Virus and Spyware Removal Guides, uninstall instructions

What is slimcdn.com?

Identical to medialink.mobi, leblonmedia.com, ads.dlvr.live, and many others, slimcdn.com is another rogue website that redirects visitors to other dubious/untrustworthy sites.

Most users to do not visit slimcdn.com intentionally - they are redirected to it by potentially unwanted programs (PUPs). Typically, PUPs are installed without users' consent, deliver intrusive ads, collect information, and affect computer performance.

What is Princess Evolution?

Princess Evolution is an updated version of high-risk ransomware called Princess. Developers proliferate this virus by using the RIG Exploit Kit. Once infiltrated, Princess Evolution immediately encrypts most stored files, thereby making them unusable.

In addition, it generates a unique string (e.g, ".RcK1") and appends it to the name of each compromised file (for instance, "sample.jpg" might be renamed to "sample.jpg.RcK1").

Once data is encrypted, Princess Evolution generates two files ("^_READ_TO_RE5T0RE_[random_string].txt" and "^_READ_TO_RE5T0RE_[random_string].html"), placing copies of each in all existing folders.

What is Porn Scrubber?

Created by the developers of Advanced Mac Cleaner and Mac Mechanic, Porn Scrubber is a dubious application that supposedly helps users to remove traces of all visited porn websites.

The app is very similar to Mac Auto Fixer. Initially, Porn Scrubber may seem legitimate and useful, however, developers proliferate this potentially unwanted application (PUA) using a deceptive marketing method called "bundling". Therefore, Porn Scrubber often infiltrates systems without users’ permission.

What is FedEx Tracking Email Virus?

Similar to eFax Email Virus, "FedEx Tracking Email Virus" is a spam email campaign used to proliferate a high-risk trojan called Hancitor. Research shows that developers send thousands of deceptive emails that encourage users to open attached MS Office documents. Once opened, the attachments stealthily download and install the Hancitor trojan.

What is searchadministrator.com?

Search Administrator is a deceptive app that supposedly enhances the browsing experience by optimizing search results. This functionality may seem legitimate and useful, however, Search Administrator is categorized as a potentially unwanted program (PUP) and a browser hijacker.

There are three main reasons for these negative associations: 1) stealth installation without users' consent; 2) promotion of a fake search engine, and; 3) tracking of browsing activity.

What is medialink.mobi?

medialink.mobi is a rogue website (virtually identical to ads.dlvr.live, namel.net, fresh-info.news and many others) that redirects visitors to other untrustworthy websites. Most users do not visit medialink.mobi willingly - they are redirected to the site via potentially unwanted programs (PUPs).

These programs are often installed inadvertently, cause redirects, deliver intrusive advertisements, and misuse system resources.

What is leblonmedia.com?

leblonmedia.com is one of many similar rogue websites (including ads.dlvr.live, namel.net, fresh-info.news, etc.) that redirects users to other dubious/untrustworthy sites. leblonmedia.com is often visited inadvertently - most users arrive at the site through potentially unwanted programs (PUPs) that are often installed without users' knowledge.

In addition to unwanted redirects, PUPs deliver intrusive advertisements, gather information, and misuse computer resources.

What is Cmb Dharma?

Cmb Dharma is another variant of a high-risk ransomware infection called Dharma. Immediately after infiltration, Cmb Dharma encrypts most stored files, thus making them unusable. During the process, Cmb Dharma appends each filename with the ".id-[victim's_ID].[paymentbtc@firemail.cc].cmb" extension.

For instance, "sample.jpg" might be renamed to a filename such as "sample.jpg.id-1E857D00.[paymentbtc@firemail.cc].cmb". Once data is encrypted, Cmb Dharma opens a pop-up window and creates a text file ("FILES ENCRYPTED.txt"), placing a copy in every existing folder.

What is ads.dlvr.live?

ads.dlvr.live is one of many rogue websites available (virtually identical to geniustrainer.net, push4check.com, umprow.com, etc.) that forces visitors to be redirected to other untrustworthy sites. Users generally arrive at ads.dlvr.live inadvertently - potentially unwanted programs (PUPs) cause redirects to it.

PUPs are often installed inadvertently and deliver intrusive ads, collect information, and affect computer performance.

What is namel.net?

Namel.net is one of many rogue websites (virtually identical to umprow.com, geniustrainer.net, push4check.com, etc.) designed to cause redirects to other untrustworthy and potentially malicious sites. Most users visit namel.net inadvertently - they are redirected by potentially unwanted programs (PUPs).

These programs are generally installed without users' consent, cause redirects, deliver intrusive ads, collect data, and misuse system resources.