‘Bitcoinpay@india.com’ Ransomware

The ‘Bitcoinpay@india.com’ Ransomware is a ransomware Trojan that carries out a typical ransomware attack on its victims. The ‘Bitcoinpay@india.com’ Ransomware encrypts victims’ files and then demands the payment of a ransom in exchange for the decryption key. Computer users are advised to take precautions, as ransomware threats like the ‘Bitcoinpay@india.com’ Ransomware have seen increased activity in 2016 and are likely to continue to be a major threat in the coming year. The ‘Bitcoinpay@india.com’ Ransomware is one of the countless variants in the Crysis family of ransomware. The ‘Bitcoinpay@india.com’ Ransomware receives this name because the extortionists to communicate with victims of the attack use the ‘Bitcoinpay@india.com’ email address. There are very few...

Posted on November 30, 2016 in Ransomware

Tgmgo.com

The Tgmgo.com site is presented to users as a useful start page with links to popular sites like Bbc.com, Reddit, Facebook, YouTube, Amazon and Twitch. Tgmgo.com is not ranked high among search providers like Bing, Google and Yahoo. Tgmgo.com may be promoted to users via ads loaded by adware and commercials on suspicious pages. Tgmgo.com is not deemed as a trusted domain and users reported cases of browser hijacking. Security researchers looked into Tgmgo.com and found out that there is browser hijacking software been pushed to users as add-ons for Web browsers such as Google Chrome, Internet Explorer and Mozilla Firefox. Browser hijacking programs are defined by their activity and may be used to reroute users to portals like Tgmgo.com and pages that offer fake updates to the Adobe Flash Player and Java. The Tgmgo.com portal serves...

Posted on November 29, 2016 in Browser Hijackers

Search.myprivacyswitch.com

The Search.myprivacyswitch.com search portal is associated with the Privacy Switch browser extension that supports Google Chrome. The Privacy Switch extension is programmed to work with Search.myprivacyswitch.com and deliver customizations to the user’s Internet experience. Privacy Switch is a browser-based service that is claimed to help protect you by stopping your searches from being tracked according to Clearersearch.com and Myprivacyswitch.com, which are the official pages of the product. The idea behind Privacy Switch and Search.myprivacyswitch.com may be appealing to many users who are not satisfied with seeing many ads on the pages they visit frequently and their privacy being limited. The features of the Privacy Switch browser extension may be promoted via freeware bundles and ads generated by adware. The Privacy...

Posted on November 29, 2016 in Browser Hijackers

ProductManualsFinder Toolbar

The ProductManualsFinder software is published as a toolbar by MyWay at Productmanualsfinder.com. The ProductManualsFinder Toolbar by MyWay is developed by Mindspark Interactive Network, Inc., which you may know for apps like the Action Classic Games Toolbar and the GetFlightInfo Toolbar . Web surfers may be presented with ads about ProductManualsFinder on software deployment platforms and banners generated by adware. The ProductManualsFinder Toolbar may be offered as an improved version of the AtoZManuals Toolbar , which was released earlier by Mindspark. ProductManualsFinder can be installed in most modern browsers. We have seen versions of ProductManualsFinder available for Google Chrome, Internet Explorer and Mozilla Firefox. According to Productmanualsfinder.com the ProductManualsFinder application is supposed to suggest...

Posted on November 29, 2016 in Possibly Unwanted Program

Malware Infections Doubled Over the First Holiday Shopping Weekend of 2016

Malware infections spiked 106% from Black Friday through Cyber Monday, 2016, according to data released today by ESG, makers of the SpyHunter anti-malware program. ESG believes this spike is the result of massive online activity from holiday shoppers combined with increased efforts by malware makers to take advantage of unsuspecting consumers. ESG analyzed malware detections data from SpyHunter in the month leading up to Thanksgiving weekend, and compared that to the number of infections detected from Black Friday through Cyber Monday, typically the start of the holiday shopping season. ESG found that infections in the U.S. jumped 106% over those four days, with Cyber Monday having the most infections, 118% above normal. 2016’s spike of 106% was higher than 2015’s spike, which was 84%. The spike in 2014 was 42%....

