Virus:Win32/Virut.gen!AO is a virus, which enables cybercriminals to obtain access to a compromised PC. Virus:Win32/Virut.gen!AO drops and executes malevolent files and resricts a target computer user from visiting security-related websites. Virus:Win32/Virut.gen!AO is distributed through corrupted networks and removable drives such as USB sticks, floppy disks or flash card readers. Virus:Win32/Virut.gen!AO searches for all the removable drives on the corrupted PC from drive D:\ to Z:\. When Virus:Win32/Virut.gen!AO is finds a removable drive, it installs a copy of itself with a randomly created filename. Virus:Win32/Virut.gen!AO can destroy some corrupted files and does not allow to repair them. Virus:Win32/Virut.gen!AO blocks programs from operating appropriately or makes them crash when executed. Virus:Win32/Virut.gen!AO is a polymorphic file infector, which embeds a malevolent code…

PE_PARITE.A is a virus that circulates by using a homemade Internet browser and attacks users of ‘Banco do Brasil’. PE_PARITE.A steals login information from victims. The specific Internet browser is given that could access the website of the ‘Banco do Brasil’ without using the necessary security plugin. PC users that click the download link download a zip file. The compressed file encompasses two executable files: one is the Internet browser itself, which is called ‘Navegador BB’, and another one is the file called ‘Plugin_Navegador_2.1.3.exe’. These files are found as PE_PARITE.A. The third file is a text file which incorporates instructions to execute ‘Plugin_Navegador_2.1.3.exe’ first, and then execute the Internet browser. The ‘plugin’, in actuality, steals the victim’s bank information. Meanwhile, the Internet browser dupes the bank website into not needing the common security…

Win32.Sanity.N is a virus that spreads as a bogus Flash player update for DropBox via compromised websites. The bogus Flash update tricks target computer users into downloading and installing Win32.Sanity.N on attacked computer. The fraudulent alert at the top of one of the page alternates between English and Turkish. Win32.Sanity.N adds the malevolent executable files that are, in actuality, hosted in a DropBox account and have not been taken down since they were some time ago. The files disable all Windows features: Firewall, Safe Boot, AV, UAC, and other. Win32.Sanity.N then distributes variations of the Sality virus….

[+] Click Image to Enlarge

• 

Perk Redirect Virus is a type of browser hijacker threat that is known for redirecting internet search results or web pages to unwanted sites or a new default search engine site. Most times Perk Redirect Virus will affect Google Chrome, Internet Explorer and Firefox at the same time where users may no longer be able to use common search engines like Google.com. Usually the Perk Redirect Virus will send users to the search.perk.com site randomly causing their search results to be changed or return unwanted sites. Removing Perk Redirect Virus is essential to restore the ability to perform normal internet searches and not be redirected….

CashU is a legitimate online payment company that is very popular in the Middle East. This company provides a valuable service by allowing computer users in this region to make online payments without needing access to internationally recognized credit cards or websites that may be blocked in this region of the world. Unfortunately, since late 2012 this company’s good name has been sullied because of the use of this payment service in a scam commonly referred to as the CashU Virus or CashU scam. The same thing has been happening in Europe with the Ukash money transfer service and in North America with MoneyPak, both online payment services being used by criminals demanding the payment of a ransom in various ransomware schemes. Basically, criminals create Trojan infections that block access to the infected computer. Commonly known as

Invitation Facebook Virus is a spam message that alerts target computer users about the invented malware infections proliferating on this social network. Invitation Facebook Virus is distributed via the Internet and asks attacked computer users to keep on doing that in order to allegedly protect them. However, if the PC user opens this scam alert and then sends it to his/her friends, it is the main thing that can easily affect a Facebook account or PC. Invitation Facebook Virus is used by cybercrooks to steal confidential information from the targeted computer or take over an account of Facebook. Mainly, Invitation Facebook Virus contains the attachment called ‘Invitation Fb’ and allegedly notifies about the extremely dangerous virus that is being presently dispersed on the web. The bogus notification of Invitation Facebook Virus includes a harmful attachment, found as a Trojan, which,…

The ‘Complete an offer to continue’ Virus is a Winlocker Trojan that blocks the victim’s computer in order to profit from online surveys and marketing. The ‘Complete an offer to continue’ Virus represents a new tactic that criminals use to monetize Winlocker infections. The ‘Complete an offer to continue’ Virus uses a typical Winlocker scam with a new twist. While other ransomware Trojans typically demand a ransom directly from the victim, the ‘Complete an offer to continue’ Virus instead allows criminals to profit by forcing their victims to complete online surveys to be able to gain personal information.

When the victim tries to access their computer, a message written in red and white letters over a black background will pop up instead. This message fills up the whole screen and includes a picture of a lock and a list of…

The PlayBryte Virus is a browser hijacker that takes computer users repeatedly to a Web page that uses the tagline ‘manage and measure your social media’, a statement that does not really specify or mean anything except for sounding vaguely computer-related. The PlayBryte Virus also includes a ‘featured’ game and lots of attractive colors and cliché Web 2.0 icons. In fact, this website is a search engine of the kinds typically used in these types of schemes. Basically, websites like this one are set up with the sole purpose of exposing computer users to advertisements and marketing schemes. Computer users are directed to these websites through the use of browser hijackers such as the PlayBryte Virus.

The main purpose of the PlayBryte Virus is to increase the traffic the website associated with this threat receives. The PlayBryte Virus may affect various Web browsers and is…

The Google WebHP Virus is a browser hijacker. The Google WebHP Virus’ main goal is to force PC users to visit a low quality knock-off of the Google website in order to generate ad revenue. However, the Google WebHP Virus has also been associated with other symptoms such as pop-up windows and forced redirects to a number of other websites. The Google WebHP Virus is not actually a virus. Viruses are typically defined by their ability to corrupt executable files in order to copy themselves and spread throughout a computer and from one computer to another. The so-called Google WebHP Virus is actually a Web browser extension, typically taking the form of a Web browser toolbar that aggressively forces a computer user to view certain online content in order to generate revenues and market known online scams and low quality products.

ESG security researchers have received reports that the…

Virus.Vbinder is a computer virus that may conduct malicious activities on an infected computer. Through Virus.Vbinder, several system processes may be loaded taking up memory and drastically reduce system performance. Through vulnerabilities within Windows, Virus.Vbinder may be installed without the computer user noticing. Several of the components and process of Virus.Vbinder may be hidden and continually run without detection. It is best to utilize an updated antispyware application to safely remove the Virus.Vbinder threat….