Ultimate Shopping Search

The Ultimate Shopping Search software is developed by the controversial company Saphire Max Media Co. Ltd. that released a browser with a built-in ad-blocker (Nomad Adblocker Browser) and a browser add-on (LottaDeals) that provides shopping recommendations for users in Germany. The Ultimate Shopping Search software is marketed as a shopping helper that is aimed at users based in the United States of America. Ultimate Shopping Search is a relative compact extension for Mozilla Firefox and Google Chrome users that manifests as a toolbar icon, which provides a search box. The input in the search box provided by the Ultimate Shopping Search extension leads users to a custom version of Yahoo! at Us.search.yahoo.com that include deals, coupons, and discounts suited to your area. The Ultimate Shopping Search by Saphire Max Media Co. Ltd. is...

Posted on February 9, 2017 in Browser Hijackers

DynA-Crypt Ransomware

The DynA-Crypt Ransomware refers to ransomware Trojans that are created using a ransomware creation key that is known as the ‘Dynamite Malware Creation Kit.’ The DynA-Crypt Ransomware encrypts the victims’ files using the AES encryption and identifies the files that have been encrypted with the file extension ‘.crypt.’ After encrypting the victim’s files, the DynA-Crypt Ransomware displays a pop-up window that demands a ransom payment from the victim. During the attack, the DynA-Crypt Ransomware can disable numerous Windows features and software, such as the Windows Task Manager or the Windows Firewall, delete software from the victim’s computer, and collect passwords that could be stored in the victim’s Web browsers. This sets the DynA-Crypt Ransomware apart from other ransomware Trojans...

Posted on February 9, 2017 in Ransomware

Digisom Ransomware

The Digisom Ransomware is a ransomware Trojan that enters a computer silently, without alerting the victim of its presence until the attack has been carried out. Like other ransomware Trojans, the Digisom Ransomware encrypts the victim’s files and then demands the payment of a ransom in exchange for the decryption key required to restore the affected files. During its encryption attack, the Digisom Ransomware will rename the affected files by appending the string ‘[three random characters].x’ to the end of the file’s extension. After encrypting the victim’s files, the Digisom Ransomware will alter the infected computer’s Desktop image so that it becomes a black screen, and drops ten text files on the Desktop with names like ‘the Digisom Readme0.txt,’ ‘the Digisom Readme1.txt,’...

Posted on February 9, 2017 in Ransomware

UpdateHost Ransomware

The UpdateHost Ransomware is a ransomware Trojan that was first observed in February 2017. The UpdateHost Ransomware is a significant threat to computer users. Like other ransomware Trojans, the UpdateHost Ransomware is designed to take over the victims’ computers specifically, preventing them from accessing their files as normal. The UpdateHost Ransomware and other ransomware Trojans carry out attacks where access to the victim’s computer or files is blocked in some way, through a lock screen or by encrypting the victim’s files. Then the victims are asked to pay a ransom to regain access to their own device. Computer users should take precautions to ensure that their computers are protected against the UpdateHost Ransomware and similar ransomware Trojans. The UpdateHost Ransomware has been carrying out attacks...

Posted on February 9, 2017 in Ransomware

GetFitNow New Tab

The GetFitNow New Tab software works as a browser add-on for Google Chrome, Internet Explorer and Mozilla Firefox. Web surfers that would like to improve their fitness routine, food habits, and live a healthier life can find GetFitNow New Tab at Getfitnow.co/Health?. The GetFitNow New Tab program is created by Polarity Technologies Ltd. that we have mentioned in our articles about BookmyFlight , Classifieds Easy and Package Track . The GetFitNow New Tab program is designed to make changes to the start page, new tab page, and search settings within your browser. The new configuration implemented by GetFitNow New Tab may differ across browsers. Google Chrome users may be provided with a new tab that loads Search.getfitnow.co; Mozilla Firefox and Internet Explorer users may have their homepages and new tabs set to Search.getfitnow.co...

