SmartService

SmartService is a Potentially Unwanted Program (PUP) that is marketed as a way for computer users to browse the Web using a private VPN. These services can be quite attractive to many computer users, but may often be linked to potentially threatening software or other hoaxes (particularly in the free VPNs that generate revenue with these questionable methods). There are several unwanted aspects of SmartService that can affect computer users. SmartService includes Trojan.Clicker and sMark5, a module with certain characteristics similar to a rootkit. Both of these components are installed along with SmartService on the affected computer and may cause various issues on the affected machine, as well as expose it to numerous online threats. SMark5 is designed to protect SmartService and its associated Trojan from detection and removal and...

Posted on April 27, 2017 in Trojan

GlobalWeather

The GlobalWeather program that you might find listed in your 'Programs and Features' panel is classified as adware. A fake weather forecast widget named 'GlobalWeather' is distributed to users via free software packages. The GlobalWeather software is not what its name suggests since the program may inject advertisements in the pages your browser loads. The GlobalWeather adware does not offer a GUI (General User Interface) window, and its activity takes place in the system's background. The GlobalWeather adware may put its files in the AppData folder and register a system service named 'Weather Service,' which is enabled to start with Windows automatically. Windows 10 users that have access to the native weather forecast app may think that the 'Weather Service' is part of a Microsoft product. The GlobalWeather adware may run on Windows...

Posted on April 27, 2017 in Adware

‘Your Computer Is In Blocked State’ Pop-Ups

The 'Your Computer Is In Blocked State' pop-up messages that seem to stick to your desktop and prevent you from operating your browser are not legitimate security alerts. The 'Your Computer Is In Blocked State' pop-ups are hosted on pages that hold phishing content and advertise services from fake computer support technicians. The sites that generate the 'Your Computer Is In Blocked State' pop-up notifications may feature the title 'Microsoft Official Support Page' and include a screenshot of Support.microsoft.com that is the legitimate portal where Windows users can request assistance for help with their system. The screenshot associated with the 'Your Computer Is In Blocked State' notifications is modified and might include the 800-490-5352 toll-free phone line. As mentioned above, the pages that host the 'Your Computer Is In Blocked...

Posted on April 27, 2017 in Adware

BestZiper

The BestZiper software that you may be invited to install via a free software package is deemed as riskware and Potentially Unwanted Program (PUP). The BestZiper program does not offer ownership information and valid digital signature. The tool is promoted as a viable alternative to apps like 7Zip, WinRAR and WinZip. The BestZiper app may enable users to open, pack and extract data in the 7ZIP, RAR, ZIP and TAR file formats. You can install BestZiper via freeware packages only and its site on bestziper.com features misleading information. There are no contact details at bestziper.com, and the marketing pitch says: 'WinZip is trusted by millions of businesses and consumers to boost productivity, simplify file sharing and keep information private. The world's number one compression and encryption software, WinZip offers apps for all of...

Posted on April 27, 2017 in Adware

FlowSpirit

The FlowSpirit software from SpiritSoft is promoted at spiritsoft.cn and ipts.com as a free tool for Webmasters that are interested in boosting the traffic to their pages. The FlowSpirit software is available under the names Traffic Spirit and Flow Wizard as well. Regular PC users may not be interested in FlowSpirit, but they may encounter the app in free software bundles. FlowSpirit (a.k.a. Traffic Spirit & Flow Wizard) is a network utility that requires a lot of processing power to facilitate its operations. It is best to read the F.A.Q. section at ipts.com/aq.php if you are interested in running FlowSpirit to increase the traffic to pages you manage. The FlowSpirit program is based on a modified Blink Web rendering engine, which performs requests to various pages on the Internet via a closed VPN network. All users that run...

