Author Archives: Max Lehmann - Page 8

StreamingOnlineWatch

StreamingOnlineWatch

StreamingOnlineWatch is a potentially unwanted program (PUP) targeted at users looking for tools to stream movies or similar content online. However, users should realize it is not the extension that streams the content, but the links it suggests. In other words, installing the add-on could be unnecessary. Instead, you could add the links you find useful to your browser’s bookmarks, and you could reach them just as fast as with the PUP. In any case, the main reason we do not think it is worth wasting any time with StreamingOnlineWatch is there is a chance the add-on might encourage users to browse with an untrustworthy search engine. If you keep reading our report you can learn more about this as well as how to get rid of this suspicious application. What’s more, to make this task easier we will place steps showing how to eliminate it at the end of this report. Read more »

Kwaaklocked Ransomware

Kwaaklocked Ransomware is not yet fully developed, but it seems it could be another malicious file-encrypting application based on an open source ransomware program known as Hidden Tear. Most of them were created the year the original Hidden Tear’s sample was uploaded (2015), but apparently, there are still some hackers who keep using this code to generate more infections. Further, in the text, we will discuss the threat’s possible distribution channels and explain what to expect if it enters your system. Of course, you will find tips on how to avoid malicious applications like Kwaaklocked Ransomware as well as how to get rid of this malware manually. However, we would like to stress that since the infection is still in the process of being developed it might change and it is difficult to say how accurate the instructions at the end of this article can be. Therefore, if you encounter this threat, it might be best to use a legitimate antimalware tool instead. Read more »

Crybrazil Ransomware

Crybrazil Ransomware

If you live in Brazil or speak Portuguese, Crybrazil Ransomware is an infection that is specifically targeted at you. The installer of this dangerous infection could be dropped using remote access or introduced to you as a harmless spam email attachment. Other methods could be employed to spread this malware as well. Our Anti-Spyware-101.com research team has found that the infection was built using the infamous Hidden Tear source code. We have reviewed hundreds of other infections (e.g., Cyberresearcher Ransomware) that have been built using the same code and spread in similar ways. Although all of these threats have unique features, they function in the same ways. For one, they were all created to terrorize Windows users, hijack their files, and demand huge ransom fees in return for decryptors and decryption keys. In some cases, free decryptors are released by malware researchers, but one that would work with this malware did not exist at the time of research. All in all, whether or not you decrypt your files, you must delete Crybrazil Ransomware as soon as possible. The removal tips we have for you will surely help. Read more »

Your Battery Is Damaged By Viruses

If you are seeing a notification telling Your Battery Is Damaged By Viruses you should know you most likely encountered a fake system alert. Such threats are designed to imitate genuine warnings and make the user do what the cybercriminals want while imagining they are doing it to protect their devices. For example, in this case, the hackers want their victims to download a specific tool. If you believe the fake pop-up, it is supposed to help you delete possible threats, but we suspect it might be in fact a malicious application. Thus, installing it could be extremely dangerous, for example, depending on the malware it could harm user’s files, steal his sensitive information, etc. Consequently, our specialists at Anti-spyware-101.com advise not to download any tools recommended by the Your Battery Is Damaged By Viruses notification. If you want to know how to react when coming across such alerts you should read our full report about this false pop-up. Read more »

Autismlocker Ransomware

Autismlocker Ransomware

Autismlocker Ransomware is an incredibly creepy infection that is capable of locking the screen and creating an illusion that the victim needs to either kill someone or send photos in which they are nude. Needless to say, the first option should not be even considered, but sending personal photos is not necessary either, and that is because the infection is a simple screen-locker that can be disabled very easily. Hopefully, you are not reading this after sending any photos or communicating with the malicious schemers who have created the infection. Our research team at Anti-Spyware-101.com has found an easy way for you to disable the lock and then remove Autismlocker Ransomware. Can you ignore the infection once you regain access to the operating system? You certainly cannot, and that is because the malicious files of this threat could easily be converted and used in other malicious ways. It appears that they could even encrypt data! Continue reading to learn how to successfully delete this malware ASAP. Read more »

Leadtrack.pro

Leadtrack.pro

Leadtrack.pro appears to be an adware server as it could show tons of various advertising content. The bad news is such material might be not only incredibly annoying but also potentially malicious. This is why it is highly advisable to remove this threat as fast as possible. Of course, before deleting the adware server, it might be smart to learn more about it, and you can do this by reading the rest of our article. Especially, if you are encountering it for the first time as the information we will present could help users stay away from threats alike in the future. As for its elimination, we can offer the removal steps located at the end of this article. We cannot promise they will work for everyone, but if you are determined to erase Leadtrack.pro manually, we encourage you to try completing the provided steps. Read more »

BansomQare Manna Ransomware

BansomQare Manna Ransomware is an annoying computer infection that might even go as far as prevent Windows from booting. The good news that it is possible to decrypt this infection with an online decryption tool, but you should still work hard to remove BansomQare Manna Ransomware from your computer.

What’s more, it is important that you recognize the main malware distribution patterns and protect yourself from similar intruders in the future. Thus, we will tell you more about the potential ransomware distribution methods, so that you would know what to expect. The most important thing is that you should never be hasty when it comes to clicking new links! Read more »

Google Image Downloader Chrome Extension

Google Image Downloader Chrome Extension

You should not install Google Image Downloader Chrome Extension on your computer when there are so many other 100% trustworthy applications working similarly. This piece of software has been categorized as a potentially unwanted application by specialists at anti-spyware-101.com despite the fact that it is promoted as reliable and useful software. At the time of analysis, the extension was down, so we cannot say anything about its usefulness; however, it surely has some drawbacks. For example, our malware analysts say that users might be forced to install this piece of software from a page with a pop-up claiming that installing the extension is the only way to close that website. This is not a feature of a reliable browser extension, we can assure you, so, in our opinion, you should delete Google Image Downloader Chrome Extension from your system today. You should not keep it even if you have found it quite useful because there is a possibility that it will cause you a lot of problems. Continue reading to find out how it can be removed. Read more »

TeleGrab

TeleGrab is a new malicious application that was detected by researchers monitoring the web at the beginning of May, 2018 for the first time. It is not an ordinary infection, to say the least. Malware analysts have carried out research to find more about this infection and they are now 100% sure that it is one of those threats that target a specific application. In this case, it is Telegram, which is known to be an end-to-end instant messaging service. Also, specialists can now say with confidence that there are two different versions of the same malicious application available. The first one was discovered in the wild on April 4, 2018, whereas the second one landed in researchers’ lap six days later. Even though both of them are all about stealing personal information, they slightly differ from each other. Read more »

Scarab-Osk Ransomware

Scarab-Osk Ransomware could rename and encrypt all of your data, so if it manages to infect your device, you might not only find it difficult to recognize your files but also impossible to open them. Soon after ruining the victim’s files, the malware should show a ransom note asking for a payment. The price for the decryption tool may look rather small compared to how valuable your data could be to you, but you should think about it carefully. There are no reassurances the hackers will not ask for more money or try to scam victims in other ways. Meaning, it is quite possible paying the ransom might be same as throwing your money out. Provided that you do not want to risk being scammed, we advise deleting Scarab-Osk Ransomware. The steps located below could help users remove it faster, and anyone who needs more information about the infection can find it further in the text. Read more »