The Kovter Ransomware is a malware threat that carries out a common Police Ransomware scam in order to steal money from unsuspecting computer users. The Kovter Ransomware is a relatively new Police Ransomware Trojan, first detected in 2013 in the wild. Like most Police Trojans, the Kovter Ransomware displays a fake message from the police intending to trick the victim into paying a 'penalty' in order to stay away from jail time. Like other Police Rasomware, the Kovter Ransomware has a Winlocker component that allows the Kovter Ransomware to block access to the infected computer. However, the main reason why the Kovter Ransomware has attracted the scrutiny of malware researchers is...
Track Global Malware TrendsView the trending of malware based on the 'detection count' reports of threats found in infected PCs and volume levels which reflect malware infection rates. For real-time data on malware outbreaks worldwide, visit MalwareTracker.
Top Security News
Top 20 Countries Found to Have the Most Cybercrime
Have you ever wondered which countries face the most cybercrime? If you have ever wondered which countries have the most cybercrime, then you may be surprised to know that there are few contributing factors that attract cybercriminals to specific regions of the world. Security research firm,...
Warning: Over 20,000 Gmail, AOL, and Yahoo Email Accounts Hacked!
A major email security scam has taken place today where hackers compromised over 20,000 Gmail, AOL and Yahoo email accounts and posted the login details of them online. It is apparent that there is a phishing scheme happening where hackers are able to obtain thousands of login credentials from...
The CIBS Pol Virus is a police ransomware Trojan that belongs to the Urusay family of malware. This police ransomware Trojan is classified as a Winlocker because it blocks access to the victim's computer by displaying a full-screen message that claims to be an alert from the police. CIBS Pol Virus is a well known scam that is in no way connected to the police force. Instead, the CIBS Pol Virus is used by criminals to scam inexperienced computer users so that they will hand over their money out of fear of prosecution, jail time and severe fines. If your access to your computer is blocked by the CIBS Pol Virus, ESG security researchers strongly advise against following the steps...
MyStart is a browser hijacker that uses the MyStart by Incredibar toolbar and a browser hijacking component that forces its victims to visit the MyStart.Incredibar.com website. This website is a low-quality search engine that displays more advertisements than legitimate results. Even worse, several of MyStart's search results may lead computer users to websites containing malicious content. Although MyStart actually provides a supposed tool to remove this component from the victim's web browser, ESG security researchers recommend disregarding this component and instead removing MyStart with the help of a reputable anti-malware utility. MyStart can refer to both the low-quality...
Windows Active Guard is a malware program that belongs to the FakeVimes family of fake security software. Windows Active Guard carries out a common online scam that involves pretending to be a real security program in order to convince inexperienced computer users that they must pay for an expensive 'upgrade'. Since there are no real anti-malware capabilities on Windows Active Guard and it is, in reality, a malware infection itself, ESG malware researchers strongly recommend ignoring all of Windows Active Guard's warnings and removing this bogus security program with a reliable anti-malware application. Windows Active Guard's Family of Rogue Security Programs Malware in the...
ESG security researchers have received reports of a ransomware infection, known as the FBI Moneypak ransomware, that targets computer users in the United States. The FBI Moneypak ransomware infection will claim that the victim's computer was involved in viewing child pornography and then demands payment of a 100 dollar 'fine' to be sent via MoneyPack. Of course, that a criminal charge as serious as child pornography would be punished with a mere 100 dollar fine is laughable. There is a reason for this, the FBI Moneypak ransomware is not really from the FBI. Rather, this message is actually part of a common malware scam. The FBI Moneypak ransomware scam will use a Winlocker, that is,...
The so-called Ukash Virus is a ransomware Trojan that receives its name because Ukash Virus requires that its victims use Ukash (a legitimate money transfer service) to transfer the ransom funds. This dangerous Trojan infection is composed of a Winlocker component that basically blocks access to the infected computer system, disabling access to the infected computer system's desktop, Task Manager, command line, Registry Editor and other services and applications. There are countless variants of the Ukash Virus, designed to target various different countries in Europe and North America. ESG malware analysts strongly advise against paying the ransom that this malware infection tries to...
Live Security Platinum is one of the many fake security programs in the WinWebSec family of malware. Although ESG security researchers have been following the family of malware for several years, Live Security Platinum is a relatively new variant first detected in 2012. Because of this, it is pivotal to ensure that your security software is fully updated. Like most fake security programs, Live Security Platinum is designed to induce PC users to purchase a worthless 'full version' of Live Security Platinum. To do this, Live Security Platinum will try to scare the computer user with a variety of fake error messages, pop-up alerts from the Taskbar and a convincing fake scan of the...
