Hacktool.WindowsLoader is a Windows Trojan that allows attackers to gain remote access and control over the infected computer system. Hacktool.WindowsLoader contains keylogging capabilities, can steal personal information such as user names and passwords, and can even use your personal IM and email accounts to launch mass email attacks. Hacktool.WindowsLoader does not have an interface, and all its malicious components function stealthily deep in the system background. Hacktool.WindowsLoader is also detected as a rootkit Trojan; therefore, its malicious files can be disguised from...

Program:Win32/Pameseg.H is a Trojan that tries to steal money from unsuspecting computer users. Program:Win32/Pameseg.H attempts to urge victims to send a text message to a provided number, that would later ask installing a particular software product, which is, of course, paid. Program:Win32/Pameseg.H displays a fake pop-up notification on the affected PC's screen created in French. The malicious software program states that it will install an MSN messenger, Internet Explorer, Adobe Flash Player, VLC Player, Windows Media Player, OpenOffice, Outlook Express, Counter Strike, Avira...

TrojanDownloader:Win32/Bradop.A is the downloader component for a banking Trojan family that, like many others, focuses on stealing account logins from Brazilian banks. TrojanDownloader:Win32/Bradop.A is distributed by fraudulent e-mail messages that include embedded images with shortened links to TrojanDownloader:Win32/Bradop.A; after its launch, TrojanDownloader:Win32/Bradop.A will proceed with installing a second component that's responsible for stealing personal information. SpywareRemove.com malware researchers rank TrojanDownloader:Win32/Bradop.A and its relatives as high-level PC...

Suspicious.Epi.3 is a a computer Trojan which comes armed with detection technology designed to find new malware infections without traditional signatures. Suspicious.Epi.3 aims at detecting malicious programs that has been intentionally mutated or morphed by cybercriminals. Suspicious.Epi.3 poses a security threat to computer security and should be uninstalled immediately after detection.

Win32/Bradop is a family of banking Trojans that include separate spyware and Trojan downloader components. Like Mal/Behav-130 , Win32/Bancos or TSPY_BANKER.EUIQ , Win32/Bradop appears to predominantly target Brazil-based bank accounts via its distribution through spam e-mail. Unlike some similar PC threats, Win32/Bradop-based Trojans only require you to click on an embedded image, rather than download a file attachment, to be infected. In addition to harvesting Brazilian bank credentials, Win32/Bradop Trojans can also steal more broadly-applicable data than the above, such as Twitter...

IXESHE is a backdoor Trojan that's unusual for its preference for infecting specific targets instead of employing a modern and indiscriminate propagation model; IXESHE's favored victims so far include manufacturers of electronics, German telecommunications companies and countries based in the eastern Asia region. Although IXESHE attempts to conceal its attacks, as a backdoor Trojan, IXESHE allows criminals to use your computer's resources for a variety of crimes, most prominently including recruiting your PC as a spare Command & Control server that can issue commands and data to other...

Trojan.Naid is a Trojan that opens a back door on the infected computer. Trojan.Naid allows attackers to gain remote access and control over the compromised PC. Once executed, iTrojan.Naid creates a few malicious files. Trojan.Naid also modifies the Windows Registry by creating several registry entries. Trojan.Naid may create one of the services named AppMgmt and BITS so that it can run every time you start Windows. Trojan.Naid gathers the particular system information from the affected computer including unique identifier (UID) and domain name. Trojan.Naid uses its own custom...

Contrary to its nickname, the Cissi virus actually is a worm that distributes itself via e-mail spam and includes a backdoor Trojan component. Cissi virus infections are sometimes noticeable by the presence of a Cissi.exe-named memory process and often infect NetBIOS-connected PCs by brute-force hacking weak account passwords. Among its default attacks, Cissi virus will harvest e-mail addresses for future attacks and create a backdoor vulnerability that allows criminals to have a dangerous level of access to your PC. SpywareRemove.com malware experts encourage you to remove a Cissi virus...

Trojan.Exprez.B is a recent update to Dorifel, a virus that infects executable files, Word documents and Excel spreadsheets. Other than some enhanced self-distribution capabilities, Trojan.Exprez.B doesn't appear to have any extra features that are currently-functional, although SpywareRemove.com malware experts have noted some instances of Trojan.Exprez.B making contact with URLs that could be a precursor to Trojan.Exprez.B being designed to include downloading or backdoor-related features in the future. Files that are infected by Trojan.Exprez.B can be fully recovered by a combination...

Downloader.Instas is a Trojan that drops other malware threats on to the infected computer. Once executed, Downloader.Instas copies itself to the certain location. Downloader.Instas creates the particular registry entry so that it can run automatically every time you start Windows. Downloader.Instas connects to a few locations to drop and run other malware infections on the affected computer that can harm the compromised PC. Downloader.Instas may open a backdoor that will allow remote attackers to gain remote control and access over the affected computer system without the PC user...