Posted on April 27, 2017 in Possibly Unwanted Program

RecipeKart

The RecipeKart extension from Mindspark Interactive Network, Inc. is distributed to users via freeware bundles, and some users may be surprised to find that their browser loads Hp.myway.com/recipekart/ttab02/index.html as their new tab page. The RecipeKart browser extension is designed to change your new tab layout and may change your start page in Mozilla Firefox and Internet Explorer. The RecipeKart app is advertised as a friend to users who love to cook and explore new recipes. The RecipeKart program is available for free download and installation from the following sources: www.recipekart[.]com/index.jhtml chrome.google[.]com/webstore/detail/recipekart/ogfinmklpgmohidfadiempfallpbegoc You should take in consideration that the RecipeKart extension is deemed as a Potentially Unwanted Program (PUP) that is supported by marketers....

Posted on April 27, 2017 in Possibly Unwanted Program

‘Error Ticket: WBCKL457’ Pop-Ups

Computer users have reported the 'Error Ticket: WBCKL457' pop-ups when browsing the Web, which are suspicious messages alerting them of a supposed problem on their computers and asking them to call a toll-free phone number for 'computer support.' Bogus error messages like the 'Error Ticket: WBCKL457' pop-ups are a known tactic that may be used to trick computer users into paying large amounts of money for fake technical support services eventually, or allow con artists to get access to their data. However, there's no truth to the 'Error Ticket: WBCKL457 pop-ups;' these messages are part of a well-known tactic and not associated with any legitimate security company or technical support provider. The 'Error Ticket: WBCKL457' pop-ups may appear when computer users visit websites with poor security protection and prevent the victims from...

Posted on April 26, 2017 in Adware

‘Microsoft Official Support System’ Pop-Ups

Computer users have reported pop-up windows and new tabs on their Web browsers that claim to be associated with a 'Microsoft Official Support System pop-ups.' The 'Microsoft Official Support System' pop-ups may be caused by unwanted online scripts, browser hijackers, or Potentially Unwanted Programs (PUPs). It is common for the 'Microsoft Official Support System' pop-ups to appear when visiting insecure websites with a potentially harmful material. The 'Microsoft Official Support System' pop-ups may prevent computer users from closing the pop-up window and may redirect computer users to other websites or cause additional pop-ups to appear on the affected Web browser. The 'Microsoft Official Support System' pop-ups themselves carry out a well-known tactic that involves tricking inexperienced computer users into paying large amounts of...

Posted on April 26, 2017 in Adware

Your Daily Trailer

The Your Daily Trailer browser extension is promoted to help movie enthusiasts gain access to a broad catalog of films and explore trailers for upcoming media content. The Your Daily Trailer extension may support Google Chrome and can be found on the following pages: Yourdailytrailer.yournewtab[.]com Chrome.google[.]com/webstore/detail/your-daily-trailer/edaiejofkjoolebkceoecjgpchnfhjnf Both pages claim that the Your Daily Trailer app is "The Must-Have Chrome New Tab for Movie Fans!" and "...you can watch exciting new trailers from your New Tab page!." PC users can download and benefit from the Your Daily Trailer extension for free. However, Your Daily Trailer is a product of APN, LLC. that is developed with the support of advertising networks. When you add the Your Daily Trailer widget to your Internet client you will be invited to...

Posted on April 26, 2017 in Possibly Unwanted Program

XPan Ransomware

PC security researchers have observed various ransomware campaigns active in Brazil currently. The XPan Ransomware is being used to target small and medium businesses located in Brazil (although there is nothing limiting these attacks only to Brazil since these threat attacks can target computers anywhere). Taking advantage of remote desktop connections protected poorly is carrying out the XPan Ransomware attacks. Exploiting poor password protection and security measures, con artists can install the XPan Ransomware on the victims' computers, as well as carry out other threatening operations. Although not Identified Yet, the XPan Ransomware Distribution Method is Highly Effective The current the XPan Ransomware campaign is being targeted towards servers with exposed remote desktop protocol connections on the Internet specifically. Using...

