RIP Ransomware

The RIP Ransomware is a ransomware Trojan that is being used to extort computer users. The RIP Ransomware is one of the many variants of the Hidden Tear project, a publicly available ransomware engine created for ‘educational purposes’ originally. Con artist adapted this freely available ransomware engine quickly to create numerous versions of this attack based entirely on the Hidden Tear engine. The RIP Ransomware is being distributed through a Trojan dropper that is sent to the victim’s computer as an attachment in an email message. Once the Trojan dropper enters the victim’s computer, it downloads and installs the RIP Ransomware. The RIP Ransomware carries out a typical ransomware attack. As soon as it is installed, it begins encrypting the victim’s files, taking the victim’s data hostage until...

Posted on December 5, 2016 in Ransomware

SurveyLocker Ransomware

The SurveyLocker Ransomware is a screen locker that is being used to extort money from computer users. The SurveyLocker Ransomware can be a major inconvenience since it will make it difficult to use the affected computer. PC security analysts recommend the removal of the SurveyLocker Ransomware from an infected computer. The SurveyLocker Ransomware prevents computer users from accessing their desktops after they log into Windows. The SurveyLocker Ransomware is a screen locker that disables keyboard shortcuts and utilities such as the Task Manager or the Command Prompt, which may be used to bypass the SurveyLocker Ransomware infection and regain access to the infected computer. The SurveyLocker Ransomware may be distributed through spam emails, as well as unsafe advertisements or Web browser extensions. Most ransomware Trojans...

Posted on December 5, 2016 in Ransomware

‘Security Help Video’ Pop-Ups

The ‘Security Help Video’ pop-up windows in your browser are not legitimate security notifications from your Internet Service Provider. The ‘Security Help Video’ pop-ups are displayed on untrusted pages that you can open when you click on corrupted ads or use untrusted search engines. We have received reports that online stores may be compromised and host ads from questionable advertisers, which lead users to load the ‘Security Help Video’ pop-ups. The ‘Security Help Video’ notifications include the image of a female in a suit that stands amongst what appears to be a call center. Additionally, the ‘Security Help Video’ pop-ups display logos from security firms that say ‘Verified’ and ‘Safe,’ which aim to fool the user into believing the...

Posted on December 2, 2016 in Adware

Malwarevirusonline.xyz

The Malwarevirusonline.xyz domain is used to host phishing messages that promote a technical support service via the 844-722-5345 toll-free phone line. The Malwarevirusonline.xyz is registered to the 103.21.59.22 IP address that is associated with an India-based business. Researchers uncovered more than a few clones of Malwarevirusonline.xyz, which are registered to the same IP address and appear to serve the same agenda. Web surfers may stumble upon the Malwarevirusonline.xyz domain and its clones when they click on corrupted links and advertisements on insecure pages. The Malwarevirusonline.xyz pop-up windows contain the following text: ‘** YOUR COMPUTER HAS BEEN BLOCKED**’ Error # 268D3 Please call us immediately at+1-844-722-5345 Do not ignore this critical alert. If you close this page, your computer access will...

Posted on December 2, 2016 in Browser Hijackers

‘Matrix9643@yahoo.com’ Ransomware

The ‘Matrix9643@yahoo.com’ Ransomware is a ransomware Trojan that is used to extort money from computer users by taking their computers hostage. The ‘Matrix9643@yahoo.com’ Ransomware receives its name from the email account that has been associated with the people responsible for this attack. The ‘Matrix9643@yahoo.com’ Ransomware is different from many ransomware Trojans in that it uses an open source encryption method known as GNU Privacy Guard (GPG) to encrypt the victim’s data. The ‘Matrix9643@yahoo.com’ Ransomware belongs to a small group of ransomware Trojans that have emerged in December 2016 and use different encryption methods from previous ransomware threats. The people responsible for the ‘Matrix9643@yahoo.com’ Ransomware use an adapted version of the GPG...

