|
Mar
03
|
Threat Description:
If you try to visit Razure.info website you will probably end up hitting some odd blank page. But there is much more to that domain. It’s a blacklisted one. With a specified URL tail, it appears to be a fake online scanner. Razure.info is trying to push people into buying General Antivirus rogue malware remover; consequently it’s classified as a browser hijacker. Razure.info is a site people get redirected to in case their systems get trespassed onto by a certain trojan virus. For you to understand what kind of a scan runs on Razure.info, we are providing a screenshot of this malicious phenomenon. Unlike many other known browser hijackers, Razure.info is more aggressive in terms of the pop-ups it displays. Those are all phony security warnings that attempt to alarm you regarding the purported fact that some hazardous parasites have been found inside your Operating System. Razure.info will then run a scan progress bar that sort of indicates the status of the alleged virus check. The scan report is predictably filled up with a number of detections made. These should be disregarded for the sole reason that Razure.info is not a real scan, hence no trusty results generated there. The unsafe domain being described here contains the downloader of General Antivirus which, like we have already mentioned, is a counterfeit security solution designed to rip of those who turn out most credulous. No matter how persuasively Razure.info may convince you to purchase General Antivirus – do not give in. there is one way out of this trap, it’s Razure.info hijacker removal (get some more details on this matter below).
Determine if your system is infected with Razure.info hijacker and related threats:
Download Razure.info Infection Free Scanner with Remover
Razure.info Screenshot:
How to remove this threat manually:
Razure.info manual uninstall procedure:
Get rid of the related corrupt files:
- %Documents and Settings%\All Users\Desktop\General Antivirus.lnk
- %Documents and Settings%\All Users\Start Menu\Programs\General Antivirus
- %Documents and Settings%\All Users\Start Menu\Programs\General Antivirus\General Antivirus Home Page.lnk
- %Documents and Settings%\All Users\Start Menu\Programs\General Antivirus\General Antivirus.lnk
- %Documents and Settings%\All Users\Start Menu\Programs\General Antivirus\Purchase License.lnk
- %UserProfile%\Application Data\General Antivirus
- %UserProfile%\Application Data\General Antivirus\settings.ini
- %UserProfile%\Application Data\General Antivirus\uill.ini
- %UserProfile%\Application Data\General Antivirus\unins000.exe
- %UserProfile%\Application Data\General Antivirus\Uninstall General Antivirus.lnk
- %UserProfile%\Application Data\General Antivirus\db
- %UserProfile%\Application Data\General Antivirus\db\config.cfg
- %UserProfile%\Application Data\General Antivirus\db\Timeout.inf
- %UserProfile%\Application Data\General Antivirus\db\Urls.inf
- %UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\General Antivirus.lnk
- %UserProfile%\Application Data\Microsoft\Windows\winlogon.exe
- %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iGSh.png
- %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iMSh.png
- %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iPSh.png
- %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iv.exe
- %UserProfile%\Local Settings\Application Data\Microsoft\Windows\log.txt
- %UserProfile%\Local Settings\Application Data\Microsoft\Windows\pguard.ini
- %UserProfile%\Local Settings\Application Data\Microsoft\Windows\services.exe
- %UserProfile%\2saSddPYaWAasRsE-thief.jpg
- %Program Files%\Common Files\file.exe
- %Program Files%\Common Files\GeneralAntivirus.exe
- %Program Files%\General Antivirus
- %Program Files%\General Antivirus\activate.ico
- %Program Files%\General Antivirus\Explorer.ico
- %Program Files%\General Antivirus\GenAvir.exe
- %Program Files%\General Antivirus\unins000.dat
- %Program Files%\General Antivirus\uninstall.ico
- %Program Files%\General Antivirus\working.log
- %Program Files%\General Antivirus\db
- %Program Files%\General Antivirus\db\DBInfo.ver
- %Program Files%\General Antivirus\db\ga090122.db
- %Program Files%\General Antivirus\Languages
- %WINDOWS%\system32\log.txt
Delete the associated registry entries:
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\General Antivirus_is1
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_ITGRDENGINE
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\ITGrdEngine
- HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ITGRDENGINE
- HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ITGrdEngine
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer “ParameterName”
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer “prob”
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer “prob1″
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer “prob2″
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer “probRedir”
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer “PrS”
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer “subscriber”
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer “uid”
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run “iv”
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “General Antivirus”
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “Microsoft Windows logon process”
Please note that Razure.info manual removal is a procedure of high complexity and should be performed with extreme caution. Lack of the required skills and even the slightest deviation from the instructions may cause irreparable system damage. To ensure trouble-free deletion, it is recommended to use the automatic removal tool below:
 |
Download Razure.info Removal Tool |  |