Malware Categories: Trojan

Detected in 2012 by Forcepoint (former Websense), Seculert and Kaspersky, Shamoon malware, aka Disttrack, has returned. On the 17th of November, 2016, at 20:45 local time Shamoon attacked a Saudi oil company Aramco. 30,000 computers have been affected. Shamoon, in the previous and in the recent attacks, has aimed at deleting the data from hard … Continued

SilentFade is a trojan that was used to hack social media accounts. Rather than stealing the accounts, the cybercriminals behind SilentFade used them to display ads, paying for the advertising with money stolen from the account owners. Although SilentFade has had its wings clipped, it appears to still be spreading online and infecting Windows computers. … Continued

Skype virus is a trojan, distributed through Skype network only.  This trojan is spread via Skype. This is how it works. A victim receives a message containing a link sent by one of his (her) Skype friends. The message might mention your name and look real. All of the infected persons friends using Skype receive … Continued

While Fifa World Cup 2018 is taking place the new virus releases have decreased significantly, and yet it seems like this event didn’t affect the old malware, whose updated variants are coming back to life ready to shake the ground of the virtual world. A few days ago we wrote about Zacinlo, which after a few … Continued

If you notice Smss.exe process currently running in the Windows Task Manager, do not be hasty to panic. What is this file? What does it do? Actually, this is a regular procedure in Windows OS devices and if the legitimate version is present in your system, there is no need to express concerns. However, malicious … Continued

Soft Cores Miner, also known as systemcore.exe is a dangerous trojan that aims to infect computers and secretly mine cryptocurrencies by stealing computing power and causing all kinds of troubles. The biggest problem regarding trojans like this – they are really difficult to detect. Things get easier if you have reliable anti-malware tool installed on … Continued

SpyEye (or EyeSpye) is a Trojan horse, which has almost the same codebase as Zeus Trojan. Just like infamous Zeus, SpyEye collects certain information on the compromised computer and additionally uploads it to command-and-control servers. To make it possible, this trojan includes wide range of components depending on configuration: it may have contain modules for … Continued

StartWebLogic.exe CPU Miner is a sneaky computer virus that is looking to infect as much systems as possible and turn them into slaves – the miner uses power of certain computer components (CPU or GPU) and mines cryptocurrencies. Even though it is not as dangerous as ransomware viruses or keyloggers, that can directly steal your … Continued

Stresspaint (or the Relieve Stress Paint Tool) malware is a new cyber threat, and security researchers are warning that it is a very sophisticated variant. The infection uses highly-professional methods of distribution and is capable of stealing users credentials, personally-identifiable information, and could even initiate deceptive advertising campaigns. A lot of free programs might seem … Continued

Sweep Clean PC Pro is a trojan program which disguises itself as a technical support application. These type of apps generally display pop-ups of fake security warnings. It is a sneaky marketing trick to make up a problem and offer solutions on how to solve it, which makes a myriad of people to fall for … Continued

End-to-end encrypted instant messaging service Telegram is very popular among those who seek to secure their conversations and avoid personal data leakage. The popularity of this application was highly boosted after the recent Facebook data scandal – a lot of users are looking for other methods to communicate online and do it privately, without having to … Continued

Telegram is a messaging application that’s remarkable for its uncompromising end-to-end encryption. Telegram offers its own clients for Android, iOS, PC, Mac, and Linux platforms. Unfortunately, scammers have set up a few fake websites that impersonate Telegram and offer malware disguised as a Telegram client. These fake websites use deceptive advertisements to spread. The malware … Continued

“This website has been blocked for you!” is a warning that appears when visiting some websites and it’s caused by a Trojan-type infection that causes redirects to malicious websites. You’re shown this scary alert indicating that the page you attempt to open is blocked as a consequence of a recent “spam bot like” activity. The … Continued

Ticno trojan has been recently detected by the Russian cyber security company Dr.Web as Trojan.Ticno.1537. Despite the fact that this trojan is distributed in the manner similar to such simple malicious programs as adwares or browser hijackers, which is the method of free software bundling, Ticno trojan has elaborate anti-detection mechanisms such as the scanning … Continued

