Troj/BredoZp-S is a generic detection alert for a ZIP file that installs malware – commonly Trojans from the Bredo family. E-mail messages with Troj/BredoZp-S pretend to be notifications from DHL Express, with tracking numbers and a general format reminiscent of that company's communications. SpywareRemove.com malware research team warns that Bredo Trojans can display a range of different attacks, including being able to spread through removable devices, open backdoors or install other...

The Polizia Di Stato Virus (or State Police Virus) is a ransomware Trojan attack that's displayed for infected PCs with Italian IP addresses. Polizia Di Stato Virus attacks block you from using other programs by displaying fraudulent legal warnings. These messages insist that your PC is being blocked as a consequence of online crimes that require you to pay a fine and even threaten you with monitoring your typing and webcam. Like all of the many other ransomware Trojans that display similar...

The Bundesamt fur Polizei Virus is a ransomware Trojan that pretends to be sent by the Swiss police while the Bundesamt fur Polizei Virus blocks your computer with a fake crime alert. This alert is used to waylay victims into transferring money to criminals through commonly-available voucher systems. Despite its looks, the Bundesamt fur Polizei Virus isn't affiliated with any type of law enforcement, and SpywareRemove.com malware researchers recommend deleting Bundesamt fur Polizei Virus...

Backdoor:Win32/Hupigon.FN is a backdoor Trojan that runs as a service and opens a backdoor server on the affected computer. Once installed on the compromised PC, Backdoor:Win32/Hupigon.FN makes system changes by dropping potentially malicious files and registry entries. Backdoor:Win32/Hupigon.FN modifies the Windows Registry so that it can start automatically whenever you start your PC. Backdoor:Win32/Hupigon.FN allows attackers to gain remote access and control over the infected computer....

PWS:HTML/Loyphish.G is a password-stealing Trojan, which spreads via a malicious phishing website that hides itself as a legitimate online banking website. The fake website attempts to steal online banking information from the victim by tricking the PC user into filling out the details in a form on a bogus website, and then sending that information to remote attackers. The fraudulent website that contains PWS:HTML/Loyphish.G may use images, logos and layouts that the creators of...

Although Searchonme.com isn't directly associated with the distribution of malicious software, browser hijackers are being used to promote Searchonme.com through unsafe changes to the PC's web-browsing settings. Persistent redirects to Searchonme.com and other forms of browser hijacks are security risks, and anti-malware software should be used to remove any browser hijackers for Searchonme.com or other sites that are installed on your computer. As for Searchonme.com, itself, contact with...

On the surface, Qfind.net appears to be a search engine website, although SpywareRemove.com malware experts have found few reasons to recommend Qfind.net's search services. Qfind.net acquires the majority of its traffic by typosquatting – a practice wherein common misspellings of popular URLs (such as 'Googgle' for 'Google') bring you to unrelated web pages that redirect you to Qfind.net and similar sites. Some content promoted by Qfind.net also has been discovered to be associated to...

NGRBot is an alias for Dorkbot, a family of worms that malware researchers previously analyzed throughout 2011 and 2012. However, new variants of NGRBot or Dorkbot have been spotted that include additional capabilities for harming your computer. Standard NGRBot attacks have included backdoor exploits, botnet-based DDoS functions and and website-blocking browser hijacks, but NGRBot's latest version appears to have been updated to include spyware attacks. These attacks steal private...

Win32:Sirefef-ZT is a Trojan that's injected into the process Services.exe (a normal Windows file) by other components of the Sirefef or ZeroAccess infection. Win32:Sirefef-ZT also is responsible for exerting control over another component, the Trojan Trojan:Win64/Sirefef.Y, which disables your firewall and creates a backdoor vulnerability in your computer. SpywareRemove.com malware researchers recommend that you treat Win32:Sirefef-ZT as a high-level threat to your computer, since...

The Česke Republik Police Virus is a ransomware Trojan derivative of other members of the Ransirac family such as the Gema 'Access to your computer was denied' Virus or the Koda Virus . Based on the content of the Česke Republik Police Virus's fraudulent legal warning, it appears to be the Czech Republic's turn to be targeted by Ransirac -inspired ransomware Trojans, which lock infected PCs and attempt to extort a ransom fee by claiming that the lockdown had occurred when the victims...

