Under-Cover.info virus (Removal Instructions) - updated Apr 2019

by Gabriel E. Hall - - | Type: Browser hijacker

Under-Cover.info virus Removal Guide

What is Under-Cover.info virus?

Under-Cover.info is a browser hijacker that modifies web browser settings in order to show users fake search results

Under-Cover.infoUnder-Cover.info is a potentially unwanted program that is usually injected after the installation of free software

Under-Cover.info is a browser-hijacking application developed by Kinner Lake Limited – a Gibraltar-based company. The unwanted programs usually enter machines without users noticing, as software bundles typically try to hide optional installs under Advanced settings, and most people simply skip this step by choosing the Recommended mode. Once inside the machine, Under-Cover.info virus starts performing a variety of changes, including the ones that modify users' homepage and a new tab, along with the search engine. From that point, users are forced to browse via the hijacked engine,[1] which typically shows them fake search results that include a colossal amount of sponsored links, deal with redirects to questionable websites, and suffer from the slow operation of the browser.

SUMMARY
Name Under-Cover.info
Type Browser hijacker, Potentially unwanted program
Related apps Under Cover Search, Flowsurf
Developer Kinner Lake Limited
Distribution Software bundling, third-party websites
Symptoms Homepage set to hxxp://under-cover.info/?home=1&a=notset&u=notset&t=8, excessive amount of sponsored links in search results, pop-up ads on various sites, redirects to affiliated or dangerous websites
Risk factors Money loss, malware infection, data leak
Removal Delete the browser hijacker with security software or use our guide for manual termination
Optimization To recover from the infection, scan your device with RestoroIntego

While browser hijackers are not considered to be severe computer infections, their presence might compromise computer security and users' online safety. In this article, we will explain peculiarities of this type of threat, and will also describe how to remove Under-Cover.info from Google Chrome, Mozilla Firefox, Safari, Opera, or another browser.

The primary goal of Under Cover Search developers is to generate traffic to sponsored websites, which would consequently increase the profits for both parties. For that, PUP authors need to make sure that Under-Cover.info hijacker reaches as many users as possible – hence the shady distribution technique.

Once the changes to the installed browsers are made, Under-Cover.info starts its shady activities by displaying sponsored content, placing a layer of ads on most sites, exposing to altered search results, and also tracking users' web browsing activities. This is done with the help of tracking technologies, such as Beacons[2] or Cookies. This information-gathering allows Under-Cover.info developers to gather the following information:[3]

  • technical information transmitted by your device such as type of operating system, device type, default browser;
  • your aggregated use of the Software, basically we know if you installed the software;
  • usage statistics;
  • language and the time stamp;
  • approximate geographical location.

This data is collected in order to generate personalized ads, but these are always coming from the affiliates. Therefore, Under-Cover.info hijack can manipulate what sites users visit, influence their interests and make them buy products or services that they otherwise would not.

Therefore, while the browser hijacking changes might seem relatively minor, it might result in the installation of potentially dangerous apps, exposure to online scams, and even malware infection. Thus, if you noticed that your homepage has changed, check your system with security software or perform manual Under-Cover.info removal as explained below. After you kill the PUP, make sure you use RestoroIntego or similar repair software to bring your device to a pristine condition.

Under-Cover.info hijackerUnder-Cover.info is a browser hijacker that modifies web browser settings without permission in order to perform the revenue-generating activities

Make use of Advanced installation settings to avoid PUPs

If you do not want to let potentially unwanted programs hijack your computer, you should pay more attention to the software installation process. Contrary to many people’s beliefs, Default or Recommended installation settings are not the ones that should be trusted during the procedure.

In fact, Custom or Advanced settings will allow you to determine which applications are secretly offered to you. Therefore, opt for these settings because they enable you to reject unwanted items added to the desired software. Be aware that most of the free apps will include some sort of “offer” or “deal,” and it might be hidden in various ways, including grayed out buttons, pre-ticked boxes, misleading placement of the toggle, etc.

There are two ways to terminate Under-Cover.info from your computer

As we already mentioned, the presence of a browser hijacker will not bring you any benefit but instead will manipulate the search results and expose you to potentially dangerous content. For that reason, it is best to take care of Under-Cover.info removal before you compromise your computer safety.

