Virus and Spyware Removal Guides, uninstall instructions

What is HdTrack?

HdTrack is a rogue app classified as adware. It also has browser hijacker traits. Due to the questionable methods used to distribute software products within these classifications, they are also considered to be PUAs (Potentially Unwanted Applications).

What is BoostSign adware?

The purpose of BoostSign is to generate advertisements and promote a fake search engines/hijack browsers (by changing their settings). It is uncommon for apps like BoostSign to be downloaded and installed by users on purpose. Thus, they are categorized as potentially unwanted applications (PUAs).

What is the svpni.cyou site?

Svpni.cyou is the address of a deceptive website, which promotes various scams. At the time of research, it ran a scheme in Swedish stating that hackers are currently monitoring the user, and another one claiming that their Internet connection was not secure.

Scams of this type typically aim to trick users into downloading/installing and/or purchasing dubious software. For example, they can endorse fake anti-viruses, adware, browser hijackers, and other PUAs (Potentially Unwanted Applications). In rare cases, such schemes have been noted spreading malware (e.g., ransomware, trojans, cryptominers, etc.).

Most users access deceptive/scam sites via redirects caused by rogue webpages, intrusive advertisements, or PUAs installed onto their devices.

What is the news-lipaze[.]cc site?

News-lipaze[.]cc is an untrustworthy website sharing many similarities with positivestar.org, 761d.site, ositieonthat.space, and thousands of others. It is designed to present visitors with dubious content and/or redirect them to other (likely unreliable or malicious) sites.

Such rogue webpages are typically accessed via redirects caused by suspect websites, intrusive ads, or installed PUAs (Potentially Unwanted Applications).

What page is ib-search.com?

Ib-search.com is a fake search engine that shows results generated by other (trustworthy and untrustworthy) search engines. Most fake search engines are promoted through browser hijackers. Usually, users download and install apps of this type inadvertently. Thus, they fall into the category of potentially unwanted applications (PUAs).

What type of website is gettingyourcontent[.]com?

Gettingyourcontent[.]com is a website designed to promote shady, potentially malicious sites and to lure visitors into allowing it to show notifications. There are plenty of pages like this one on the Internet, for example, mailclick[.]biz, to2s[.]biz, and wholedailyfeed[.]com.

What is positivestar[.]org?

Positivestar[.]org is a rogue site that hosts dubious content and redirects visitors to other (likely untrustworthy or malicious) websites. The Internet is full of such webpages; news-gemara.cc, get-positive.net, apel.top, news-themes.com - are just some examples.

Rogue sites are typically accessed via redirects caused by suspect pages, intrusive ads, or installed PUAs (Potentially Unwanted Applications).

What is YOUR CORPORATE NETWORK HAS BEEN HACKED email scam?

This email scam is used to trick recipients into believing that their computers have been hacked and important files have been downloaded to a remote server controlled by hackers. Scammers behind it claim that the downloaded files will be published on their website if victims do not pay a certain amount of money.

What is "Robux Generator"?

"Robux Generator" is a scam promoted on various deceptive websites. This scheme offers to generate an unlimited amount of Robux (in-game currency) for the Roblox online game platform and game creation system. It must be emphasized that this generator is fake and cannot generate Robux. This fraudulent generator is in no way associated with the Roblox Corporation, and its sole purpose is to scam users.

What is Medusabtc ransomware?

Medusabtc is part of the Xorist ransomware family. It blocks access to files (encrypts them) and generates two ransom notes (displays pop-up window and creates "HOW TO DECRYPT FILES.txt" file). Also, Medusabtc appends ".medusabtc" extension. For example, it renames "1.jpg" to "1.jpg.medusabtc", "2.jpg" to "2.jpg.medusabtc".