Posted on December 2, 2016 in Ransomware

ASN1 Ransomware

The ASN1 Ransomware is a threat that has been linked to several attacks in December 2016. The ASN1 Ransomware has the capability to spread within a network, making it a particular threat to corporate computers and networks. Employees within one company may become infected by a threat like the ASN1 Ransomware after opening an email sent by one of their colleagues. There is little to distinguish the ASN1 Ransomware from numerous, other similar ransomware threats that are currently active. The ASN1 Ransomware may be distributed using corrupted spam email messages that will include an embedded link or file attachment that downloads the ASN1 Ransomware from a dummy website. The ASN1 Ransomware is being used in targeted attacks designed to compromise computers belonging to small businesses as well as Web servers deliberately. The ASN1...

Posted on December 2, 2016 in Ransomware

Marvelsound

The Marvelsound software is offered to Windows users that like to listen to music with style. Marvelsound is presented as a sleek music player that has more than just a pretty interface. The Marvelsound media player is advertised at Marvelsound.com as a powerful audio organizer and render. Computer users can download and benefit from Marvelsound for free according to the official information on Marvelsound.com. The Marvelsound application can be used to catalog your audio records and orchestrate your favorite music pieces into a handy playlist that is only one click away. If you are sold on the Marvelsound software, we have a few things to say that you may want to consider before installing the media player. Marvelsound is recognized as a Potentially Unwanted Program (PUP) with adware capabilities and AV vendors flag its installer...

Posted on December 1, 2016 in Adware

Search.memethat.co

The Search.memethat.co portal may prove appealing to Web surfers that spend a better part of their time online at pages like 9gag.com and Imgur.com. The Search.memethat.co portal is tailored to suit the needs of users who like to incorporate memes into their comments online. Memes are images that serve as representations of ideas, feelings, situations and culture, which Web surfers can use to express themselves in a condensed form. If you are interested in Search.memethat.co you might be willing to install the MemeThat Toolbar, which is associated with the portal. The MemeThat Toolbar and Search.memethat.co are owned and developed by Adknowledge, Inc. The toolbar may be promoted on ads as the MemeThat Toolbar by SaferBrowser, and you may be familiar with the SaferBrowser line of applications from our posts on the My News Wire , Fast...

Posted on December 1, 2016 in Browser Hijackers

Search.ph-cmf.com

Adknowledge, Inc. operate the Search.ph-cmf.com domain as part of an extensive network of search portals associated with the SaferBrowser line of browser add-ons and toolbars. Search.ph-cmf.com offers a set of shortcuts to Bigfishgames.com, Addictinggames.com, Roblox.com, Terraarcade.com and Minecraft.net, which you may find useful if you are into online games. We should note that Search.ph-cmf.com is a clone of Search.mygamesxp.com and offers the same content as Search.dm-cmf.com . These portals serve as redirect-gateways to a customized Yahoo search engine hosted at Search.yahoo.com/yhs/search?hspart=adk&hsimp=yhs-adk_sbnt. The Search.ph-cmf.com gateway may be loaded on your new tab page by default if you have installed an extension by Adknowledge, Inc. AV software may mark the extension linked to Search.ph-cmf.com as:...

Posted on December 1, 2016 in Browser Hijackers

‘.342 File Extension’ Ransomware

The ‘.342 File Extension’ Ransomware is an encryption ransomware Trojan that is being distributed using corrupted email spam attachments and links that lead to websites containing exploit kits. PC security analysts have identified the ‘.342 File Extension’ Ransomware as a variant of the Locky Ransomware , a well-known ransomware family that has been responsible for countless threat attacks around the world. The ‘.342 File Extension’ Ransomware belongs to a batch of variants in this threat family that includes threats such as the ‘.odin’ File Extension Ransomware and the ‘.aesir’ File Extension Ransomware , both of which use similar attack patterns. The most common way of distributing the ‘.342 File Extension’ Ransomware is hidden in a corrupted Microsoft...