Posted on April 26, 2017 in Ransomware

NM4 Ransomware

PC security researchers received reports of a NM4 Ransomware attack, a variant of the R Ransomware and the NMoreira Ransomware, both ransomware Trojans that carry out a fairly typical variant of this hoax. The NM4 Ransomware is being distributed through the use of spam email attachments. Ransomware campaigns like the NM4 Ransomware and associated threats created by the same hacking group that developed the NM4 Ransomware are being delivered to victims by exploiting exposed Remote Desktop Protocol connections on the Internet directly. This method of delivery may be used to compromise computers belonging to small and medium businesses, as well as Web servers and corporate networks. The NM4 Ransomware is an Updated Version of the NMoreira Ransomware Like other ransomware Trojans, the NM4 Ransomware is designed to encrypt victims' files...

Posted on April 26, 2017 in Ransomware

Pshcrypt Ransomware

The PshCrypt Ransomware is a ransomware Trojan that is being used to attack computer users located in Brazil. The PshCrypt Ransomware attacks have surfaced starting in late April 2017 and will affect the computers that execute the Windows operating system. Although the PshCrypt Ransomware attacks seem to be concentrated in Brazil, there is nothing stopping the PshCrypt Ransomware attack from surfacing in other geographical locations. The majority of the PshCrypt Ransomware attacks seem to be the result of compromised computers and networks through weak Remote Desktop Connections or passwords. Web Servers and Corporate Networks are the Main Targets of the PshCrypt Ransomware The main target of the PshCrypt Ransomware attacks is Web servers and corporate networks. The people responsible for the PshCrypt Ransomware will look for poorly...

Posted on April 26, 2017 in Ransomware

‘Error # 3658fa2deb39539’ Pop-Ups

The 'Error # 3658fa2deb39539' pop-ups are bogus error messages that are part of a known tactic. The 'Error # 3658fa2deb39539' pop-ups take the form of a message presented over a black background, alerting the victim of a supposed 'suspicious activity' on the affected computer. However, the 'Error # 3658fa2deb39539' pop-ups are not generated by an anti-malware or security service. Rather, the reason for the 'Error # 3658fa2deb39539' pop-ups is the promotion of bogus technical support services, a known tactic that works by tricking computer users into calling a phone number where they will be asked to purchase fake security software or allow the con artists to have remote access to their computers. What you need to understand about the 'Error # 3658fa2deb39539' pop-ups is that these messages are not legitimate and they are part of a...

Posted on April 25, 2017 in Adware

‘Your Hard drive will be DELETED’ Pop-Ups

The 'Your Hard drive will be DELETED' pop-ups may be displayed by insecure Web pages, and are part of known online tactics. The 'Your Hard drive will be DELETED' pop-ups may be accompanied by an audio track that may add to the feeling of panic that computer users may get from encountering these messages. The 'Your Hard drive will be DELETED' pop-ups are designed to trick computer users into falling for a known tactic entirely, by causing them to panic and make poor decisions. How the 'Your Hard drive will be DELETED' Pop-Ups Hoax Works The 'Your Hard drive will be DELETED' pop-ups contain a scary message that is designed to convince computer users to call a 'technical support center.' In fact, this supposed technical support is a tactic, which will try to make money off of inexperienced computer users. The 'Your Hard drive will be...

Posted on April 25, 2017 in Adware

Track Packages Online

The Track Packages Online software is a product of Eightpoint Technologies Ltd. that provides services by Polarity Technologies Ltd. The software product can be found on trackpackages.online and chrome.google.com/webstore/detail/track-packages-online/ajmmhfnbcgmglcdddiidgfellfpnjngb where users are offered help with tracking the delivery of their packages, parcels and letters. The Track Packages Online program is designed to work as a browser extension, which customizes your new tab page and start page. PC users can install the Track Packages Online extension on Google Chrome, Mozilla Firefox and Internet Explorer for free. The services at trackpackages.online are available for free as well, but you should read the Terms and Conditions Agreement on trackpackages.online/pages/terms/ carefully. Track Packages Online is deemed as a...

Posted on April 25, 2017 in Possibly Unwanted Program