About Aleksei Abalmasov
Computer security specialist. I try to do my best and share my knowledge with you by creating simple-to-follow and useful guides on various topics about computer security.

How to uninstall (remove) ScanGuard

January 31, 2017 Aleksei Abalmasov 0

ScanGuard is bogus security application, that uses unethical methods for distribution and monetization. It is not considered virus, but potentially unwanted application. It looks like modern security program, but does not provide trial version and shows security alerts, demanding payment for removal. In addition to that it installs search.scanguard.com (or ScanGuard Smart Search) as default search engine and homepage in Google Chrome, Mozilla Firefox and Internet Explorer.

How to remove InstallWizz (Mac)

January 26, 2017 Aleksei Abalmasov 0

InstallWizz is advertising plugin for Safari, Google Chrome, Mozilla Firefox. It shows ads in form of underlined keywords, pop-up ads or advertising banners. Ad units may lead to low-quality shopping sites or phishing landing pages. Malware targets Mac OS systems and browsers, that can work on Mac.

How to remove Shade Ransomware and decrypt .no_more_ransom files

January 23, 2017 Aleksei Abalmasov 0

Shade is a ransomware that is very similar to Wildfire, Hades Locker, CryptFIle2 (or CryptMix) and MarsJoke (or JokeFromMars). Once Shade ransomware has infected your computer, it encrypts various data. After finishing encrypting process, this ransomware adds .no_more_ransom extension (what an irony) to the name of all the encrypted files. It will create a text note named nomoreransom_note_original.txt / YourID.txt / hacked.txt in each folder with the encrypted data and on your desktop.
There are two features of this ransomware that differs it from other ransomware programs. First, it’s the fee for decrypting files. 30$ is rather smaller ransom in opposition to 500-1000$ (usually ransomware developers demand this amount of money).

How to remove PayDay ransomware and decrypt .sexy files

December 20, 2016 Aleksei Abalmasov 0

Payday is a ransomware based on HiddenTear source code and developed by Portuguese hackers. Payday derives its name from popular game of the same name. The purpose of the infection is to deny access to the personal data so it encrypts them using complex AES cipher. At the time of encryption, Payday appends the names of encrypted files with the .sexy extension. Although, the data encryption is a time-consuming process, the users usually don’t notice nothing suspicious. The whole procedure runs in stealth mode. Once encrypted, virus creates HTML file saving it on the desktop.

1 2 3 104