Posted on December 1, 2016 in Ransomware

‘Lavandos@dr.com’ Ransomware

The ‘Lavandos@dr.com’ Ransomware is an encryption ransomware infection that the con artists use to extort computer users so that they will pay money in exchange for their files. The ‘Lavandos@dr.com’ Ransomware is being used to attack both individual computer users and Web servers. The ‘Lavandos@dr.com’ Ransomware works by locking the victim’s files by using an encryption algorithm to make the files inaccessible. The ‘Lavandos@dr.com’ Ransomware has been responsible for attacks around the world. The files encrypted by the ‘Lavandos@dr.com’ Ransomware can be identified easily by the extension ‘.[Lavandos@dr.com]’, which is added to the end of the affected file. The ‘Lavandos@dr.com’ Ransomware is being distributed both through corrupted email spam...

Posted on December 1, 2016 in Ransomware

‘Error #365838f52de30’ Pop-Ups

The ‘Error #365838f52de30’ pop-ups are not to be trusted because they are hosted on untrusted sites and offer misleading information. The content associated with the ‘Error #365838f52de30’ pop-ups is created by designers who aim to fool users into thinking that their OS is compromised and data is being collected. We have received reports that users are presented with pop-ups that cannot be closed and their browser is unresponsive. The ‘Error #365838f52de30’ alerts are offered on a blue background that is a screenshot of the Blue Screen of Death (BSOD) error report in Windows. The ‘Error #365838f52de30’ notifications are known to come with the following text: ‘**YOUR COMPUTER HAS BEEN BLOCKED** Error #365838f52de30 Please call us immediately at 1-855-999-9246 Do not ignore this...

Posted on November 30, 2016 in Adware

‘Error Code: RNN7892’ Pop-Ups

The ‘Error Code: RNN7892’ pop-ups are connected to a computer support hoax that is facilitated by corrupted ads, links and browser hijacking software. Computer users may encounter the ‘Error Code: RNN7892’ pop-ups when they click on ads and links that are part of messages like the ‘You may be infected!’ and the ‘You need to secure your browser!’ hosted on banners. As stated before, browser hijacking software may be used to reroute users to content on untrusted domains such as: 24x7pcspeed-support.com buginsystem.info cleanonlinedevice.com getscanpc.com micropcmax.info The ‘Error Code: RNN7892’ pop-ups do not promote legitimate services, and you should not expect to contact certified technicians. Security experts alert that the ‘Error Code: RNN7892’...

Posted on November 30, 2016 in Adware

Rusificatory.ru

As you may suspect, Rusificatory.ru is a site that welcomes users who speak Russian. If your Russian is rusty, you may not find Rusificatory.ru very welcoming. The content creators at Rusificatory.ru are dedicated to delivering news from the PC gaming community in Russia and recommend software that supports the Cyrillic alphabet. Gaming users may find the content at Rusificatory.ru appealing but we should note that the site is related to a browser hijacker that is programmed to reroute users to ad-supported content. Computer users that test new browser extensions and freeware reported that their Internet client loads the Rusificatory.ru/google.com/index.html page hosted at Rusificatory.ru automatically. It appears that the owners of Rusificatory.ru may be using the help of free program developers to reroute Web traffic to their site....

Posted on November 30, 2016 in Browser Hijackers

‘Guardware@india.com’ Ransomware

The ‘Guardware@india.com’ Ransomware is an encryption ransomware Trojan that belongs to the Crysis family of ransomware. This ransomware family has released numerous variants since Summer 2016. The ‘Guardware@india.com’ Ransomware carries out a typical encryption ransomware attack, encrypting the victims’ files and demanding a ransom to provide the decryption key. The ‘Guardware@india.com’ Ransomware is being distributed through phishing email messages that use social engineering techniques to trick inexperienced computer users into opening a corrupted file attachment currently. Because of this, it is essential that computer users exercise caution when handling email attachments to avoid these threats. After the victim opens the corrupted file attachment, the...

Posted on November 30, 2016 in Ransomware
1 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 1,119