Monthly Archives: March 2018 - Page 10

" File Extension" Ransomware

If you find " File Extension" Ransomware on your computer, it is quite sure that all your important files have been encrypted. Our malware experts at say that there is little known about this vicious program at this stage, but it seems to be a new version of Yyto Ransomware. The latter emerged about a year ago. You have to contact your attackers via e-mail if you want to get the decryption key, but we do not advise you to do so because you have no guarantee that you will get anything in return for your money. We have no information yet about the amount of the ransom fee these cyber criminals demand, but we would never encourage anyone to choose this option anyway. In fact, we recommend that you remove " File Extension" Ransomware from your computer immediately. Read more » is a source of a browser hijacker that our research team at is already familiar with. It was found that this threat is just a different version of the hijacker that we first reported well over a year and a half ago. Both hijackers are represented using an extension called “Search Privacy.” The previously reported version of this extension was introduced to users via, and the current one can be found at Why did the creator of this suspicious software decide to reinvent the already established threat? That is because the original version was taken down. Needless to say, we recommend that you remove Search Privacy regardless of whether you acquired it from or any other source. If you want to learn more, continue reading. Note that you can find instructions that show how to delete this threat below. Read more »

Flixtab Movie Center

Flixtab Movie Center

Flixtab Movie Center is yet another useless browser extension from the notorious Aztec Media Inc. We have seen dozens of similar search websites and new tabs like EasyZip New Tab and Download Manager Star. Our malware experts at say that these are all potentially unwanted programs (PUPS) that may look like innocent extensions and search engines, but at the end of the day, you can never be sure. This PUP does not mean direct danger, of course, and we do not claim that it has malicious intentions. However, it can still present to you questionable search results and may also enter your system with malware infections. All in all, we suggest that you remove Flixtab Movie Center from your browser to keep your PC clean. Please read our full report on this PUP to see how you can protect your computer from similar threats or worse in the future. Read more »

Global System Mechanic

Global System Mechanic

Global System Mechanic, or Wise System Mechanic, is a typical PC optimizer application that does not really benefit you. Our malware specialists at found that this potentially unwanted program (PUP) is identical to Global PC mechanic and Universal PC Mechanic. You should know that the free version of this PUP does not actually do anything other than listing scan results, which might well be partly made-up and contain false results. The only reason behind this is to frighten you with hundreds or thousands of system errors to fix. However, you have to buy the full version to be able to fix any error. This PUP can be very annoying with its pop-up windows that remind you of buying the full version for full functionality. Although  this tool claims to improve the performance of your system to an "unexceptional level," we believe that this a low-quality program that you should not use at all. In fact, we suggest that you remove Global System Mechanic from your system. Please read our full report to learn how you can defend your PC against similar and more serious threats. Read more »

Nice Day Extension

Nice Day Extension

Nice Day Extension is a questionable browser extension targeted at users searching for a fast way to find out local weather conditions. Currently, it is compatible only with Google Chrome, and so users who browse the Internet with Mozilla Firefox or other browsers should not come across it. The research reveals the application might be showing wrong weather conditions and it may not have the features listed in its description. More than that, it appears to be Nice Day Extension has plenty of bad user reviews on Chrome Web Store page. For example, one of its users finds it so useless she suggests it would be better to bookmark a website called Truth to be told, we agree entirely since the add-on raises suspicion and also falls under the classification of potentially unwanted programs. Further, in the text, you will find more details about it, although if you came here just to learn how to delete this extension, you could just slide below the article and use the provided instructions. Read more »

Is That You Facebook

Facebook is still one of the most popular social networking platforms in the world, and so it is not surprising that schemers are trying to exploit it. The Is That You Facebook scam is the perfect example of that. As reported by malware researchers, the scam is used to trick users into clicking a corrupted link that, potentially, could route to fictitious and misleading websites. If you have been exposed to the scam, you have to think very carefully if you have downloaded anything suspicious or disclosed any personally identifiable, sensitive information. If you have, you need to act accordingly to the situation. You can learn more about this by reading this report prepared by malware researchers. It is unlikely that you need to remove Is That You Facebook scam-related malware because this scam operates on a virtual level. That being said, if you were exposed to this scam, it is very important that you scan your operating system to determine whether or not you need to delete malware. Read more »

Datakeeper Ransomware

Ransomware is now becoming available to everyone, and latest detection of a ransomware-as-a-Service (RaaS) platform named Datakeeper only proves that this type of malware is not going to move away from the dark market. The Datakeeper ransomware, also spelt Data Keeper, is yet another tool for hackers and skiddies interested in taking users' files hostage and demanding a release fee. The Datakeeper malware is the third RaaS platform enabling schemers to distribute malware after Saturn and GandCrab.

Different strains based on the Datakeeper RaaS has already been spotted in the wild, causing considerable inconveniences to many computer users, including individual users and businesses alike. Unsuspecting computer users not aware of this type of threat can easily fall victim to the strains of the Datakeeper ransomware because this RaaS does not add any file extensions to affected files, thereby causing confusion when the victim tries to open the file to find that it is corrupted. It is important not to panic but remove the Datakeeper ransomware straight away without paying attention to the ransomware's demand for money. Read more »

Cypher Ransomware

Cypher Ransomware is a new malicious threat that is programmed in Python and capable of encrypting your important files. Our malware specialists at say that this ransomware started to spread at the end of this February and it demands an insane amount of ransom for the decryption key. In fact, our specialists believe that this new threat could be based on an older ransomware infection, which asked for a way smaller fee in Bitcoins; however, in the meantime this cryptocurrency soared through the sky and these attackers forgot to adjust the amount. In any case, we do not believe that any personal user would or could pay around 10,000 dollars for some old personal photos and documents. Normally, such demands are targeted at bigger corporations like private hospitals and IT firms. We think that even if you cannot get your files back this time, it is important to remove Cypher Ransomware from your system. For the details, please continue reading our article. Read more » is a browser hijacker that comes with a Chrome extension. Our research team says that this search engine is a browser hijacker because it changes your default settings without your permission. At the same time, it also means that the extension it comes with is rather suspicious. Hence, to remove from your computer, you need to remove the extension that initiated the browser settings modification. There might be several extensions responsible for this intrusive behavior. If you want to find it immediately, do not hesitate to scan your PC with the SpyHunter free scanner. This way you will get a list of potential threats immediately. Read more »

If has been set on your web browser without your knowledge, it means that you have encountered the browser hijacker. It changes browsers’ settings by installing the add-on named Inspiratiooo. This browser hijacker might be spread bundled with other applications and, on top of that, it is very likely that it is promoted via pop-up advertisements, but users themselves can consciously install this browser hijacker from the official Chrome Web store ( as well. Needless to say, it works exactly the same in all the cases. It is advertised as useful software “for beautiful browsing and search experience” at the Chrome Web Store; however, researchers at have decided to categorize it as a browser hijacker because it usually alters browsers’ settings without the users’ knowledge. Luckily, it affects only Google Chrome, so its removal will not take long. If you have never erased any undesirable extension from your PC, you might find the removal quite difficult. To help you remove it from your browser, we have placed the manual removal guide below this report – you are welcome to use it. Read more »