Trojans - Page 8 category archyve:

IconDown

IconDown falls under the classification of Trojans. Such malicious applications can enter a system without any permission and without being detected. Cybersecurity specialists suspect that this threat was created by a group of hackers known as BlackTech. Since these cybercriminals seem to be concentrated on cyber-espionage in Asia, it is likely that their newest threat might be used to attack systems of various institutions to obtain highly valuable information. If you want to learn more about it, we encourage you to read our full blog post. Also, users who are interested in learning how to erase IconDown manually should check the instructions we provide below this article. If you have any questions about the Trojan or its removal, feel free to leave us a message in the comments area. Read more »

Afrodita Ransomware

Afrodita Ransomware

Afrodita Ransomware is a rather obscure ransomware infection that enters target computers to extort money from their victims. Getting infected by a ransomware can be a devastating experience because not all programs have public decryption tools. Therefore, the best remedy against a ransomware infection is a file back-up. You need to regularly make copies of your data and then back it on either on an external hard drive or a cloud drive.

As for Afrodita Ransomware, this program deletes itself once the file encryption is complete, but there are some leftover files you need to terminate. For that, please scroll to the bottom of this description for manual removal guidelines. Read more »

TurkStatik Ransomware

TurkStatik Ransomware

New file-encrypting threats keep emerging, and TurkStatik Ransomware is one of them. This infection was created with Turkish-speaking Windows users in mind because the message that the attackers introduce to their victims is in Turkish. Does that mean that the infection is likely to be spread via Turkish websites? That is a possibility, but it is most likely that it would be sent via email or by exploiting the existing system or software vulnerabilities. Without a doubt, whenever you are warned that the email you received is spam, you want to be very careful with it. If you can immediately tell that it was sent to you by someone you do not know, you should remove this message without hesitation. However, note that cybercriminals might hijack legitimate accounts to spread malware too. You also want to install all updates in time. Hopefully, you can still protect yourself against the dangerous infection, but if you need to delete TurkStatik Ransomware from your operating system, you should not hesitate to do it as soon as possible. The most important thing is that you do not pay attention to the attackers’ demands. Read more »

SaveTheQueen Ransomware

SaveTheQueen Ransomware is a recently created file-encrypting threat. It is possible that we encountered a test version, which means the malware could still be in development. Our researchers think so because the malicious application does not drop a ransom note. Showing a ransom note is typical behavior for ransomware as such programs are mostly used to extort money from regular home users, businesses, or institutions. Further, we explain how our encountered variant works, how it could be distributed, and how it could be erased if it enters a system. At the end of this text, we also provide deletion steps that show how to remove SaveTheQueen Ransomware manually, although we cannot guarantee the instructions will still work if hackers release a new version of the malware. Read more »

DeathRansom Ransomware

DeathRansom Ransomware

The invasion of DeathRansom Ransomware might lead to the pseudo death of your personal files. This threat is capable of employing a unique algorithm to encrypt personal files, after which they are no longer readable. Although the creator of the infection does not seem to care about the files that are encrypted – in a sense that they do not read them or try to leak them online – they take the files hostage. After encryption, demands for a ransom payment are introduced to the victims, and it is claimed that victims can recover their files only if the ransom is paid. Unfortunately, there is no proof that files would be decrypted if the ransom was paid, and so Anti-Spyware-101.com researchers do not advise paying the ransom. If you did the opposite, it is likely that your files would go to waste. If you are ready to delete DeathRansom Ransomware from your operating system, check out the last section of the report that discusses the removal of this threat. If you want to learn more, continue reading. Read more »

CStealer Threatens the Security of Google Chrome Users by Stealing Passwords

Do you use Google Chrome on a daily basis? Perhaps you use it at work, or maybe you only use it at home. Whatever the case is, we are sure that you want to be safe while using this web browser. Unsurprisingly, Google Chrome is the most popular browser, with more than 69% of people using it all around the world. Unfortunately, the most popular services are usually the ones that are targeted by schemers and cybercriminals in most cases too. CStealer is a dangerous Trojan that was created to go after Google Chrome users specifically, and if it is successful, it can steal sensitive passwords stored on this browser. Read more »

ABCD Ransomware

ABCD Ransomware

ABCD Ransomware is a textbook file-encryptor, and so the name suits it very well. It is very predictable indeed, but that does not make this malware any less dangerous. If it slithers in successfully, and if there is no security software to catch and delete it in time, your personal files can be locked up for good. Also known as LockBit Ransomware, this malware does not have a free decryptor. In some cases, such tools are created by malware experts, but creating a working decryptor is not an easy task, and that is why we do not have free decryptors for most infections. Unfortunately, due to his, the victims of this malware might feel trapped, and if they feel trapped, they might be pushed into following the attackers’ demands. Victims are promised “decryptor software” if they do as told, but trusting cybercriminals and their promises is always risky, and we cannot guarantee that you will be given what you need. To add insult to injury, the files are not automatically restored when you remove ABCD Ransomware. Read more »

LimeRevenge RAT

LimeRevenge RAT

LimeRevenge RAT might sneak in when you least expect it. Same as other Trojans, it enters a system without any permission. However, it is not just any Trojan as the application’s functionality may allow its developers to gain remote access to its infected machines. Consequently, the threat was classified as a RAT or a Remote Access Trojan. If you continue reading our article, you can learn what this malware is capable of and how it might enter a system in more detail. Also, in this article, we discuss its deletion. If you are interested in removing LimeRevenge RAT manually, you might also find useful the instructions placed at the end of this page as they describe the process step by step. If you have any questions about the malware’s deletion or its working manner, you could leave us a comment below this article. Read more »

Rote Ransomware

Rote Ransomware

If your personal files cannot be read, and the “.rote” extension is added to their names, you can blame Rote Ransomware for that. This clandestine infection slithers in and wreaks havoc on your personal files before you can figure out what is going on. Once files are fully encrypted, the infection uses a text file to introduced victims to a ransom demand, according to which files can be restored only if the victim pays $980 for a decryption tool provided by the attackers. If you know anything about cybercriminals, you must know that they often cheat and tell lies to reach their goals. In this case, their goal is to make money, and they are clearly willing to do whatever it takes to get it. Unfortunately, files are not restored when victims delete Rote Ransomware, and that is what might push them into a corner. Hopefully, you can find an alternative way to regain access to your personal files, and you can remove the threat without hesitation. Read more »

Trojan.PyXie.A

Trojan.PyXie.A is a malicious computer infection that can remain hidden in the target system for a long time before the infected users does anything about it. It is a Trojan that works as a Remote Access Tool (RAT), and so it has a pretty wide functionality, which allows other cybercriminals to make use of this infection. In some cases, Trojan.PyXie.A can also be used to distribute ransomware, so the sooner you remove it from your system the better. The best way to find out whether you have this threat on-board is to run regular system scans with a reliable security tool. Read more »