DNS Changer is a Trojan that is designed to force a computer system to use rogue DNS servers. Also, DNS Changer is being referred to as the Internet Doomsday Virus, Ghost Click Malware, DNS Changer Rootkit, DNS Changer Malware, DNS Changer Trojan, DNS Changer Virus, FBI DNS Changer or DNSChanger. A DNS Changer infection will typically have two steps, in order to reroute the infected computer’s traffic to these malicious DNS servers: A DNS Changer malware infection will change the infected computer system’s settings, in order to replace the DNS servers to rogue DNS servers belonging to hackers or online criminals. The DNS Changer malware infection will then try to...
PalMall is an adware add-on and browser extension that could render several advertisements on your computer mostly during the time that you are surfing the internet. The PalMall adware may act much like an add-on component as it will load up during the installation of freeware or bundled software applications. Once PalMall has loaded up, it may then generate several ads in different forms, like pop-unders, pop-ups or banner ads. The PalMall ads could also cause redirects to unwanted sites or pages that seem to be questionable by their content or other advertisements that they display. Stopping the PalMall ads may take use of an antispyware tool to safely detect and eliminate all components from PalMall loaded on your system.
UpperFind is an adware program that may load up due to the installation of random bundled software programs or freeware apps. When installed, UpperFind usually will render random advertisements generated from various third party ad networks. The UpperFind ads could be ones that attempt to offer various products or services over the internet. The UpperFind ads may redirect users to different sites that could attempt to offer other services or display random ads itself. The UpperFind ads could also hinder the performance of web browser applications in some instances. Removal of the UpperFind ads and stopping its annoying activities may take finding all components or plugins installed on your system and removing each of them.
App Bud is an adware program that could render several advertisements in different forms on your system while you are surfing the internet. The App Bud adware usually generates various ads from third party ad networks where many of them will redirect you to other sites if clicked on. The redirects coming from App Bud ads could land your web browser on unwanted sites or pages that attempt to offer you various products or services through the internet. The App Bud ads may also cause your web browser to have reduced performance in some ways eventually making it difficult to load resource-intensive pages. The App Bud ads may be stopped by removing all associated files or add-on components that may have been installed. Usually loading of App Bud comes from the installation of a random freeware program or bundled software downloaded from the internet.
Fun2cell.net is a questionable site that is considered a browser hijacker due to its potential actions it may perform when used. The Fun2cell.net page is mostly harmless to a computer though it may attempt to offer various services and sponsored links that could load other pages or redirect you to unwanted sits. The Fun2cell.net page could act as your default home page in some cases. This may be due to installing random freeware programs or a bundled software app. Reversing those effects may take use of an antispyware program to find and remove all Fun2cell.net associated plugins or add-on components.
Clubtonix.net is a browser hijacker and a site that could display and load several advertisements in an attempt to gain money from your clicks. The Clubtonix.net page may not be harmful initially to your computer. However, through the various ads or sponsored links found on Clubtonix.net your browser could be redirected to several unwanted sites or pages that attempt to offer questionable services or unwanted products. The Clubtonix.net may also load up offers that seem too good to be true. It is best that in the case of Clubtonix.net loading as your default home page that you take action to remove any plugins or add-on components associated with Clubtonix.net from your computer. Those components may be automatically cleaned off through the use of an antispyware tool.
Disasteroids is an adware program that may attempt to allow users to play an Asteroids game that could display several advertisements and then cause unwanted redirects to other sites. The Disasteroids program could load up on a computer due to installing random freeware programs or other bundled software. Once loaded, Disasteroids is apt to loading several ads or pop-up notifications that may offer other deals or games for accessing through the internet. As an unwanted program, Disasteroids may be extremely annoying and may warrant removal through the use of an antispyware tool.
Backdoor.Baccamun is a backdoor Trojan horse infection that is apt to exploit ActiveX controls within Windows Common Controls. Through its actions, Backdoor.Baccamun may make a system vulnerable to attacks where a remote attacker could gain access. It is in a computer user’s best interest to utilize the proper tools for detecting and removing the Backdoor.Baccamun threat before it causes serious system damage. Backdoor.Baccamun may also be used to attack documents mostly on Korean based systems.