TrickBot trojan was released in the September (2016). It was discovered by the cyber security researchers of Fidelis Cybersecurity and is generally regarded as the new version of Dyre, also known as Dyreza – the Russian banking trojan, which had been active since 2014. The latter malware, or better to say the hackers behind Dyre, … Continued

Trojan backdoor.11.Win32.xnco is nothing else but fake virus, reported in order to trick PC users into believing that it was detected on their PCs by anti-virus program. However, in reality this fake threat is connected to Enhanced Protection Mode scam and hackers who invented it for the fraudulent reasons. Make sure you ignore Trojan backdoor.11.Win32.xnco … Continued

Don’t fall into misleading information about Trojan-BNK.Win32.Keylogger.gen which can be announced to be detected on your machine. In reality, it’s only XP Internet Security 2010, Internet Security 2013 or Win 7 Protection 2013 rogueware which uses such invented threats to make you scared about your Pc’s security. Trojan-BNK.Win32.Keylogger.gen is an imaginary infection, a made-up virus which … Continued

Trojan.Downloader is a label used by antivirus programs for a certain kind of malware. It is a trojan that downloads malware on the computer, saves it, and runs it. Trojan.Downloader is dangerous because it installs malware. Most instances of Trojan.Downloader affect Windows computers. However, Mac, Android, and even Linux have examples of Trojan.Downloader that threaten their … Continued

Trojan.Generic is an undetermined parasite detected by multiple antivirus vendors from various signs. This means that the file detected is malicious. While it is impossible to figure the exact nature of such detection, one can assume that this PC is compromised. The term Trojan determines the distribution methods of this parasite. All such infections are … Continued

As of early May, 2018 many antivirus programs have noticed a new, active JackServn trojan family variant roaming around the virtual world. It is believed that the initial release of JackServn trojan was around 2015, followed by many other versions, with the current trojan.jackservn amongst them. JackServn trojan gets really dangerous once it sneaks into … Continued

Trojan.FakeAlert is one of a group of trojans, which promote rogue anti-spyware and other rogue programs, just like the Zlob trojan. Trojan.FakeAlert infects the system insidiously and changes the desktop background image into a message, which says the user is infected. This is done to intimidate the user so he would buy the fake "licensed … Continued

Trojan.Ransomlock is a nasty piece of ransomware, which can really wreck one’s nerves. This parasite infects the system by exploiting various security holes in your system. Upon infection it drops several entries in the registry, which disable Task Manager, Registry Editor and Safe Mode as a self-defense move. It will then lock the desktop and … Continued

TrustedInstaller is very important to the Windows OS. It helps with updates and it stops you from deleting or corrupting important system files. However, sometimes, it denies you access to your files and causes various applications to malfunction. Other times, it is impersonated or hijacked by malware and used to take control of your system. TrustedInstaller … Continued

The ‘Update your browser’ alert is a totally misleading message which is displayed in order to make users download and install malicious data into their PCs. It can be linked to malware creators because these ‘updates’ that are offered to download are infected and additionally will let rogue anti-spyware programs, trojans or other malware get … Continued

URL:Mal is the name used by some antivirus programs for malicious websites. Whether it’s you or a program that attempts to connect to a website that’s suspected to be harmful, a pop-up saying “We’ve safely aborted connection on […] because it was infected with URL:Mal.” The name URL:Mal is mostly used by Avast and its subsidiary … Continued

Your computer can be used as a slave and hacekrs do it with the help of Vatico Monero Miner virus. It is classified as a trojan horse, and once deployed on the computer it uses the resources of device to mine Monero cryptocurrency. Mining virutal currency might be a good way to monetise your computer … Continued

The threat we are going to write about today is vbs:malware-gen virus. This malware has been bothering mostly Avast and some other antivirus users, mostly when they would visit online shop Amazon web pages or stream videos from Twitch.tv. The notifications of this parasite later become so persistent, claiming that there is a virus and … Continued

