Virus and Spyware Removal Guides, uninstall instructions

What is MINISTÈRE DE L'INTÉRIEUR?

MINISTÈRE DE L'INTÉRIEUR is the name of a legitimate authority that is being exploited by cyber criminals in order to trick computer users into paying a bogus fine for supposed copyright or other law violations. This fake message specifically targets computer users from France.

Cyber criminals use the name of an authority within a locally-translated deceptive message to scare PC users into paying a 100 Euro fine - supposedly for watching pornography, downloading copyrighted material, etc.

Computer users from France (or anywhere else) should not trust this message, it is a scam. This fake message is a computer security infection called ransomware, and this particular rogue originates from a family called Reveton.

What is Gesellschaft zur Verfolgung von Urheberrechtsverletzungen?

GVU Gesellschaft zur Verfolgung von Urheberrechtsverletzungen (Bundesamt für Sicherheit in der Informationstechnik) scam is a ransomware infection, which attempts to trick PC users into paying a bogus fine of 100 Euro for supposed copyright law violations. This deceptive message completely locks users' computers and demands payment of the fake fine using Ukash.

This scam originates from a family of ransomware named Reveton and is a widely distributed security threat translated into many languages. This particular ransomware targets PC users from Germany and exploits the name of 'GVU' in order to make the fake message appear authentic. Computer users should ignore this message and not pay the 100 Euro fine under any circumstances.

What is Norsk Politi Institutt for Cybercrime?

Norsk Politi Institutt for Cybercrime Scam is a security infection originating from a family of ransomware called Reveton. This particular security threat targets computer users from Norway. The Reveton family of ransomware is infamous for its capability to localize deceptive messages, which lock computer users' desktops.

This localization is achieved by detecting computers' IP addresses, and with this this information, the ransomware infection is able to display fake messages translated into local languages.

What is Claro-Search.com?

The Claro-search.com website presents users with a customized Google search engine. Commonly, users are redirected to this website having installed the Claro LTD toolbar on their Internet browsers.

Whilst this website alone is not malicious, its promotion methods are clearly deceptive.The browser add-on is often installed on users' computers as part of free software downloads from the Internet. While not directly malicious, there seems no point in using Claro-search.com for your daily Internet searches.

What is iask123.com?

iask123.com is a website using deceptive methods to generate traffic - it is a browser hijacker. Many computer users complain that their Internet browsers are redirected to the iask123.com website without their consent.

This is a clear indication that users' computers have been infected with a Trojan or other security threat, which sets the browser homepage to iask123.com. As well as these deceptive methods to gain website visitors, the site employs Google colors within the header.

What is Cougar Systems Support?

Cougar Systems Support Center is a malicious website used by Cyber criminals. It is a fake support website to which computer users are redirected if their computers become infected with fake antivirus programs from the WinWebSec family. When creating rogue security programs, cyber criminals attempt to make them appear legitimate by employing devious methods.

In this case, they do so by operating under the guise of a 'support website'. In fact, Cougar Systems Support Center is a non existent company with no support services. Furthermore, if you have been redirected to this website, your PC has acquired a fake antivirus software infection.

The information provided within the cougarsupport.net website is designed to trick unsuspecting PC users into believing that they are dealing with a genuine security program.

What is System Cleaner is in Progress?

"Your Computer is Inactive - System Cleaner is in Progress" is a ransomware infection, which locks computer users' screens and demands payment of a $200 fine to unlock it. The deceptive message within the screen locker states that it was applied due to the computer user downloading copyrighted music files, using torrents, etc.

Cyber criminals responsible for creating this ransomware invented the name, "System Cleaner" - supposedly a new system designed to prevent online piracy and other law infringements. In fact, "System Cleaner" system does not exist - it is a trick designed to scare unsuspecting PC users into paying a bogus fine for supposed law infringements.

What is Yontoo?

Yontoo is a company that develops browser add-ons and web applications. Their products include web apps such as Best Video Downloader (a web app that allows users to download videos from YouTube), PageRage (an app that allows users to change Facebook layouts), EasyInline (an app that enables the highlighting of text and provides options to search across various popular resource sites), and many others.

While the idea of enhancing your Internet browsing experience with various browser add-ons and plug-ins is valid, Yontoo apps are ad-supported and thus employ some deceptive methods to display them. For example, after installing Best Video Downloader, visitors to YouTube will notice that the ads no longer originate from Google - the Yontoo app overrides them with its own.

What is Stop Online Piracy?

Stop Online Piracy Automatic Protection System - Your Computer is Locked! is a scam message delivered by a ransomware computer infection created by Cyber criminals. This security threat locks PC users' desktops and displays a message stating that the lock was enforced to prevent illegal use of copyrighted material.

Such ransomware infections are common amongst Cyber criminals, however, this one is different for two reasons: 1) its use of the S.O.P.A. name (cyber criminals sometimes use the names of authorities such as the FBI, Metropolitan Police, etc.) and; 2) when infected by this ransomware, all files stored on your computer are encrypted.

What is White Smoke Toolbar?

White Smoke Toolbar is a browser add-on, which enables easy access to translation and grammar check applications for Internet users. This toolbar also utilizes shortcuts to social networks and other sites such as YouTube, online radio, etc. Whilst many Internet users may find this toolbar useful, it is powered by conduit, thus making it an unwanted application.

Having this browser add-on installed on your computer can lead to installation of unwanted third party software, toolbars, or malware.

When installed, this toolbar changes your Internet browser homepage and default search engine to search.conduit.com Furthermore, when uninstalled, it leaves the default values unchanged, so that after removal, this toolbar requires several further manual steps to eliminate redirects to search.conduit.com