Stop redirects to/from redtext.biz
Written by Tomas Meskauskas on (updated)
What is redtext[.]biz?
Redtext[.]biz is a rogue website, one of many thousands out there. It shares similar traits with solo85.biz, onlinecontent.fun, noorotin.biz and others. It operates by redirecting users to other unreliable and possibly malicious sites; it also delivers dubious content for user consumption.
It should be known, that few visitors to this webpage access it willingly. In most cases, they are redirected by PUAs (potentially unwanted applications) or invasive advertisements. The aforementioned apps do no need explicit user consent to be installed onto their devices. Once within, they generate redirects to unreliable/malignant sites, run intrusive ad campaigns and track data.
![redtext[.]biz pop-up redirects](/images/stories/screenshots201906/redtextbiz-homepage.jpg)
Invasive adverts promote redtext[.]biz by redirecting to it, once they are clicked. Unwanted apps force-open new browser tabs/windows and likewise redirect to it. The first thing this deceptive site does is inspect visitor's IP (Internet Protocol) address, in order to infer their geolocation.
The latter is key in determining the further course of action this websites takes. Depending on user's geolocation, it either redirects them elsewhere and/or begins feeding them questionable and/or malignant content. It should be mentioned, that redtext[.]biz employs browser notifications.
By hiding the consent option underneath clickbait (examples of which are: "Click here, to verify that you are not a robot", "Your video is loading, press 'Allow' to continue", "Tap 'Allow' to view newest articles/news/TV/movies/etc." and various others), it tricks users into allowing its notifications.
Once consented to, redtext[.]biz begins delivering invasive advertisement campaigns. These ads are deemed a safety hazard, due to the unreliable/malicious webpages they redirect to, as well as their ability to execute scripts, in order to make rogue downloads/install of PUAs.
Undesirable applications are likewise capable of similar redirects and they run intrusive advertisement campaigns. The ads they deliver can severely affect the browsing experience, i.e. limit browsing speed and overlay site content. Additionally, PUAs can have data tracking abilities.
By monitoring users browsing activity, they can gather their personal information. What is crucial to understand, is that this accumulated data is then passed onto third parties (possibly, cyber criminals), intent on misusing it for financial gain.
Therefore, presence of data tracking content within systems can lead to serious privacy issues, even culminate in identity theft. To ensure device integrity and user safety, all suspicious applications must be removed without delay.
| Name | redtext.biz pop-up |
| Threat Type | Push notifications ads, Unwanted ads, Pop-up ads |
| Detection Names | Fortinet (Malware), Yandex Safebrowsing (Malware), Full List Of Detections (VirusTotal) |
| Serving IP Address | 178.128.241.54 |
| Observed Domains | 0.redtext[.]biz, 1.redtext[.]biz, 10.redtext[.]biz, 2.redtext[.]biz, 3.redtext[.]biz, 4.redtext[.]biz, 5.redtext[.]biz |
| Symptoms | Seeing advertisements not originating from the sites you are browsing. Intrusive pop-up ads. Decreased Internet browsing speed. |
| Distribution Methods | Deceptive pop-up ads, potentially unwanted applications (adware) |
| Damage | Decreased computer performance, browser tracking - privacy issues, possible additional malware infections. |
| Malware Removal (Windows) | To eliminate possible malware infections, scan your computer with legitimate antivirus software. Our security researchers recommend using Combo Cleaner. |
PUAs often look highly legitimate and innocuous. They offer a broad array of abilities/features, which tend to sound very useful and beneficial, thereby luring users into installing them. However, it must be stated, that all promises that unwanted applications make are most likely false, and features advertised - nonoperational.
These rogue apps have but one purpose, that is to generate revenue for their developers. To users - they have no genuine value. Instead, they cause redirects to various hazardous webpages, deliver invasive advertisement campaigns and gather venerable data.
How did adware install on my computer?
PUAs are furthered through install packs/bundles. "Bundling" is a deceptive marketing method, by which ordinary programs are pre-packed with undesirable content. Users who have a habit of rushing through installation processes (e.g. ignoring terms, skipping steps, using pre-sets and etc.) - endanger their devices with possible system invasions and infections.
Some PUAs have "official" download websites. Another way that said apps spread, is via autonomous downloads/installs, initiated by invasive adverts.
How to avoid installation of potentially unwanted applications?