Posted on February 9, 2017 in Potentially Unwanted Programs

Banking Systems in Over 40 Countries Infected with Invisible Duqu Malware

It isn’t an ordinary day until a hacker around the globe has done their dirty daily deeds by attacking a vulnerable entity . In the most recent events of hacker activity around the world, Kaspersky Lab releases a scathing report that about 140 banks and other enterprises have come under attack from malware that has evaded detection for what is said to be “a long period of time.” Among the 40-plus banking systems that have been found to be infected with a hard-to-detected form of malware , there are several governmental agencies and telecommunication companies located in the USA, Europe, Africa, and even South America that are being targeted by hackers in a strong of ongoing attacks using hard-to-detect malware. The malware found to have infected a multitude of systems and has recently evaded detection is a...

Posted on February 8, 2017 in Computer Security

‘844-275-0979’ Pop-Ups

The ‘844-275-0979’ pop-up windows in your browser can be generated on sites like malwarealerts.online that are hosted on the 166.62.10.28 IP address. The ‘844-275-0979’ notifications may be generated on sites used to promote fake technical support services. Many pages on the 166.62.10.28 IP address may be linked to the 844-275-0979 phone line and offer misleading information to PC users. The ‘844-275-0979’ notifications are shown in the foreground while the background is taken by a modified screenshot of Support.microsoft.com. The designers of the ‘844-275-0979’ pop-ups took a screenshot of the legitimate support page for Windows OS users, and removed and added content to the image. The image is implemented in pages like malwarealerts.online and may trick users into thinking that the site...

Posted on February 8, 2017 in Adware

DigiSmirkz

The DigiSmirkz New Tab extension is part of the MyWay family of browser extensions and can be found at Digismirkz.com/index.jhtml. The official page for the DigiSmirkz New Tab extension claims that it can enrich your Internet experience by adding emoticons for Gmail, Yahoo, AOL Mail, Outlook Live, Tumblr, Wordpress, and Blogger, as well as provide a custom search page and homepage. The motto of DigiSmirkz New Tab is ‘Emoticon Symbol Overload!’ and users that wish to add a flare to their messages online may be willing to install the program to Google Chrome, Internet Explorer and Mozilla Firefox. The DigiSmirkz New Tab by MyWay is developed by Mindspark Interactive Network, Inc. as an ad-supported service, which you are not required to pay for. Computer users can download and use the DigiSmirkz New Tab by MyWay for free and...

Posted on February 8, 2017 in Possibly Unwanted Program

Erebus 2017 Ransomware

The Erebus 2017 Ransomware is a ransomware Trojan first observed in January 2017. A ransomware Trojan going by the name of ‘Erebus’ was observed in September, 2016. However, It looks like the Erebus 2017 Ransomware is either completely different from its predecessor, meaning that it may be a new ransomware Trojan using the same name, or that the first iteration of this threat was rewritten entirely by the people responsible for the attack. Currently, PC security researchers have not associated the Erebus 2017 Ransomware with a single distribution campaign. The Erebus 2017 Ransomware uses a ransom amount that is quite lower than comparable ransomware threats. The Erebus 2017 Ransomware demands a payment of $90 USD from its victims after taking their files hostage. The Erebus 2017 Ransomware bypasses User Account...

Posted on February 8, 2017 in Ransomware

‘800-014-8604’ Pop-Ups

A JavaScript code on untrusted pages may cause the ‘800-014-8604’ pop-up messages in the Internet client. The ‘800-014-8604’ pop-ups can be seen on sites registered to the 132.148.83.14 IP address, which is used by fake technical support services to mislead users and welcome subscriptions that range from 300 USD to 500 USD. The content provided on the ‘800-014-8604’ pop-ups is classified as phishing and may include forged screenshots of Support.microsoft.com that is the legitimate support page for customers of Microsoft. The people who designed the ‘800-014-8604’ phishing messages are known for using screenshots of legitimate pages that they modify and embed into pages controlled by them. Some images related to the ‘800-014-8604’ notifications feature alterations that include...

