Search
Keyword: browser hijacker
Browser cookies POP3, IMAP, HTTPMail, SMTP, FTP Passwords System information It attempts to steal stored email credentials from the following: Pidgin Messenger Paltalk Messenger Miranda Messenger Windows
stored information such as user names, passwords, and hostnames from the following browsers: ChromePlus Comodo Dragon Chrome Nichrome Rockmelt Spark Chromium Titan Browser Torch YandexBrowser Epic Privacy
used by adding the following registry keys: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion\Explorer\ Browser Helper Objects\{12c7290a-157b-4f43-b109-97e792c598ed} Other System
its codes into it. The injected code in notepad.exe then disables the desktop of the affected user and open a browser window connecting to a certain site. This Trojan may be unknowingly downloaded by a
\PROGRAMDATA \LOCAL SETTINGS \TEMP \TMP \BOOT \MSOCACHE \DEFAULT USER \SAMPLE \EXAMPLE \I386 \TEMPORARY \TOR BROWSER \BROWSER BROWSER\ It renames encrypted files using the following names: {Random Characters}.[
its automatic execution every time Internet Explorer is used by adding the following registry keys: HKEY_LOCAL_MACHINE\Software\Microsoft\ Windows\CurrentVersion\Explorer\ Browser Helper Objects\
\SOFTWARE\Wow6432Node\ Microsoft\Windows\CurrentVersion\ explorer\Browser Helper Objects\{{GUID}} HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ Wow6432Node\CLSID\{{GUID}} HKEY_LOCAL_MACHINE\SOFTWARE\Classes
Name Time Zone ZIP OS Information Processor Information GPU Information Disk Memory Product Key Gathers information from: Browser(Password and Cookies): Opera browser Google Chrome Brave browser Yandex
Installer event Default browser information (e.g. browser name, browser language) Operating system information (e.g. name, version) However, as of this writing, the said sites are inaccessible.
action. Novell iPrint Fix is included in 'iPrint Client for Windows XP/Vista/Win7 5.44' 1004377| 1004377 - Novell iPrint Client Browser Plugin call-back-url Buffer Overflow
This backdoor gathers device information. Mobile Malware Routine This backdoor is a file that collects the following information on an affected mobile device: SMS messages Location Browser history
time Internet Explorer is used by adding the following registry keys: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion\Explorer\ Browser Helper Objects\{0AD2A8AA-24AD-4171-AD66-91E52C9B5AB9}
using an IFRAME, the browser is not redirected to the website. Instead, it connects to the site and displays the site's contents in the specified frame. When using a meta refresh tag, however, the entire
bookmarks, setting browser homepage, and getting shortcuts on the device. This backdoor may be manually installed by a user. Arrival Details This backdoor may be manually installed by a user. NOTES: This is
\CurrentVersion\Explorer\ Browser Helper Objects\ERROR Other System Modifications This spyware adds the following registry keys: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion\Policies\ Ext\CLSID It
the logged user. In addition, it can also allow elevation of privilege via a specially crafted Web page viewed using a web browser that runs XAML Browser Applications (XBAPs). These vulnerabilities also
\User Data\Default\Extensions\icgankdjlnjmamhcokkgokbfcohilpig\5.2 %Application Data%\Chromatic Browser %Application Data%\Chromatic Browser\User Data %Application Data%\Chromatic Browser\User Data
%Application Data%\Torch\User Data\Default\Extensions\aibidmdghbjlmenlhdfnbacpgnocogcp\2.2 %Application Data%\Chromatic Browser %Application Data%\Chromatic Browser\User Data %Application Data%\Chromatic Browser
every time Internet Explorer is used by adding the following registry keys: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion\Explorer\ Browser Helper Objects\
Stack-based buffer overflow in the Agent Browser in Veritas Backup allows remote attackers to execute arbitrary code via a registration request with a long hostname. Symantec Veritas Backup Exec