III running Android. BT...

Boxore adware is an adware application that displays pop-up error messages and ads on the affected PC. Boxore adware infiltrates into the infected computer system via free movies sharing websites. Boxore adware can also drop other malware threats on the corrupted machine. To watch the movies, you will be asked to download either plugin or video player, particularly a free multimedia player called Player Plus. Once you installed the plugin and player, Boxore adware is also installed on your PC. Boxore adware adds a toolbar in your web browser. Boxore adware installs boxore.exe and...

Troj/Agent-XES is a Trojan that propagates via a spam Blackhole malware campaign on Twitter. Spam messages on Twitter that distribute Troj/Agent-XES use the wording of 'It's you on photo?' and 'It's about you?'. An instance of the deceptive tweets is '@[Username] It's you on photo? [Domain]/#[Username].html'. Dangerous links on Twitter declare that you are pictured in an online photo. The accounts that are distributing the fake messages have either been corrupted by web attackers or have been generated with the goal to distribute malicious links. The malware infection at the end of the...

Troj/JSRedir-HY is a JavaScript Trojan that is included in a Blackhole malware attack, which spreads on Twitter using 'It's you on photo?' trickery. However, versions of the malicious spam attack using the wording 'It's about you?' have also been spotted on Twitter. An example of the dangerous tweets is '@[Username] It's you on photo? [Domain]/#[Username].html'. Malicious links on Twitter state that you are pictured in an online photo. The accounts that are spreading the messages have either been hijacked by cybercriminals or have been created with the aim of spreading dangerous links....

Trojan.DL.Banload.WOG is a Trojan that slows the affected PC. Trojan.DL.Banload.WOG infects targeted computers with numerous folders. Trojan.DL.Banload.WOG also creates a hidden channel for communication with a remote server. Trojan.DL.Banload.WOG receives the commands for malicious actions through a remote server. Trojan.DL.Banload.WOG can also be used to spread rogue security applications.

Trojan.Claretore is a computer Trojan horse that may redirect PC users to unwanted websites, potentially spreading malware. Trojan.Claretore usually installs in a stealthy manor and load at startup of Windows. Once installed, Trojan.Claretore could open up a port where a remote hacker could access the infected system and steal personal information. It is best to eliminate the Trojan.Claretore threat with an antimalware program.

TrojanSpy:Win64/Ursnif.C is a dangerous Trojan horse that could capture passwords and personal data on an infected PC. TrojanSpy:Win64/Ursnif.C may also be used by a remote hacker to gain access to the computer. TrojanSpy:Win64/Ursnif.C may be extremely difficult to manually remove due to it having rootkit capabilities and loading at startup of Windows. It may be beneficial to remove TrojanSpy:Win64/Ursnif.C using an antimalware program.

Trojan:AutoIt/Ransom.F is a Trojan that is a part of ransomware. Trojan:AutoIt/Ransom.F displays a fake pop-up alert in an attempt to scare PC users they have committed a certain crime. Trojan:AutoIt/Ransom.F can lock the targeted computer or screen, and then demand the ransom from victims for certain violated laws. Trojan:AutoIt/Ransom.F also connects to a remote website over the Internet and then downloads other security threats onto the affected computer. Trojan:AutoIt/Ransom.F can also spy on affected computer users. Trojan:AutoIt/Ransom.F strives to avoid detection and removal of...

BackDoor.DaVinci.1 is a backdoor Trojan and rootkit that's newsworthy for the power of its modular design, as well as its cross-platform compatibility with Windows, Mac OS X and several mobile device-specific operating systems. Dubbed by its creators as a 'weapon for the 21st century,' BackDoor.DaVinci.1 grants criminals complete access to the infected PC and can be used for subtle attacks, such as theft of personal information, as well as extremely obvious and damaging attacks that render the system nonoperational. SpywareRemove.com malware researchers rank BackDoor.DaVinci.1, which is...

W32.Stikpid is a worm that circulates through removable drives. W32.Stikpid also drops potentially infected files, steals computer system information, and opens a back door on the affected PC. W32.Stikpid may spread via malicious email attachments, hijacked removable drives, drive-by downloads, or can be dropped by other malware infections. Once executed, W32.Stikpid may replicate itself to the certain locations. W32.Stikpid may create the certain registry entries so that it can run automatically every time you start Windows. W32.Stikpid may insert itself into the processes called...

Backdoor.Finfish is a backdoor Trojan that opens a back door on the infected computer. Once executed, Backdoor.Finfish may create numerous malicious files. Backdoor.Finfish also creates several registry entries. Backdoor.Finfish may then connect to the particular command-and-control (C&C) servers. Backdoor.Finfish may then transmit stolen information to remote locations.

Troj/Redir-P is a Trojan that attempts to redirect your browser to a site with confirmed malicious content for downloading PC threats onto your computer without your consent. Troj/Redir-P is distributed by e-mail spam campaigns that target Germany-based e-mail accounts (by targeting the .de domain suffix); these e-mails include German messages about supposed photo attachments that, when opened, turn out to be Troj/Redir-P. Identifying and deleting Troj/Redir-P-related e-mail messages should be your main defense against potential Troj/Redir-P attacks, although SpywareRemove.com malware...

Imbot.AC is a worm that affects computer systems via MSN Messenger by sending itself as attachement to contacts from the compromised PC and displaying certain messages. You should not respond to such messages in your MSN window to protect your computer from being infected with Imbot.AC. Imbot.AC connects itself to the Internet and disguises itself from the affected PC user.

Manageddns404.com is a rogue website that looks like a typical '404 not found page', which will advertise such malware infections as IEDefender and Abebot. When visiting Manageddns404.com, you will face pop-up commercial advertisements and/or illegitimate downloads into your computer system. Manageddns404.com should be blocked in your HOSTS file.

TDSServ is a Trojan that installs itself onto the affected computer system through vulnerabilities in already installed programs, mainly InternetExplorer, or by using rogue anti-spyware applications. TDSServ uses rootkit techniques created by attackers to disguise its existence in the infected computer system. TDSServ is difficult to detect and uninstall by many security programs. Once installed, TDSServ will be configured to run automatically every time you start Windows. While running, TDSServ may compromise Internet Explorer, display many pop-up messages and fake security alerts,...