Posted on November 29, 2016 in Computer Security

‘Decryptallfiles@india.com’ Ransomware

The ‘Decryptallfiles@india.com’ Ransomware is a ransomware Trojan that is used to extort computer users. The ‘Decryptallfiles@india.com’ Ransomware encrypts the victims’ files, changing their extensions to ‘.decryptallfiles@india.com.’ PC security researchers believe that the ‘Decryptallfiles@india.com’ Ransomware belongs to the Crysis Ransomware family, a known threat family that has been active in the months after Summer of 2016 especially. Victims of the ‘Decryptallfiles@india.com’ Ransomware will find that their files are not accessible. When they contact the email associated with the ‘Decryptallfiles@india.com’ Ransomware infection, the people responsible for the attack demand a ransom payment in exchange for the decryption key necessary to recover the...

Posted on November 29, 2016 in Ransomware

Crypter-2016 Ransomware

The Crypter-2016 Ransomware is a ransomware Trojan used to take money from inexperienced computer users. The Crypter-2016 Ransomware pretends to be an encryption ransomware Trojan that encrypts victims’ files. However, the Crypter-2016 Ransomware does not encrypt the victims’ files, merely giving the impression that it does it by mimicking common ransomware Trojans active in the wild today. It is likely that the Crypter-2016 Ransomware is being distributed using spam email attachments. The Crypter-2016 Ransomware, very similar to an older ransomware Trojan known as the ‘Anatel Ransomware,’ and is designed to target computer users in Brazil and other Portuguese-speaking countries. Despite its claims, the Crypter-2016 Ransomware does not encrypt its victims’ files. Rather, the Crypter-2016 Ransomware...

Posted on November 29, 2016 in Ransomware

Support-online-pc.site

At first glance, Support-online-pc.site is a portal dedicated to gaming that features review, download links and news related to titles like Free Solitaire 3D, Monopoly INT, Fibzilla and WWII Tank Commander. Some of the games at Support-online-pc.site are popular among users on Facebook judging by the ratings on the site and you may like what Support-online-pc.site has to offer in terms of gaming. However, Support-online-pc.site is related to computer assistance hoaxes, and you may wonder why a gaming site is named something like Support-online-pc.site. Security investigators found out that a page hosted on Support-online-pc.site is rigged with a JavaScript that presents users with phishing messages. The page on Support-online-pc.site features a peculiar background that is a screenshot of Support.microsoft.com loaded in Google...

Posted on November 28, 2016 in Browser Hijackers

‘Your computer is locked !’ Screenlocker

The ‘Your Computer is Locked!’ Screenlocker is associated with a known fake technical support tactic. The ‘Your Computer is Locked!’ Screenlocker is designed to trick inexperienced computer users into calling a fake technical support service, spending money in the process and allowing third parties to gain access to the affected computer. PC security researchers strongly advise computer users to avoid calling the ‘Your Computer is Locked!’ Screenlocker phone number or interacting with this threat. Fortunately, the ‘Your Computer is Locked!’ Screenlocker itself is not particularly difficult to remove. The ‘Your Computer is Locked!’ Screenlocker consists of a bogus security warning claiming that the victim’s computer was blocked because of the presence of viruses. The...

Posted on November 28, 2016 in Possibly Unwanted Program

‘Your Windows Hasbeen Banned’ Screenlocker

PC security analysts have received reports of threat attacks involving the ‘Your Windows Hasbeen Banned’ Screenlocker. This parasite prevents computer users from accessing their files. Screen lockers like the ‘Your Windows Hasbeen Banned’ Screenlocker are an old tactic that has been used to take money from inexperienced computer users going back at least a decade. PC security analysts have associated the ‘Your Windows Hasbeen Banned’ Screenlocker with various PUPs (Potentially Unwanted Program). The ‘Your Windows Hasbeen Banned’ Screenlocker is designed to scare inexperienced computer users into believing that their computers have been locked by Microsoft. The ‘Your Windows Hasbeen Banned’ Screenlocker is designed to abuse computer users running a pirated copy of Windows...