Comet Arcade is an adware application. The use of Comet Arcade ads are known to cause web browser to redirect to various pages where some could contain unwanted and questionable content. The Comet Arcade ads may be displayed at random on a system when the computer user is surfing the web. The Comet Arcade ads may come in various formats where pop-ups, pop-unders or banners are displayed on your screen mostly within your web browser application. There are several components related to Comet Arcade that could automatically load on your system during the installation of random bundled software programs or freeware applications downloaded from the internet. Removal of the Comet Arcade ads may require finding all plugins or add-on components within your web browser applications and removing each of them.
W1.rapidlod.com is a browser hijacker site that may be responsible for loading advertisements and sponsored links to lure computer users into clicking on them for monetary gain on the part of site’s creators. Use of W1.rapidlod.com may not be immediately harmful to your computer. Though, use of any of the links supplied in W1.rapidlod.com, including ads and sponsored links, may redirect your web browser to questionable sites where it has unwanted content that may initiate downloads of malicious files. The W1.rapidlod.com page may also load as your default page. In that case, it is best to utilize a trusted antispyware tool to safely detect and remove all agents or components causing W1.rapidlod.com to load automatically.
Rplitechsupport.oncallonly.com is a questionable website and browser hijacker. The Rplitechsupport.oncallonly.com page may offer computer support and links with support numbers to dial for assistance. Use of the Rplitechsupport.oncallonly.com services is questionable and could be a means for taking your money for a service that is not fulfilled. The Rplitechsupport.oncallonly.com page may automatically load on your browser set as your default home page in some cases. If this occurs, it is best to take action to remove any components related to Rplitechsupport.oncallonly.com loaded on your system or found within your web browser applications. Automatically removing those components may take use of an antispyware program.
SoftCoup is a program that is suspected to be the culprit of displaying random advertisements on a computer through its web browser. The SoftCoup program may be installed through random freeware programs downloaded and installed onto a computer. After loading, SoftCoup is apt to loading various ads that attempt to offer random services or products through the internet or shopping sites. Use of the SoftCoup ads may lead to redirects loading up unwanted and questionable sites. The SoftCoup ads may also reduce the performance of web browser applications potentially being an annoyance when loading certain web pages. The SoftCoup ads and its related components can all be removed if each plugin or add-on component is found and removed from the system.
DownPriceApp is an adware program that may be designed to offer various coupon deals or online savings through its various ads that it renders. The DownPriceApp ads may be made up of random offers through popular shopping websites. The use of the DownPriceApp ads may redirect your web browser to unwanted sites or ones that have questionable content. The DownPriceApp ads may also cause your web browser to perform poorly in some situations making it difficult to view certain web pages at full speed. Usually DownPriceApp will load automatically by the installation of random freeware programs or bundled software downloaded from the internet. Eliminating the DownPriceApp ads and stopping its unwanted activities on your computer may require finding and removing all related components including any add-on plugins within installed web browser applications.
BrowserArmor is a program that may claim it is able to add additional functions for your web browser application. Through the use of BrowserArmor it may then display random pop-up messages or advertisements on your screen when you are surfing the internet. Use of any of the BrowserArmor ads or pop-ups could then redirect your web browser to unwanted sites that may offer other items or services through the internet. Allowing BrowserArmor to perform its various activities on your computer could also reduce the performance of your web browser making it difficult to view certain pages on the internet. Removal of BrowserArmor and its related components is warranted to stop any unwanted activities that it performs when installed. Usually the installation of BrowserArmor will take place when loading random bundled software apps or freeware programs downloaded from the internet.
ContextFree is an adware program that may load up several advertisements in many forms where they attempt to offer various products and services on the internet. The ContextFree ads may be displayed with a note saying they are ContextFree Ads or they ads are powered by ContextFree. If used, the ContextFree ads may redirect your web browser to other sites where some may turn out to be questionable of have unwanted content on them. The ContextFree ads may come in the form of pop-unders, pop-ups or banners. The display of ContextFree ads may also reduce the performance of your web browser application making surfing the internet a cumbersome situation. In such a case, it is in your best interest to remove ContextFree to stop the ContextFree ads from being displayed and potentially loading up unwanted websites. Automatically removing ContextFree and the ads it generates may be done through...
iReview is an adware program that may act as a browser extension where it will generate random ads or cause unwanted redirects within your web browser to questionable and unwanted sites. The iReview program may have several components that could load onto your system when you install a random freeware program or bundled software app. Stopping the activities of iReview may require use of an antispyware tool.