Virus and Spyware Removal Guides, uninstall instructions

What is Get Free Translations?

Get Free Translations is the name of an app that supposedly gives quick access to various free translation tools. The app apparently translates any website and provides access to many language resources, however, it is actually a browser hijacker that changes browser settings to promote a fake search engine (search.hgetfreetranslations.com).

Developers distribute Get Free Translations with another dubious app called Hide My Searches. Typically, people download and install these apps inadvertently. Therefore, they are known as potentially unwanted applications (PUAs).

What is Masodas?

Masodas is a high-risk ransomware-type infection designed to infiltrate computers and encrypt most stored files. In doing so, Masodas appends each filename with the ".masodas" extension (hence its name). For example, "sample.jpg" becomes "sample.jpg.masodas".

Once data is encrypted, Masodas stores the "_readme.txt" file in most existing folders. This ransomware belongs to the Djvu family and was first discovered by Michael Gillespie.

What is mediasource[.]online?

Mediasource[.]online is a rogue site, designed to cause redirects to untrustworthy and potentially malicious websites, as well as feed users similarly suspect content. It shares many characteristics with exclusivenotifications.com, central-messages.com, allowpush.club and many, many others.

Deliberate entry to such websites is rare, as most visitors access them by being redirected from other compromised sites (specifically, through intrusive advertisements found therein) or by having them force-opened by PUAs (potentially unwanted applications).

It is important to note that such apps do not require express user permission to be installed onto their devices. Once effectively within a system, PUAs cause undesirable redirects, deliver invasive ad campaigns and can even gather vulnerable user data.

What is loteron[.]com?

Like vakogid.com, markably.info, prioritynotifications.com, and many others, loteron[.]com is a rogue site intentionally designed to cause redirects to other dubious and dangerous websites. It also presents visitors with potentially malicious content.

Note that few users open this site intentionally - most are redirected by compromised sites, or the site is force-opened by PUAs (Potentially Unwanted Applications) already installed on the system. These applications do not require explicit user permission to be installed onto devices. PUAs are designed to cause redirects, run intrusive advertisement campaigns, and track user data.

What is Truefalserdr?

Truefalserdr is a scam website used to trick people into downloading and installing an unwanted application named Smart Mac Booster.

To achieve this, scammers designed this web page to inform visitors of a 'detected virus'. Visitors are encouraged to believe that their computers are infected with a virus and to install the advertised app. Do not trust pages of this type or apps distributed through them.

What is maccleaner.pkg?

The maccleaner.pkg file is used to install unwanted software onto MacOS. Examples of applications that might be installed through maccleaner.pkg are Smart Mac Booster, Advanced Mac Cleaner, Mac Cleanup Pro, MacKeeper, Mac Auto Fixer, and Advanced Mac Tuneup.

All of these apps are categorized as potentially unwanted applications (PUAs), since they are advertised on deceptive websites, distributed through fake Flash Player updaters, and so on. If the maccleaner.pkg software package file appears in the Downloads folder (or others), we strongly recommend that you do not open or execute it.

What is Bolik?

Bolik is a malicious program that is categorized as a banking Trojan, however, in addition to stealing data (information) from bank-client systems, it also logs keystrokes and performs web injections.

Recently, it was proliferated by hacking a legitimate website that is used to promote the VSDC, free audio and video editing software. Many people were tricked by cyber criminals/hackers into downloading the Bolik Trojan rather than the VSDC program.

What is Vesrato?

Vesrato is another ransomware infection that belongs to the Djvu family. When installed, these programs lock files and prevent victims from accessing them unless a ransom is paid. This ransomware was discovered by Michael Gillespie. Vesrato changes the extension of encrypted files by adding ".vesrato".

For example, "1.jpg" becomes "1.jpg.vesrato". Like most ransomware-type programs, it also creates a ransom message, in this case, within a text file named "_readme.txt". This file can be found in folders that contain encrypted data.

What is "Your Apple iPhone Is Infected By (17) Viruses"?

"Your Apple iPhone Is Infected By (17) Viruses" is a scam promoted through a deceptive website. Its main purpose is to trick people into believing that their iPhone smartphones are compromised and infected, and to promote an app that supposedly fixes this issue.

This scam website should not be trusted, and the same applies to apps promoted through it. People generally open this scam website unintentionally and these sites are often opened by potentially unwanted apps (PUAs) installed on their systems.

What is AssistEngine?

AssistEngine is a deceptive application that falsely claims to enhance the internet search experience. Judging on appearance alone, AssistEngine may seem legitimate and useful, however, it is categorized as a potentially unwanted application (PUA) and adware.

There are three main reasons for these negative associations: 1) installation without users' consent; 2) tracking of browsing activity, and; 3) display of intrusive advertisements.