Posted on February 8, 2017 in Adware

Ranion Ransomware

The Ranion Ransomware is a ransomware Trojan that is being distributed online as part of a RaaS (Ransomware as a Service) service. The Ranion Ransomware RaaS was first observed on the Dark Web in February 2017 offering the Ranion Ransomware and a distribution service for a very low price to con artists. Supposedly, the people responsible for the Ranion Ransomware RaaS claim that it was created for educational purposes only. However, the Ranion Ransomware is being sold to con artists for subscriptions of 0.95 BitCoin per year or 0.6 BitCoin for six months. There is an apparent intent to distribute the Ranion Ransomware and carry out ransomware attacks on computer users. When purchasing the Ranion Ransomware service, the con artists receive the Ranion Ransomware’s executable already configured to work on both 32-bit and 64-bit...

Posted on February 7, 2017 in Ransomware

SocialHub Ads

The SocialHub software is promoted at Socialhub.online as a browser extension for Google Chrome, Internet Explorer, and Mozilla Firefox that can help you manage your social media presence easily. The slogan at Socialhub.online says ‘SocialHub. Easy way accessing your Social Life.’ and Web surfers that have accounts on networks like Twitter, Facebook, Instagram, Tumblr, LinkedIn, Vkontakte, and mySpace may be interested in installing SocialHub. The SocialHub software is developed by native Delta Ltd. as seen on its main site. However, the company does not appear to be registered anywhere, and there are no user reviews that may help interested users determine the usefulness of SocialHub. We have received reports that it may make unwanted changes to the browser and users were overwhelmed with advertisements on their new tab...

Posted on February 7, 2017 in Adware

Cancer Trollware

Computer security researchers announced the discovery of the Cancer Trollware, which is a program packed as ‘cancer.exe’ and released to users as a fake update for browsers like Google Chrome, Internet Explorer and Mozilla Firefox. Cancer is classified as Trollware a.k.a. Crapware, which is a program that performs mischievous activities and can be very annoying. The Cancer Trollware is small in size, the executable is around 3 MB, and the user is presented with a UAC (Universal Account Control) prompt when it is loaded into the memory. Additionally, Cancer.exe is known to use icons associated with security tools and try to trick users into thinking that it may be a safe program. When you run the Cancer Trollware, it will change the default icon set for your files and restrict your access to the data. Users affected by the...

Posted on February 7, 2017 in Ransomware

Searchsterjosoft.com

The Searchsterjosoft.com site is associated with software products at Sterjosoft.com that are developed by a company under the name of SterJo Software. The company mentioned before offers users various tools that range from password management and network monitoring to file transfers. Computer users can download and use products by SterJo Software for free without paying a dime. However, the programs by SterJo Software are created with the support of advertisers that allow users to benefit from these tools for free. PC users that install SterJo Wireless Network Scanner and other apps at Sterjosoft.com may notice that their new tab page and start page are changed to Searchsterjosoft.com, which is a custom search portal created by SterJo Software. As mentioned above, users that are interested in using apps like the SterJo YouTube Ad...

Posted on February 7, 2017 in Browser Hijackers

StartWidget

The StartWidget New Tab software by Imali N.I Media Ltd. is another clone of the New Tab TV Plus that has the same functionality presented at Search.startjoytabsearch.com . Imali N.I Media Ltd. is well known for developing ad-supported browser extensions that offer easy access to entertainment content such as music and movies. The StartWidget New Tab a.k.a MyStartTab is promoted at Startwidget.com as a roundhouse solution for users who are interested in the latest media on YouTube, Facebook and Twitter. The StartWidget New Tab browser extension is available for Mozilla Firefox and Google Chrome. The information at Startwidget.com suggests that users who install StartWidget New Tab a.k.a MyStartTab benefit from a built-in music player, media slider, HD wallpapers, and a bookmarks manager at...

Posted on February 7, 2017 in Browser Hijackers
1 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 1,136