Author Archives: Max Lehmann

Greatzip

Greatzip

Greatzip is an application promoted as the “best file compressor.” If you open its official website greatzip.com, you will only need a few seconds to find out what activities this program is going to perform on your computer. It claims that it can zip and unzip files quickly, enable users to secure their files with the “banking-level AES encryption,” and make it possible to zip and send large files by email. Researchers at anti-spyware-101.com have managed to find out that Greatzip is based on the 7-zip version 9.21, so it should work well. Unfortunately, this still does not make it a fully reliable program, specialists say. Research has revealed that it has several drawbacks which make it a potentially unwanted application, or PUP. Potentially unwanted programs are not malicious applications and will never be; however, they might still perform undesirable activities on users’ computers, so it is better to replace them with fully reliable applications. Read the rest of the article to find out more about Greatzip and then remove it if you decide that it is worth doing that. Read more »

Unknown Security Breach Popup

Unknown Security Breach Popup

Fake alerts are mostly crafted by cyber criminals to trick unsuspecting Internet users into believing there is something wrong with their system. By using scare techniques, cyber crooks make illegal profits from inexperienced users. One such devious warning message goes by the name of Unknown Security Breach Popup. If you ever happen to come across it, you must know that it could signify that some dubious program is active on your PC and is prompting the alert to show up. In other instances, users encounter this fake error message due to reckless browsing. In this article, we discuss the potential dangers of this devious alert and provide detailed security tips that will help you keep your PC clean and secure at all times. Besides all of that, we also provide a generic removal guide that you should use to delete a program related to the Unknown Security Breach Popup fake alert. Read more »

Search.searchtg.com

Search.searchtg.com

If your browser began redirecting you to Search.searchtg.com instead of your usual homepage website, it was most likely hijacked by this suspicious search engine. Fortunately, our researchers at Anti-spyware-101.com say the tool is not considered malicious, although it's provided advertising content could introduce you to content that could be harmful or unreliable. For this reason, users are advised to remove the browser hijacker and restore their homepage preferences. If you decide to follow this advice and choose to replace Search.searchtg.com, we can offer the removal instructions available at the end of this report. As for the rest of the text, we will provide more information about the search engine, so those who would like to find out more about this search engine should continue reading the article. Read more »

CercaVoli

CercaVoli

Our cyber security experts have recently discovered and tested a program called CercaVoli. They have concluded that CercaVoli is potentially unwanted program (PUP) that you might want to remove from your PC because it simply does not work and because you can get it accidentally when installing bundled software. Furthermore, you cannot uninstall it from Control Panel, so you have to delete all of its files manually. For more information on this program, please read this whole article. Read more »

Tigers Deal

Tigers Deal

Tigers Deal is a potentially unwanted program (PUP) targeted at users who often like to shop online. The application’s descriptions suggest it can make “your home page much Faster and slicker with our all in one tab for all your shopping needs.” Accordingly, the extension might sound rather handy. However, we would advise you not to trust its provided descriptions as they might be exaggerated. Moreover, our researchers at Anti-spyware-101.com say the PUP could be potentially dangerous as it may introduce users to suspicious advertisements from the third party. It seems to us the risks that might come with the extension’s usage are not worth the doubtful benefits you get, but we will talk about this later in the text. Therefore, we invite you to read our report and get to know Tigers Deal better, although if you wish to erase it right away, you could slide below the article at one and use the provided removal instructions. Read more »

Amnesia 2 Ransomware

Amnesia 2 Ransomware is a dangerous hit to your computer and to you as well, as this vicious program can encrypt most of your files once it is initiated on your system. This malicious threat can sneak onto your system without your permission and knowledge. Our malware specialists at anti-spyware-101.com say that this is a Delphi-based ransomware just like RSUTILS Ransomware and Extractor Ransomware. After this attack, you are offered a way out by buying a decryptor that can allegedly restore your files. These criminals demand a rather high amount for this tool and to be quite frank, there is a chance that you will not even get it even if you transfer the ransom fee. Instead, we advise you to search the web for a free tool to recover your files, which you may find in this case. However, if you are not an experienced user, we suggest that you ask a friend or an IT expert to help you out with this because it is quite easy to infect your system with more threats if you land on the wrong site or download the wrong tool. If you have not launched the malicious file yet, we highly recommend that you remove Amnesia 2 Ransomware from your system. If it has already hit you, it most likely removed itself after it finished its job. Read more »

Resurrection Ransomware

Resurrection Ransomware

Resurrection Ransomware is yet another ransomware based on the Hidden-Tear project. However, like Decryption Assistant Ransomware that we analyzed recently, this new ransomware is also only partially working. Apparently, both of these programs are experiencing problems but, nevertheless, it does not mean that Resurrection Ransomware is going to remain harmless. It has the potential to encrypt your personal and demand money to have them decrypted. Therefore, you ought to remove this ransomware as soon as possible before it is updated and fully functional. For more information, please read this whole article. Read more »

$ucyLocker Ransomware

$ucyLocker Ransomware (also known as SucyLocker Ransomware) is a harmful malicious application detected by our experienced researchers at the beginning of June, 2017. The fact that it has been detected recently suggests that it is a new ransomware-type infection which is not very popular yet. Everything might change soon, of course. Ransomware infections are malicious applications developed by cyber criminals to extract money from users, and, unfortunately, we cannot say that $ucyLocker Ransomware is different. After its malicious file VapeHacksLoader.exe is launched, it starts working on a victim’s computer. It finds where users’ files are located first and only then encrypts them. In this sense, it does not differ much from other ransomware-type infections based on the Hidden-Tear engine. Do not give the developer of this nasty infection a cent and hurry to delete $ucyLocker Ransomware from your computer so that it could not lock your files one more time. This malicious application not only encrypts files, but also disables Task Manager. Evidently, it tries to make it harder to remove it. Do not worry; after getting rid of the ransomware infection, you could restore its functionality. Read more »

3spiral Wave

3spiral Wave

3spiral Wave is a potentially unwanted program. It works as a browser extension, and the program may come with various features you would not like. It is important to note that such applications are very far from regular computer infections, and users often install them on their computers willingly.

On the other hand, if you do not remember installing this extension, then you can and should remove 3spiral Wave immediately. You can scroll down to the bottom of this article for the manual removal instructions or read the next paragraph that deals with the origins of 3spiral Wave and other similar programs.

Where does 3spiral Wave come from? Read more »

Qipapp Ads

Qipapp Ads

Have you started seeing irritating Qipapp Ads on your screen? If the answer to this question is “yes,” you must have an application Qipapp installed and active on your computer. This application is better known as a Trojan.HomepageDefender to specialists at anti-spyware-101.com. According to specialists working there, this application might work as an adware helper for Chinese applications. Consequently, it might perform a bunch of undesirable activities on users’ computers, for example, generate commercial advertisements and collect information about them, to name a few. It will surely not become a beneficial application, so we see no point in keeping this application installed on the computer. Although it is a Trojan infection, i.e. a harmful threat, it should not be hard to remove it because it creates an uninstaller in Control Panel. The information you find in the following paragraphs of this article will tell you more about Qipapp so that you would know what to expect from it if you make a decision to let it stay active on your system. Additionally, we will discuss its removal in detail in the last paragraph. Read more »