You can remove Under-Cover.info virus manually or automatically. The latter option is best for those who are less tech-savvy, however. It will allow you to terminate the unwanted application in just a few minutes. Simply download and install a security program that focuses on potentially unwanted program removal and then perform a full system scan. Alternatively, you can also use our instructions below to delete the PUP manually.

You may remove virus damage with a help of RestoroIntego. SpyHunter 5Combo Cleaner and Malwarebytes are recommended to detect potentially unwanted programs and viruses with all their files and registry entries that are related to them.

Offer
do it now!
Download
Restoro Happiness
Guarantee Download
Intego Happiness
Guarantee
Compatible with Microsoft Windows Compatible with macOS
What to do if failed?
If you failed to fix virus damage using Restoro Intego, submit a question to our support team and provide as much details as possible.
Restoro Intego has a free limited scanner. Restoro Intego offers more through scan when you purchase its full version. When free scanner detects issues, you can fix them using free manual repairs or you can decide to purchase the full version in order to fix them automatically.
Restoro review | Terms of Use | Privacy policy | Refund Policy | Uninstall guide
Alternative Software
Different software has a different purpose. If you didn’t succeed in fixing corrupted files with Restoro, try running SpyHunter 5.
Download SpyHunter 5 Review »
Privacy policy | Terms of Use | Product Refund Policy | Uninstall Instructions
Malwarebytes
Download | Review | Privacy policy | Terms of Use | Product Refund Policy | Uninstall Instructions
Alternative Software
Different software has a different purpose. If you didn’t succeed in fixing corrupted files with Intego, try running Combo Cleaner.
Download Combo Cleaner Review »
Privacy policy | Terms of Use | Product Refund Policy | Uninstall Instructions

Getting rid of Under-Cover.info virus. Follow these steps

Uninstall from Windows

There are several programs that might be related to appearance of Under-Cover.info site and browser redirect problem. Therefore, you should look for Under Cover, Flowsurf, and other programs published by Kinner Lake Limited. Remove all of them, and then thoroughly check every web browser for suspicious components and revert modified settings. The tutorial we provide should help you to complete this task.

Instructions for Windows 10/8  machines:

  1. Enter Control Panel into Windows search box and hit Enter or click on the search result.
  2. Under Programs, select Uninstall a program. Uninstall from Windows 1
  3. From the list, find the entry of the suspicious program.
  4. Right-click on the application and select Uninstall.
  5. If User Account Control shows up, click Yes.
  6. Wait till uninstallation process is complete and click OK. Uninstall from Windows 2

If you are Windows 7/XP user, proceed with the following instructions:

  1. Click on Windows Start > Control Panel located on the right pane (if you are Windows XP user, click on Add/Remove Programs).
  2. In Control Panel, select Programs > Uninstall a program. Uninstall from Windows 7/XP
  3. Pick the unwanted application by clicking on it once.
  4. At the top, click Uninstall/Change.
  5. In the confirmation prompt, pick Yes.
  6. Click OK once the removal process is finished.

Delete from macOS

Remove items from Applications folder:

  1. From the menu bar, select Go > Applications.
  2. In the Applications folder, look for all related entries.
  3. Click on the app and drag it to Trash (or right-click and pick Move to Trash) Uninstall from Mac 1

To fully remove an unwanted app, you need to access Application Support, LaunchAgents, and LaunchDaemons folders and delete relevant files:

  1. Select Go > Go to Folder.
  2. Enter /Library/Application Support and click Go or press Enter.
  3. In the Application Support folder, look for any dubious entries and then delete them.
  4. Now enter /Library/LaunchAgents and /Library/LaunchDaemons folders the same way and terminate all the related .plist files. Uninstall from Mac 2

Remove from Microsoft Edge

Delete unwanted extensions from MS Edge:

  1. Select Menu (three horizontal dots at the top-right of the browser window) and pick Extensions.
  2. From the list, pick the extension and click on the Gear icon.
  3. Click on Uninstall at the bottom. Remove extensions from Edge

Clear cookies and other browser data:

  1. Click on the Menu (three horizontal dots at the top-right of the browser window) and select Privacy & security.
  2. Under Clear browsing data, pick Choose what to clear.
  3. Select everything (apart from passwords, although you might want to include Media licenses as well, if applicable) and click on Clear. Clear Edge browsing data

Restore new tab and homepage settings:

  1. Click the menu icon and choose Settings.
  2. Then find On startup section.
  3. Click Disable if you found any suspicious domain.