Posted on November 28, 2016 in Possibly Unwanted Program

Advanced PC Fixer

The Advanced PC Fixer software is offered at Pcfixertools.com by Pcvark Software Pvt. Ltd. as a comprehensive system optimizer for machines powered by Windows XP, Vista, 7, 8, 8.1 and 10 (32 & 64 bit). The main features of Advanced PC Fixer include ‘Malware & Add-on Remover,’ ‘Startup Cleaner,’ and ‘Registry Cleaner,’ which are designed to be user-friendly according to posts on Pcfixertools.com. The same features were included in the US System Care developed by Pcvark Software Pvt. Ltd. as well. Both products are aimed at system optimization and both are reported by customers and experts to underperform. Advanced PC Fixer is classified as a Potentially Unwanted Program (PUP) and AV vendors might detect its installer package as: W32.Application.Pcvark!c Program.Unwanted.1724...

Posted on November 28, 2016 in Possibly Unwanted Program

Totopweb.com

Totopweb.com may be promoted as a useful start page on ads generated by adware. Computer users that are infected with a browser hijacker may load Totopweb.com as their homepage and default new tab page. The Totopweb.com domain is a clone of Jogostempo.com , Aqovd.com and QQovd.com . Free software developers may incorporate the browser hijacker associated with Totopweb.com into their products to benefit from pay-per-install revenue. The Totopweb.com portal is designed to record the visitor’s actions on the page and generate tailor-suited advertisements. Totopweb.com offers links to shopping sites like Etsy, Costco, Amazon, BestBuy and AliExpress. The owners of Totopweb.com claim marketing revenue every time a visitor clicks on links and ads on the portal. The bad reputation of Totopweb.com is due to browser hijacking...

Posted on November 28, 2016 in Browser Hijackers

Detailexplore.com

The Detailexplore.com domain is related to cases of browser hijacking and is not a trusted site. The Detailexplore.com portal was closed shortly after security vendors started to alert users about suspicious activity related to the site. At the time of writing this, Detailexplore.com is brought down and remains inaccessible. While Detailexplore.com was operational, users were being redirected to advertisements portals and marketing materials hosted by sponsors to Detailexplore.com. Detailexplore.com appeared to work as search provider focused on finding deals and discounts to items that you search on the Internet. Web surfers were offered a search field on Detailexplore.com that did not include filters and simply cross-references the keyword with commercial offers from affiliated advertisers. That may sound useful to some users, but...

Posted on November 25, 2016 in Browser Hijackers

NMoreira Ransomware

The NMoreira Ransomware is a ransomware Trojan that is being used to target computer users in Portuguese-speaking countries, particularly Brazil and Portugal. The purpose of the NMoreira Ransomware is to encrypt the victim’s files to extort a ransom from the victim. If the NMoreira Ransomware is installed on your computer, PC security analysts advise against paying the ransom, despite that it may be impossible to decrypt files affected by the NMoreira Ransomware without access to the decryption key necessary to restore the infected files currently. The NMoreira Ransomware is a ransomware Trojan that is similar to a previously known ransomware threat known as AiraCrop . PC security analysts suspect that the creators of the NMoreira Ransomware are the same as those that created XRat, a known Remote Access Trojan that allows...

Posted on November 25, 2016 in Ransomware

‘.zzzzz File Extension’ Ransomware

The ‘.zzzzz File Extension’ Ransomware is a variant of the Locky ransomware, a known ransomware family that has been responsible for countless variants since its initial release. Timed to be released close to Thanksgiving 2016, the ‘.zzzzz File Extension’ Ransomware is designed to encrypt files and change their extensions to ‘.zzzzz.’ Unfortunately, the files that have been encrypted by the ‘.zzzzz File Extension’ Ransomware are not recoverable without the decryption key, which is held for ransom by the ‘.zzzzz File Extension’ Ransomware’s creators. The ‘.zzzzz File Extension’ Ransomware is being distributed in a spam email campaign that involves corrupted ZIP attachments that claim to be receipts. The ‘.zzzzz File Extension’ Ransomware is a...

Posted on November 25, 2016 in Ransomware
1 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 1,119