'FBI Your PC is blocked' ransomware is a ransomware Trojan that blocks any attempts to use other applications until a high fine is paid. Although 'FBI Your PC is blocked' ransomware displays a fake crime notification that informs you that this is a legal action, 'FBI Your PC is blocked' ransomware's attacks actually are at least as illegal as the crimes that 'FBI Your PC is blocked' ransomware claims you've been caught committing, and SpywareRemove.com malware experts haven't seen any signs that 'FBI Your PC is blocked' ransomware is affiliated with the FBI. As is typically the case with...

Trojan.Dropper.BCMiner is a Trojan that installs BitCoin minning program on the compromised PC. Bitcoins are virtual currency used for both legitimate purposes and hiding money transactions from the law. Based on the way BitCoin functions, it is possible to get small amount of them by running a particular application on your computer. Cybercriminals run such software programs on numerous affected computers and, thus, gain money. BitCoin minning uses computer resources; therefore, Trojan.Dropper.BCMinner will slow down your machine considerably based on how a specific minning is created....

Surveyscout.com is a phishing and spam site that poses as a legitimate company for providing profitable surveys to its members. Although there are completely safe and revenue-generating survey sites online, Surveyscout.com has all the hallmarks of a scam, including asking for personal information, charging an upfront membership fee and sending its members offers with poor prospects for meaningful profit. Surveyscout.com may be promoted in the form of pop-ups from browser hijackers, and recommend that you ignore Surveyscout.com's promises of riches and, if necessary, disinfect your PC with a...

Searchformore.com is a spam-based search site that generates profit from fraudulent traffic and irrelevant advertisements. By itself, although Searchformore.com is only a minor danger, malware researchers have also found recent instances of search engine hijacks that use Searchformore.com as part of their attack platforms. Redirects to Searchformore.com and similar sites can happen at any time, but are especially probable after you try to use a well-known search engine, and are almost always a symptom of malicious software on your PC. SpywareRemove.com malware researchers encourage you to...

StartNow Toolbar is a search engine toolbar that claims to be powered by Bing, although its behavior and the corresponding behavior of its website have given malware researchers ample cause for suspicion of its true intentions. As a potentially unwanted program or PUP, StartNow Toolbar may be installed when you attempt to install an unrelated program that has StartNow Toolbar as an optional inclusion. As long as you pay attention to what you're downloading, StartNow Toolbar shouldn't have a significant chance of getting on your PC, but since StartNow Toolbar is noted for unfriendly...

Virus.DOS.kurgan.948.a is a virus that is able to replicate itself. Virus.DOS.kurgan.948.a may be attached to files on computer system or spread as a malicious script installed into specific part of a computer memory. Virus.DOS.kurgan.948.a is difficult to detect and uninstall from the affected computer. The error to delete Virus.DOS.kurgan.948.a occurs from the disguised copies of the virus saved in the encrypted mode while idle. There's a mechanism to activate and decode them that is triggered, if already activated copies are restricted or found missing.

Rival Gaming is an unwanted browser toolbar that usually inserts itself on the IE, Firefox or other web browser without asking any PC user's permission. For unsuspecting computer user, Rival Gaming is introduced as gaming toolbar, which promises to enable the user navigate between the games at any time. However, Rival Gaming is a potentially unwanted program that comes bundled with other applications from unsafe websites. The Rival Gaming toolbar can cause identity or privacy theft. Rival Gaming may look useful but, in truth, it is potentially insecure. Rival Gaming may also drop other...

Trojan.Mebromi.A is a Trojan that tries to affect the BIOS and the Master Boot Record (MBR). Once executed, Trojan.Mebromi.A may copy itself to the certain location. Trojan.Mebromi.A deletes the particular registry entry. Trojan.Mebromi.A accesses the BIOS information of the infected computer. If the BIOS is an Award BIOS and the BIOS is not already infected, Trojan.Mebromi.A tries to infect the BIOS by generating the specific file. Trojan.Mebromi.A connects to the particular remote location. Trojan.Mebromi.A downloads the certain file from the particular location and executes it.

Generic BackDoor!1sw is a backdoor Trojan opens a 'backdoor' and, thus, allows attackers to gain remote access and control over the targeted computer. A surreptitious channel is maintained by the exploit, which restores Generic BackDoor!1sw and downloads it again. Generic BackDoor!1sw might be difficult to detect and remove from the infected computer. Generic BackDoor!1sw might also be able to drop more malware threats to the affected PC.

'Votre ordinateur est bloqué' Belgium Ransomware is a Belgium-based variant of what's sometimes referred to as the Ukash Virus, a ransomware Trojan that issues fake e-crime notifications and attempts to extort a ransom from its victims. 'Votre ordinateur est bloqué' Belgium Ransomware and the rest of its family have acquired their nickname due to preferential usage of the otherwise legitimate Ukash payment service, although, in some cases, other methods of money transferral (such as Paysafecard) are also accepted. Although 'Votre ordinateur est bloqué' Belgium Ransomware attempts to...