HTML_EXPLOYT.AE is a web page-based PC threat that exploits a recently-uncovered (and, as of the time of this writing, still unpatched) vulnerability in Internet Explorer, CVE-2012-1889. In theory, this exploit can be used to install other PC threats. However, current versions of HTML_EXPLOYT.AE include flaws that fail to bypass Microsoft's default security, which causes Internet Explorer to crash instead of being exploited to attack your computer. In spite of this, SpywareRemove.com malware...

Trojan Horse Hider.RGE is a Trojan that uses advanced rootkit techniques to evade detection and removal by security software. If you try to remove Trojan Horse Hider.RGE from the compromised PC, it will set its components to other locations on the computer. Trojan Horse Hider.RGE can invade the targeted machine without a victim's permission and knowledge. Trojan Horse Hider.RGE has to be removed with a security tool that is able to deal with rootkit related PC threats.

Crackle Redirect is a PC threat that redirects your web browser to the Crackle.com site (a site that has been blacklisted for spam but has no other negative associations at the time of this article's writing). Because Crackle is a media company that offers online movie-viewing entertainment, Crackle Redirect attacks are very likely to occur when you try to load a competing site for movie-watching purposes. Although SpywareRemove.com malware researchers haven't been able to confirm the source...

TROJ_PONMOCOP (including sub-variants like TROJ_PONMOCOP.SM) is a Trojan that uses advanced encryption techniques to avoid its detection by anti-malware software and may also cause unusual printer behavior as a side effect of its attacks. TROJ_PONMOCOP will also gather information to send to a remote server and disable a limited subset of security software, and this behavior may be used to advance future attacks against your PC. Although TROJ_PONMOCOP may not be considered a high-level threat...

TROJ_AGENT.BCPC is a Trojan downloader that installs adware (software that floods your PC with pop-up advertisements) without your consent. Because TROJ_AGENT.BCPC places some of its files in the default folder for your printer's spool, you may also experience your printer printing out long pages of gibberish; this symptom is also characteristic of similar PC threats like Trojan.Milicenso and TROJ_PONMOCOP . For the sake of your computer and your (undoubtedly expensive) printer cartridges,...

Trojan.Malhtaccess is a Trojan and detection for .htaccess files that have been modified by a hacker or exploit tool kits. Web attackers directly or with exploit tool kits modify .htaccess files to reroute online traffic from the infected computer to malicious websites that usually host malware threats.

Adware.Win32.Zwangi.v is an adware that is created by web attackers to earn money from innocent computer users. Adware.Win32.Zwangi.v blocks or modifies web browsing on the infected computer. Adware.Win32.Zwangi.v uploads potentially malicious content including annpying pop-up ads even while the targeted computer is turned off. Adware.Win32.Zwangi.v leads to web browsers hijacking on the corrupted PC. Adware.Win32.Zwangi.v hijacks the affected web browser and causes unwanted redirects to...

Luhe.Packed.AH is a Trojan that occurs typically as modifications to system components that have been caused by other PC threats, such as rootkits. Although current indications point to Luhe.Packed.AH being unable to spread to other files of its own accord, SpywareRemove.com malware researchers have noted a high rate of reinfection by Luhe.Packed.AH if other PC threats aren't disabled while your anti-malware software removes Luhe.Packed.AH. Luhe.Packed.AH's presence has been linked to...

PageRage is an adware application, which is called by Internet users as a Facebook virus. In actuality, PageRage is a program that allows PC user to change or re-create profile pages through browser plug-ins. Manual intervention of a computer user is required to have a user account and download the application. The computer users's permission is sought before PageRage can be loaded. After the computer users signs-up for a PageRage account, it urges him/her to download a plug-in that gives an...

Troj/Dloadr-DPB is a Trojan downloader that's distributed via links in fraudulent ADP e-mail messages. While the ADP company (an abbreviation of Automatic Data Processing and a handler of payrolls, taxes, outsourcing and related services) is completely unrelated to these fraudulent e-mails, some forms of this spam even go so far as to include the ADP logo and other signature traits of the company. If you've clicked on an e-mail link that sounds similar to the hoax above, your PC may be...

