Wajam, also known as WNetEnhance, is adware that displays advertisements on social and shopping sites that you visit. When installed, Wajam will configure your browser to use a Proxy server that allows it to inject ads into various sites that you visit. These ads are inserted into the header of a site and are labeled Wajam Ads. The ads will be for products that are in the same category as to what you are viewing or searching for on the site.
Priceless is an adware program that injects advertisements and deals when browsing shopping sites. While browsing shopping sites, such as Ebay or Amazon, Priceless will inject advertisements that offer deals or lists other sites where you can purchase the same item. These advertisements will be labeled Powered by Priceless or Best Deals Powered by Priceless and will be placed on the web site in an intrusive manner, which makes it difficult to read the content or navigate the affected site.
What is Web Bar?
The Malwarebytes research team has determined that Web Bar is adware. These adware applications display advertisements not originating from the sites you are browsing.
MyBestOffersToday is a program that displays daily free offers and also displays advertisements directly on your desktop. It shows these offers and advertisements using multiple methods such as desktop pop-ups, the MyBestOffersToday widget, and by opening your browser and displaying them. When installed, MyBestOffersToday will be configured to run automatically and listen in the background with no indication that the program is running other than the randomly displayed advertisements.
While running MyBestOffersToday will randomly display advertisements throughout the day. The only advertisement, though, that is labeled as My Best Offers Today is their daily offer widget. This widget will display offers that change daily and pop-up in a little widget from your Windows taskbar.
Ransomware has been the preferred tool of cyber criminals for making quick money. A new variant is in our midst known as VaultCrypt which is quite different from other encrypting malware in appearance and behavior. Unlike other ransomware that directly demand payment to unlock your encrypted data, VaultCrypt turns up the dishonesty levels even higher by pretending to direct you to customer support. This malware has been circulating in Russia since late February, but now, it is starting to spread to other parts of the world as well. Bleeping computer, with the help of members from the Emsisoft team have analysed this threat in detail.
Version 37.0, first offered to Release channel users on March 31, 2015
Check out “What’s New” and “Known Issues” for this version of Firefox
The Mystartsearch.com adware is a browser hijacker that is bundled with free programs you download off of the Internet. Many free programs are wrapped in an adware installer that installs programs like this hijacker in order to generate revenue for the freeware developer. Unfortunately, many of these programs are just as bad as normal computer malware and can have a harmful effect on your computer. The mystartsearch.com adware is a browser hijacker that changes browser shortcuts, your browser search provider, and browser start pages to mystartsearch.com without your permission. Furthermore, this adware will append the argument http://www.mystartsearch.com/?type=hp&ts=<timestamp>&from=<affiliate_id>&uid=<hard drive id> to various web browser shortcuts and sometimes shortcuts that are for non-Internet related program. This causes the mystartsearch.com web page to open when you launch one of these hijacked shortcuts. Unfortunately, the method they use to change the shortcuts does not allow you to easily fix them by just going into their properties and you have to instead use special tools to clean them.
What is MediPlayer2.8?
The Malwarebytes research team has determined that MediPlayer2.8 is a browser hijacker. These so-called “hijackers” manipulate your browser(s), for example to change your startpage or searchscopes, so that the affected browser visits their site or one of their choice. This one also displays advertisements.
TabNav is a program that displays advertisements and collects information on the sites that you visit. It does this by installing a Layered Service Provider that is able to examine and manipulate all the network data that you transmit and receive on your computer. Using this ability, TabNav can easily inject ads into the web sites that you visit and collect information about your browsing habits. TabNav also installs a root certificate into Windows called appimaker. This root certificate allows it to see SSL traffic so that it is able to inject ads even into encrypted connections. Unfortunately, this also gives it the ability to see all data you transmit over an encrypted SSL connection including login information. For example, in the picture below you see that the appimaker certificate is being used to encrypt the connection between a computer and the Citibank banking site.