Banload (also known as TrojanDownloader:Win32/Banload) is a family of malware-distribution trojans. If installed, trojans from this family inject systems with other computer infections, most of which are categorized as banking trojans that collect user-system information (anti-virus suites typical
Resourcetools is presented as an app that allows users to easily browse the web, however, its real purpose is to redirect them through a dubious URL before showing results generated by Google. Therefore, this app can force people to use other search engines (such as Bing and Yahoo). Additionall
RMS Rat is a high-risk virus that stealthily infiltrates the system and grants cyber criminals remote access to victims' computers. At time of research, RMS Rat was distributed using fake Adobe Flash Player and Adobe Acrobat Reader updaters/installers promoted via deceptive websites. This distribu
Pitou is a trojan, a malicious program that sends spam emails from the infected computer. This is useful for cyber criminals, since people who receive messages from people in their contact list often believe that the emails are harmless. Note, however, that this trojan can send emails that prolife
Belonging to the Djvu ransomware family, Lotep is a high-risk ransomware infection discovered by Michael Gillespie. After successful infiltration, Lotep encrypts most stored data and appends filenames with the ".lotep" extension. For example, "sample.jpg" is renamed to "sample.jpg.lotep". Files a
"iPhone Has Been Locked" is a fake error message displayed by various malicious sites. It is very similar to to Your Mac Is Infected With 3 Viruses, Please Call Apple Support, and many others. Research shows that users typically visit deceptive sites inadvertently - they are redirect by intrusi
The Inlog Optimizer program supposedly cleans Windows Operating Systems and improves performance. It includes features that allow users to disable Microsoft Compatibility Telemetry, receive updates, adjust startup items, remove programs and unnecessary files, and so on. In fact, this program is c
Discovered by Petrovic, Cbs0z belongs to the Snatch ransomware family (its previous variant is called Hceem). Cbs0z is designed to encrypt files (rendering them unusable) and keep them in that state unless a ransom is paid. The ransom message can be found in the "RESTORE_CBS0Z_DATA.txt" text file.
BWplayer is promoted as a tool that supposedly delivers 'useful' features and functions. In fact, it is classified as a potentially unwanted application (PUA) and an adware-type program. Apps of this type usually display advertisements and sometimes also record user-system information. Typic
Discovered by Michael Gillespie, TROLL is one of many programs classified as ransomware - malicious software that denies access to files by encryption. Cyber criminals use TROLL to force people to pay ransoms. Furthermore, it renames all encrypted files by adding the ".TROLL" extension to each fil