Similar to Troj/JSRedir-EX , Troj/SWFExp-AI , Troj/JSRedir-EF and Mal/JSRedir-K , Troj/JSRedir-H is a web-based PC threat that's used to install other forms of malicious software – in Troj/JSRedir-H's case, this payload is a Trojan downloader. Like many similar PC threats that have been noted just above, Troj/JSRedir-H is distributed via fraudulent e-mail messages, and Troj/JSRedir-H's current e-mail scams all involve fake messages from the ADP, a reputable company that provides...

Troj/JSRedir-GZ is a Trojan that spreads via spam ADP (a payroll processing company) emails. Two types of the ADP spam emails are spreading on the Internet. One is fairly a plain text message with the subject 'ADP Funding Notification - Debit Draft' instructing recipients to click a link to view a supposed transaction report. The second is more professional looking and offers to human resource specialists that ADP is updating its security processes and a recipient needs to login and be...

The Korplug Trojan is a backdoor Trojan and spyware program that opens a backdoor on your computer (which may be used for various purposes, such as installing extra malware or updating the Korplug Trojan) while also implementing various information-stealing functions. Following shortly after the use of chemical weapons in Syria made headlines, the Korplug Trojan has been seen in spam e-mail messages that claim to be delivering some new information about the Syrian situation, with file...

W32.Shadesrat.C is a worm that circulates through removable drives. W32.Shadesrat.C also tries to spread through various peer-to-peer applications, such as Azureus, Kazaa, BitTorrent, eMule, and LimeWire. W32.Shadesrat.C can also try to proliferate through AOL Instant Messenger (AIM). W32.Shadesrat.C also opens a back door on the infected computer. Once executed, W32.Shadesrat.C copies itself by creating malicious files. W32.Shadesrat.C creates the particular file so that it can run when the...

MonitoringTool:Win32/HomeKeyLogger is a keylogging program that can track your online activities and transmit the recorded data to a remote server. MonitoringTool:Win32/HomeKeyLogger is a security risk to your personal security. MonitoringTool:Win32/HomeKeyLogger can spread via bundled downloads and spam email attachments. MonitoringTool:Win32/HomeKeyLogger can also be disguised behind highly risky social engineering scams, encrypted file sharing, and a variety of other security loopholes....

BKDR_AGENT.BCSG is a backdoor Trojan that initially conceals itself as a fake .jpg picture while BKDR_AGENT.BCSG makes malicious modifications to your operating system. These changes allow your computer to be compromised via standard backdoor attacks, after which BKDR_AGENT.BCSG deletes itself to avoid being detected. BKDR_AGENT.BCSG's changes may enable other PC threats to be installed on your computer, and BKDR_AGENT.BCSG's own installation is aided by JS_DLOADER.SMGA , a Trojan downloader...

JS_DLOADER.SMGA is a Trojan downloader that uses a recent Internet Explorer exploit to install a second PC threat, BKDR_AGENT.BCSG . BKDR_AGENT.BCSG, which then makes malicious modifications to Windows components, places an additional file onto the computer and then deletes itself to avoid detection. These attacks place your PC at a high level of risk for being compromised in a variety of ways, including losing personal information or inadvertently allowing criminals to control your...

Win32/Gataka is a banking Trojan that was originally identified in 2011 but remains an active and significant threat as of June 2012. Although Win32/Gataka's default functions are relatively limited, like other plugin-supporting PC threats such as SpyEye , Win32/Gataka includes heavy support for additional features that are used to monitor your computer and steal personal information, including passwords and other security data for bank accounts. Since Win32/Gataka uses sophisticated attacks...

'Votre ordinateur est bloque' France Ransomware is a new variant of Gendarmerie Nationale Ransomware (AKA the French Police Ukash Virus) that uses a tweaked pop-up alert and otherwise has attributes that are consistent with previous members of the Ukash Virus family. This group of ransomware Trojans displays fake legal warnings that cover up the entirety of the Windows interface, making interaction with other programs impossible. 'Votre ordinateur est bloque' France Ransomware's preference...

PUP.MultiSearchBox is a malware threat, which is known as a potentially unwanted program. PUP.MultiSearchBox installs itself on the compromised PC without the affected computer user's consent and knowledge. PUP.MultiSearchBox may spread through malicious websites. PUP.MultiSearchBox may reduce you PC performance. PUP.MultiSearchBox might be difficult to detect and uninstall from the infected computer system. PUP.MultiSearchBox might be used to advertise and distribute rogue security...