Redpill is a spyware infection that is closely linked to an email spam campaign. Redpill can be used to steal highly sensitive information. Some examples of information that can be stolen using Redpill include sensitive email messages, documents and files stored on the infected computer, online banking details, credit card numbers, social media and online email passwords and many more. Because of this, Redpill is considered as a severe threat to a computer’s security and should be removed immediately as soon as you suspect that your computer has become compromised with this threat. Originally, Redpill was designed to aid individuals that suspected that their romantic partners were cheating in order to monitor their online activity. However, criminals have expanded on Redpill’s original functions in order to turn Redpill into a highly effective spy Trojan that claims thousands of new…

Win32/Spy.Shiz.NCE is a Trojan that functions as a spying application. Win32/Spy.Shiz.NCE is designed and used by cybercrooks. Win32/Spy.Shiz.NCE performs selective information extraction that includes login information, such as account names and passwords. Win32/Spy.Shiz.NCE loads automatically whenevere you bootr up Windows. Win32/Spy.Shiz.NCE injects its codes into Windows directory and modifies the Windows Registry by creating the startup Registry entry. Win32/Spy.Shiz.NCE can also distribute other malware infections on the infected PC….

FinFisher is a controversial suite of IT surveillance software. FinFisher is marketed and developed by Gamma International and has seen use in military and government surveillance operations. There have been various reports of attacks NGOs and political dissidents involving FinFisher software. Some examples of groups that may be targeted with FinFisher malware include political dissidents in Syria and pro-Tibet activists in China. ESG security researchers urge computer users involved in political activism or in danger from surveillance from a particular government or military entity to protect their computer with strong anti-malware measures and to be extremely careful when browsing the Internet or downloading any kind of content.

The Controversy Surrounding FinFisher and Gamma International

While there are many legitimate applications for FinFisher, especially in law…

Spyware.Zbot.out is a Trojan that is designed to rob crucial data from the infected computer. Spyware.Zbot.out Trojan is a resource hog and can make an infected computer run more slowly and have noticeable performance problems. Spyware.Zbot.out runs by injecting its own malicious code into other file processes, as well as by corrupting various kinds of files. PC security researchers have noted that Spyware.Zbot.out can infect Dreamweaver objects and System Restore files, making System Restore an ineffective way of removing Spyware.Zbot.out. Since Spyware.Zbot.out is a relatively new variant in the Zbot family of malware (detected in late July of 2012), ESG malware analysts recommend updating your security software. Spyware.Zbot.out and other Zbot variants should be removed with a reputable anti-malware program immediately and…

Red Raider is a virus that typically infects computers on corporate networks. Red Raider Virus invades the corrupted PC through a hole in Internet Information Server (IIS) software, which is used to power Internet servers, then scan the Internet for vulnerable systems to corrupt PCs and proceed on the process. Red Raider Virus uses affected computers in denial of service attacks. Red Raider Virus exploits a weakness in the IIS software, which has already been fixed with a patch from Microsoft, that enables an attacker to run an arbitrary code on the infected computer….

MonitoringTool:Win32/Powerspy.F is a harmful application that can infiltrate into compromised machines and steal information from affected computer users, needed to benefit cybercriminals or used to distribute spyware. MonitoringTool:Win32/Powerspy.F has been generated by cybercriminals to conceal processes, steal information secretly, and even create surreptitious infiltration channels on the infected computer system. MonitoringTool:Win32/Powerspy.F might propagate via bundled downloads, bogus vide codecs, and other loopholes detected in your Windows system. MonitoringTool:Win32/Powerspy.F can decrease PC performance speed, eliminate administrative privileges, and result in other serious issues. Some of the processes of MonitoringTool:Win32/Powerspy.F work as rootkits and make this specific spyware hard to find and uninstall. MonitoringTool:Win32/Powerspy.F can collect and steal your…

The PWS:Win32/Karagany.A Trojan was first detected in Spring of 2011. ESG security researchers have detected PWS:Win32/Karagany.A attacks as recently as April of 2012. This Trojan infection has various aliases, often known as FraudPack, although PWS:Win32/Karagany.A is the name by which PWS:Win32/Karagany.A is identified by Microsoft. ESG security researchers consider that PWS:Win32/Karagany.A presents a severe threat to your computer system’s security. This malicious Trojan, in the form of a DLL file, is designed to steal passwords in order to then again access to protected online accounts.

One of the most dangerous aspects of PWS:Win32/Karagany.A is the fact that PWS:Win32/Karagany.A does not display any overt symptoms. While this may seem counter-intuitive, it is important to remember that problems on an infected computer system indicate that action with a reliable anti-virus…

TSPY_GEDDEL.EVL is a spyware that may be downloaded and installed on the compromised PC system by other malware infections. TSPY_GEDDEL.EVL may connect to particular web pages in order to transmit and receive information. TSPY_GEDDEL.EVL logs open windows and user keystrokes in a try to steal information. Use a genuine security application to remove TSPY_GEDDEL.EVL….

The TSPY_GEDDEL.EVL Trojan is a malicious spy Trojan that is closely linked to the TROJ_MDROP.GDL dropper. TSPY_GEDDEL.EVL usually spreads through spam email scams, most recently through a malicious email message claiming to contain an attachment with news about the Bo Xilai’s political scandal (a well-publicized news story in Chinese politics). TSPY_GEDDEL.EVL is embedded within a fake DOC file attachment which attempts to exploit the well-known CVE-2012-0158 Microsoft vulnerability, which has already been patched in a critical security update. The best way to protect yourself from TSPY_GEDDEL.EVL is to avoid opening unsolicited email attachments and ensuring that you have a strong spam filter to screen your incoming email messages.

A TSPY_GEDDEL.EVL Trojan infection will display little to no symptoms on the…

SearchTerms (Search Terms) is a malicious program known to be spyware. SearchTerms is able to run in the background, after loading at startup of Windows, remaining hidden from the computer user. SearchTerms is also known to connect to the internet were it may send recorded internet search terms to a remote user. To limit the risk of stolen personal data or other threats, it is wise to execute a scan from a trusted anti-malware program to remove SearchTerms and other malware….