The Firefox Redirect Virus is a browser hijacker that modifies settings related to Firefox-brand web browsers to force you to visit arbitrary websites. The Firefox Redirect Virus may be used for profit (by redirecting you to search-related sites) or to expose you to malware downloads (often via fake search engines). Although the Firefox Redirect Virus may limit its redirect attacks to Firefox, most variants of Firefox Redirect Viruses will fail to be thwarted by simple changes to your browser...

Sinit is a backdoor Trojan that allows criminals to access your PC and connects the system to a distributed botnet. Botnets are often exploited for illegal attacks (such as DDoS strikes that overload websites with artificial traffic) and PCs that are forced to participate in botnets have a high chance of experiencing instability due to unusual resource usage. Although Sinit was most notable in 2005 and 2006, SpywareRemove.com malware researchers have found that Sinit remains functional for...

Troj/Backdr-HN is a backdoor Trojan that allows criminals to access your computer in a high level and use it for a variety of malicious purposes. SpywareRemove.com malware researchers have analyzed current propagation tactics for Troj/Backdr-HN, which use spam e-mail messages that are designed to look like automated Skype account notifications. The primary difference between these e-mails and a legitimate notification is the inclusion of an installer for Troj/Backdr-HN as a file attachment....

Generic.dx!bfws is a dangerous Trojan horse that may be installed and loaded without notice to the PC user. Generic.dx!bfws may allow connections from remote hackers where data on the infected PC could be at risk of being stolen. Generic.dx!bfws may also port other malware files or exectuables later causing additional issues on an infected system. Removal of Generic.dx!bfws may be performed with the use of an updated antispyware program.

The Hao123 Toolbar or, to use its full title, the Hao123 Community Toolbar, is a browser hijacker that forces your browser to load the hao123.com website under the pretense of providing useful search functions. While the Hao123 Toolbar isn't considered a high-level threat, malware experts have noted that Hao123 Toolbar is confirmed malware and that appropriate PC security companies have blacklisted its website for its distribution of PC threats. The Hao123 Toolbar is a particular risk for...

It has been estimated in a recent Sophos Security study that nearly two-thirds of search results on Bing are found to have links that spread spam or malware. When compared with the search engine giant Google, which only accounts for 30 percent of links that spread spam or malware, Bing clearly leads the search engine pack for malware-laced search results. What has become an epidemic over the course of the past few years, is the efforts of hackers to poison search engine results. This...

It used to be a time when security researchers concluded that Windows XP was the most vulnerable operating system around. As that testament may hold true depending on who you talk to, Windows 7 is taking the stage for soaring malware infection rates during this year (2012). You do not have to be a security expert to realize that Windows XP remained in the security spotlight ever since its release back in 2001. With Windows 7 being on the market for just over 3 years now and currently being...

WORM_SILLY.SS is a worm that steals confidential information from your PC. Like the average worm, WORM_SILLY.SS can infect and distribute itself through removable drive-based devices, but SpywareRemove.com malware researchers have also noticed recent attacks that install WORM_SILLY.SS through social engineering. These techniques display WORM_SILLY.SS as a file containing information relevant to the United States Obama v. Romney presidential campaign, with the relevant websites exploiting...

WORM_MSIL.BR is a worm that proliferates via removable drives. WORM_MSIL.BR can also be downloaded from the Internet or delivered by other malware infections. WORM_MSIL.BR comes by connecting corrupted removable drives to a computer system. WORM_MSIL.BR is distributed to a victimized computer system as a file downloaded by other security infections or dropped unknowingly by computer users when visiting infected websites. Once executed, WORM_MSIL.BR checks the operating system version of the...

WORM_VOBFUS.RU is a worm that circulates via removable drives. WORM_VOBFUS.RU can also be downloaded from the Internet or distributed by other malware infections. WORM_VOBFUS.RU comes by connecting affected removable drives to a computer system. WORM_VOBFUS.RU is distributed to a vulnerable computer system as a file downloaded by other security threats or dropped unknowingly by computer users when visiting malicious websites. WORM_VOBFUS.RU downloads an autorun.inf file to automatically run...