Author Archives: Lisa Blanc - Page 80

Two Click Search

Posted by on September 1, 2017 No comments
Two Click Search

Two Click Search is a browser extension enabling you to search for a term or phrase within a text without copying and pasting it in a search box on a search engine. The extension works on the Chrome browser and is available on its official website and in the Chrome Web Store, the latter of which contains only a brief statement about the program without any detailed information how exactly the application works. It has been found that Two Click Search might also be bundled with free software programs and sometimes may be installed surreptitiously, which usually leads to unwanted consequences. These and some other aspects of the browser extension have lead malware researchers to classify it as a potentially unwanted program (PUP), which should be removed from the computer in order to prevent malware installation and other undesirable actions involving your device and your personal information. Read more »

FlatChestWare Ransomware

Posted by on September 1, 2017 No comments
FlatChestWare Ransomware

If you come across a new extension .flat appended to your files, you should know that it is a first sign showing that FlatChestWare Ransomware, a HiddenTear-based crypto-threat, has infiltrated your computer. It is one of those nasty infections that enter computers to ruin users’ files. Specifically speaking, it locks users’ files with a strong cipher so that it could easier extract money from them. If you are among those unfortunate users who have found that it is impossible to access a bunch of files, you should, first of all, go to remove the ransomware infection from your computer so that this infection could not cause you more problems. Your files will stay as they are, i.e., encrypted, but you could restore them from a backup you have. If you have never backed up files in your life, the possibility is huge that you could not restore them for free in any other way. Some users need their files back so badly that they are determined to pay money to cyber criminals, but, believe us, making a payment to malicious software developers is a huge mistake, so you should not do that by any means. Read more »

WininiCrypt Ransomware

Posted by on August 31, 2017 No comments

WininiCrypt Ransomware is a vicious file-encrypting malware that is after user’s files and even their shadow copies. As a result, the malicious application’s victims may receive a lot of damage, and there might be no way to undo it. In this article, we will present more details about the threat, for example, how users could infect their systems with it, so if you wish to know this malware better, you came to the right place. Moreover, our researchers at Anti-spyware-101.com have prepared deletion instructions to guide users through the removal process. Thus, users who have no idea how to deal with WininiCrypt Ransomware manually, should not hesitate to use these steps. On the other hand, if the task looks quite difficult, it might be best not to take any chances and employ a legitimate antimalware tool. Read more »

Cyron Ransomware

Posted by on August 31, 2017 No comments
Cyron Ransomware

Cyron Ransomware can infect your computer by stealth and then encrypt many of your files with an AES encryption algorithm. Its creators want you to pay 50 Euros, which means that this program was created to be distributed in the Eurozone countries in Europe. We recommend not wasting your time trying to pay the ransom because you might not get the promised decryptor/decryption tool, so you might also lose your money. For this reason, we advise that you remove this program as soon as you can. To find out more about it, please read this whole article. Read more »

Aac Ransomware

Posted by on August 31, 2017 No comments

Aac Ransomware is a new variant of the NMoreira Ransomware infection that was discovered last year. It is believed that both infections were created by the same cyber criminal or group of cyber criminals, but there is no denying that they have many differences. For example, the original ransomware was found to remove itself after the encryption was complete, appropriate registry keys were added, and the ransom note file was created. Our Anti-Spyware-101.com research team has not observed this to be the case with the newer variant. Also, the messages hidden in the launcher file are different. The first original one was specifically addressed to the malware research community, while the new ransomware has a message for researchers who managed to decrypt NMoreira Ransomware. At the time of research, a decryptor that would work with the new version of the threat did not exist, and it is possible that it will not be developed at all. While the decryption of files might be impossible, deleting Aac Ransomware is something anyone can handle, and that should be done sooner rather than later. Read more »