It is strongly advised to use only trustworthy and verified download sources. Using third party downloaders is ill-advised, as they are far more likely to offer software bundled with PUAs. When installing, users should read terms, use "Custom/Advanced" settings and opt-out/decline additional apps/features/offers.
Browsing advices include avoiding suspicious webpages and adverts. Invasive advertisements usually look utterly ordinary, however they redirect to more obviously untrustworthy sites (e.g. gambling, adult-dating, pornography and similar).
Should users encounter such ads/redirects, they are advised to inspect their systems and remove all suspect applications and/or browser extensions/plug-ins. If your computer is already infected with rogue applications, we recommend running a scan with Combo Cleaner Antivirus for Windows to automatically eliminate them.
Appearance of redtext[.]biz website (GIF):
![redtext[.]biz website appearance (GIF)](/images/stories/screenshots201906/redtextbiz-appearance.gif)
Instant automatic malware removal:
Manual threat removal might be a lengthy and complicated process that requires advanced IT skills. Combo Cleaner is a professional automatic malware removal tool that is recommended to get rid of malware. Download it by clicking the button below:
▼ DOWNLOAD Combo Cleaner
By downloading any software listed on this website you agree to our Privacy Policy and Terms of Use. To use full-featured product, you have to purchase a license for Combo Cleaner. 7 days free trial available. Combo Cleaner is owned and operated by Rcs Lt, the parent company of PCRisk.com read more.
Quick menu:
- What is redtext.biz pop-up?
- STEP 1. Remove spam notifications from Google Chrome
- STEP 2. Remove spam notifications from Google Chrome (Android)
- STEP 3. Remove spam notifications from Mozilla Firefox
- STEP 4. Remove spam notifications from Microsoft Edge
- STEP 5. Remove spam notifications from Safari (macOS)
Disable unwanted browser notifications:
Video showing how to disable web browser notifications:
Remove spam notifications from Google Chrome:
Click the Menu button (three dots) on the right upper corner of the screen and select "Settings". In the opened window select "Privacy and security", then click on "Site Settings" and choose "Notifications".
In the "Allowed to send notifications" list search for websites that you want to stop receiving notifications from. Click on the three dots icon near the website URL and click "Block" or "Remove" (if you click "Remove" and visit the malicious site once more, it will ask to enable notifications again).
Remove spam notifications from Google Chrome (Android):
Tap the Menu button (three dots) on the right upper corner of the screen and select "Settings". Scroll down, tap on "Site settings" and then "Notifications".
In the opened window, locate all suspicious URLs and tap on them one-by-one. Once the pop-up shows up, select either "Block" or "Remove" (if you tap "Remove" and visit the malicious site once more, it will ask to enable notifications again).
Remove spam notifications from Mozilla Firefox:
Click the Menu button (three bars) on the right upper corner of the screen. Select "Settings" and click on "Privacy & Security" in the toolbar on the left hand side of the screen. Scroll down to the "Permissions" section and click the "Settings" button next to "Notifications".
In the opened window, locate all suspicious URLs and block them using the drop-down menu or either remove them by clicking "Remove Website" at the bottom of the window (if you click "Remove Website" and visit the malicious site once more, it will ask to enable notifications again).
Remove spam notifications from Microsoft Edge:
Click the menu button (three dots) on the right upper corner of the Edge window and select "Settings". Click on "Cookies and site permissions" in the toolbar on the left hand side of the screen and select "Notifications".
Click three dots on the right hand side of each suspicious URL under "Allow" section and click "Block" or "Remove" (if you click "Remove" and visit the malicious site once more, it will ask to enable notifications again).
Remove spam notifications from Safari (macOS):
Click "Safari" button on the left upper corner of the screen and select "Preferences...". Select the "Websites" tab and then select "Notifications" section on the left pane.
Check for suspicious URLs and apply the "Deny" option using the drop-down menu or either remove them by clicking "Remove" at the bottom of the window (if you click "Remove" and visit the malicious site once more, it will ask to enable notifications again)
How to avoid browser notification spam?
Internet users should be very skeptical when being asked to allow notifications. While this is a useful feature that allows you to receive timely news from websites you like, deceptive marketers frequently abuse it.
Only allow notifications from websites that you fully trust. For added security - use an anti-malware application with a real-time web browsing monitor to block shady websites that tries to trick you into allowing spam notifications. We recommend using Combo Cleaner Antivirus for Windows.
Outstanding!
▼ Show Discussion