W32.Winexpand
Info:
This adware randomly opens advertisement pages and hijacks start page of Internet Explorer.
Removal:
This Adware drops files into WinExpand_(internal version number, or im0s) folder located at Program Files and Temp folder.
To remove this adware, stop processes starting with winexpand with Process Hacker or similar tools, then delete the folder and files.
W32.Windowstab
Info:
This adware opens shopping mall pages and download sites when Internet Explorer starts.
Removal:
This is similar to WinExpand; Use MBAM or FixMeStick to clean it after deleting folders and files located at Program Files and Temp folder.
W32.SKeyPang
Info:
This adware pops up advertisements on pages opened on Internet Explorer.
Removal:
Delete folders including "keypang" in the name in Program Files and Temp folder, as well as AppData/Roaming folder.
W32.Searchlike
Info:
This adware opens popup windows showing advertisements on the bottom right hand corner.
Removal:
Remove folders located at Program Files; Use ATTRIB command to remove SYSTEM file tag.
W32.Wiseman
Info:
This adware is known for aggressive advertisements. This adware injects advertisements into pages you surf online, and removes few ad blockers.
Removal:
Stop processes named "wiseman.exe", then delete folder named "SSI" in Program Files and delete installer located at Temp folder.
W32.WindowsOptimize
Info:
This adware masqurades as "system optimizer". This program doubles as fake antivirus.
Removal:
Delete folders named "WindowsOptimize" in Program Files.
W32.Criteo
Info:
Yes, it's THAT Criteo. (Criteo Advertisement Platform)
Removal:
Stop processes named "criteo.exe" and delete folders named "Criteo" from Program Files, then delete installers from Temp folder.