Vidar is a trojan that can steal data from the infected computer, as well as download and install additional malware. It’s based on an older trojan called Arkei and sometimes these two names are used to refer to the same infection. At worst, Vidar could cause your accounts to be hacked, your contacts to be … Continued

The real Brontok virus originates from Indonesia and is mass mailing trojan parasite. Typically, it is distributed through USB drives, spam mails or network shares. During infection, it copies itself in %AppData% folder of current user and is launched on each PC start. Then it creates copies of itself in multiple folders using names of … Continued

Web Surf Shield virus is a Trojan that can infiltrate into random computers and disturb your work on Internet Explorer, Mozilla Firefox or Google Chrome. It displays an alert when you try to open any website saying that the access to that page has been temporarily blocked and you can continue browsing only after installing … Continued

Win32.Dofoil is a malicious Trojan that is designed to receive and follow every command got from its remote server. This configurable virus will additionally download arbitrary files and execute them for malicious reasons. Win32.Dofoil is closely connected to rogue security softwares (System Fix and other fake defragmenters), so make sure you remove it immediately. In … Continued

Win32:Malware-gen (and Win64:Malware-gen) is a category for malicious but unspecified threats. Lots of files get detected by this name. It is difficult to say what harm a Win32:Malware-gen file might cause, only that it might be dangerous. As it’s a threat, it is important to remove the Win32:Malware-gen item and to find out how it got … Continued

“Windows Detected ZEUS Virus” scam is most likely displayed by bad ads, a Trojan, or another malware parasite (like adware) currently affecting your operating system. This pop-up is categorized among other technical support scams like “Microsoft Error: Unknown System Failure” and “Microsoft Office Activation”. If this message locks access to your browser, you should not … Continued

‘Windows license locked!’ is a fake pop-up which starts appearing on PC desktop as soon as Trojan spreading it gets inside the system. This bogus security alert begins its misleading campaign which is dedicated for making users believe that they have numerous problems with their security. Of course, as we know that ‘Windows license locked’ … Continued

Windows Malicious Software Removal Tool is yet another example of cyber criminals cashing in on Microsoft’s fame, only this particular scam is extremely blatant about it. There is an actual Microsoft application called Windows Malicious Software Removal Tool: this particular piece of software has been out for over 4 years now and it’s free. The program … Continued

While iOS users are still worried about Pegasus, XLoader has emerged as a new threat to Apple devices. This spyware is an evolution of FormBook spyware. It’s able to steal login credentials (usernames, passwords), take screenshots, log keystrokes, and download and run files. XLoader attacks both Windows computers and Apple devices. It can steal information, force … Continued

XMRig (WaterMiner) Miner Trojan refers to a high performance Monero (XMR) miner with the official full Windows support. Currently, more and more miners are being created. One of the most recent ones is Crypto-Loot miner. The XMRig miner itself is created by respectable developers and people can start using it after obtaining the necessary binary … Continued

VinCE 1.5 is a small application (about 30 KB) that security researchers have just recently discovered floating around the Internet. Even though such a tiny program can be regarded as insignificant, we advise you to not fall into this rabbit hole as it can lead you to flawed assumptions. In comparison to other media players, … Continued

Your Windos Has Been Banned is the title of a recently detected screen-locker which blames victims for violations of terms of use. As a consequence, the offender’s device is to be blocked by Your Windos Has Been Banned and he/she won’t be allowed to fully launch the operating system. You can immediately notice a spelling … Continued

‘Your Windows Hasbeen Banned’, also referred to as ‘Your Windows Has Been Banned’, is a relatively new screen locker, which appeared in November, 2016 (the first version). ‘Your Windows Hasbeen Banned’ is, actually, the first version of the screenlocker, while ‘Your Windows Has Been Banned’ is the second version (appeared on the 13th of December, … Continued

Zeus Trojan is a very dangerous PC infection – it steals banking data and uses the infected computer’s resources to perform more crimes and cyberattacks. Although the original Zeus Trojan was retired in 2010, its code is still used in many modern variants. Zeus Trojan is also known as ZBot and works on Windows computers. … Continued