Search.searchytdvta.com

Posted by on August 30, 2017 No comments
Search.searchytdvta.com

You may find Search.searchytdvta.com, a potentially risky search engine in your browser after installing a worthless and potentially unwanted browser extension, or a free program you downloaded off of a questionable website. In other words, it is quite possible that you did not install this search engine on purpose and knowingly. You should know that our malware researchers at anti-spyware-101.com has labeled this malware infection as a browser hijacker due to its capabilities to modify certain browser settings, including your home page, new tab, and default search engine. Since this hijacker is spread through a Google Chrome browser extension, it seems to only affect your Chrome browser. However, if this browser is your preferred one, you could be exposed to potentially harmful third-party web content every time you launch it, open a new tab, or run a web search from the address bar. The presence of this infection on your computer could also be a sign that other malware threats may have entered your computer. We believe that it is important that you remove Search.searchytdvta.com from your browser and all other infections you may find in order to restore the previous system security level of your PC. Read more »

Defray Ransomware

Posted by on August 30, 2017 No comments
Defray Ransomware

Defray Ransomware is yet another malicious piece of software that you must remove immediately if it is ever found up and running on your PC. It is nothing more than yet another file-encrypting application that can cause a lot of harm if it is active on your PC even for a short period. Just like any other application of this classification it quickly can lock large quantities of data on the affected computer without any warning or authorization. It is not hard to imagine that such functionality could cause a lot of trouble, especially if you happen to use your PC for work. In this report, we provide detailed information about the inner workings of this ransomware, gathered by our malware experts during their in-depth research. Alongside such information, we also present a few virtual security recommendations and a detailed removal guide so any user that already has Defray Ransomware can delete it without encountering any major problems. Read more »

VOTRE ORDINATEUR A ÉTÉ BLOCKÉ Scam

Posted by on August 29, 2017 No comments

If you face the VOTRE ORDINATEUR A ÉTÉ BLOCKÉ Scam, you do not need to do anything. The last thing you should do is call the number that is represented via the fictitious security alert that it introduces you to. According to Anti-Spyware-101.com malware researchers, there are quite a few different versions of this scam, all of which use different helpline numbers to trick you into communicating with schemers. Needless to say, we do not recommend contacting any bogus helpline numbers because that could lead to serious security problems. Unfortunately, the bogus notification could keep showing up, and it could even hide the mouse cursor or stop you from closing the tab/window representing it. This could trick more gullible users into thinking that their operating systems are infected with malware and that they need the help that is offered via the bogus alert. Obviously, that is not the case. What you should focus on instead is deleting malicious infections and strengthening the protection of your browser. If you want to learn if you need to remove VOTRE ORDINATEUR A ÉTÉ BLOCKÉ Scam-related malware as well, we recommend reading this report. Read more »

Google is Tracking Your Searches

Posted by on August 29, 2017 No comments

Google is Tracking Your Searches are pop-up advertisements that might be displayed as you browse the Internet. Our researchers at Anti-spyware-101.com report the ads may suggest installing a questionable application, so users should consider the offer carefully. If you read the rest of the text, we will explain to you how you could encounter Google is Tracking Your Searches pop-ups. In one of the paragraphs, we will present the software that could be advertised by these suspicious pop-up advertisements too. Finally, at the end of the text, we will add deletion instructions made by our specialists. These steps should help you eliminate not just the irritating ads, but also the suspicious software you could have downloaded while clicking them. However, the process might be more complicated than it seems and if it appears to be the case for you, it would be advisable to employ a legitimate security tool instead. Read more »

History Open

Posted by on August 28, 2017 No comments
History Open

If you are looking for a piece of software that would allow you to access and control your browsing history more easily, do not install the History Open extension even though it is promoted as a browsing history manager because it is not a piece of software that could be fully trusted. First, we have not found it very beneficial – it should only add a button at the top of the browser allowing users to open recently visited websites with a single click on it. Second, specialists at anti-spyware-101.com could not find such important documents as End User License Agreement (EULA) and Privacy Policy, which suggests that there might be something to hide from users. Last but not least, it is capable of entering users’ PCs without their knowledge, which is, without a doubt, not a feature of a trustworthy application. We cannot force you to do anything that you do not want to, but you should know that we do not consider keeping a potentially unwanted program installed and active on the system a very clever idea. The next two paragraphs will tell you everything that you need to know about this extension, so continue reading this report! Read more »