Reset MS Edge if the above steps did not work:

  1. Press on Ctrl + Shift + Esc to open Task Manager.
  2. Click on More details arrow at the bottom of the window.
  3. Select Details tab.
  4. Now scroll down and locate every entry with Microsoft Edge name in it. Right-click on each of them and select End Task to stop MS Edge from running. Reset MS Edge

If this solution failed to help you, you need to use an advanced Edge reset method. Note that you need to backup your data before proceeding.

  1. Find the following folder on your computer: C:\\Users\\%username%\\AppData\\Local\\Packages\\Microsoft.MicrosoftEdge_8wekyb3d8bbwe.
  2. Press Ctrl + A on your keyboard to select all folders.
  3. Right-click on them and pick Delete Advanced MS Edge reset 1
  4. Now right-click on the Start button and pick Windows PowerShell (Admin).
  5. When the new window opens, copy and paste the following command, and then press Enter:

    Get-AppXPackage -AllUsers -Name Microsoft.MicrosoftEdge | Foreach {Add-AppxPackage -DisableDevelopmentMode -Register “$($_.InstallLocation)\\AppXManifest.xml” -Verbose Advanced MS Edge reset 2

Instructions for Chromium-based Edge

Delete extensions from MS Edge (Chromium):

  1. Open Edge and click select Settings > Extensions.
  2. Delete unwanted extensions by clicking Remove. Remove extensions from Chromium Edge

Clear cache and site data:

  1. Click on Menu and go to Settings.
  2. Select Privacy, search and services.
  3. Under Clear browsing data, pick Choose what to clear.
  4. Under Time range, pick All time.
  5. Select Clear now. Clear browser data from Chroum Edge

Reset Chromium-based MS Edge:

  1. Click on Menu and select Settings.
  2. On the left side, pick Reset settings.
  3. Select Restore settings to their default values.
  4. Confirm with Reset. Reset Chromium Edge

Remove from Mozilla Firefox (FF)

Do not forger to reset Mozilla Firefox to make sure that all the setting changes performed by the hijacker are reverted:

Remove dangerous extensions:

  1. Open Mozilla Firefox browser and click on the Menu (three horizontal lines at the top-right of the window).
  2. Select Add-ons.
  3. In here, select unwanted plugin and click Remove. Remove extensions from Firefox

Reset the homepage:

  1. Click three horizontal lines at the top right corner to open the menu.
  2. Choose Options.
  3. Under Home options, enter your preferred site that will open every time you newly open the Mozilla Firefox.

Clear cookies and site data:

  1. Click Menu and pick Settings.
  2. Go to Privacy & Security section.
  3. Scroll down to locate Cookies and Site Data.
  4. Click on Clear Data…
  5. Select Cookies and Site Data, as well as Cached Web Content and press Clear. Clear cookies and site data from Firefox

Reset Mozilla Firefox

If clearing the browser as explained above did not help, reset Mozilla Firefox:

  1. Open Mozilla Firefox browser and click the Menu.
  2. Go to Help and then choose Troubleshooting Information. Reset Firefox 1
  3. Under Give Firefox a tune up section, click on Refresh Firefox…
  4. Once the pop-up shows up, confirm the action by pressing on Refresh Firefox. Reset Firefox 2

Remove from Google Chrome

Delete malicious extensions from Google Chrome:

  1. Open Google Chrome, click on the Menu (three vertical dots at the top-right corner) and select More tools > Extensions.
  2. In the newly opened window, you will see all the installed extensions. Uninstall all the suspicious plugins that might be related to the unwanted program by clicking Remove. Remove extensions from Chrome

Clear cache and web data from Chrome:

  1. Click on Menu and pick Settings.
  2. Under Privacy and security, select Clear browsing data.
  3. Select Browsing history, Cookies and other site data, as well as Cached images and files.
  4. Click Clear data. Clear cache and web data from Chrome

Change your homepage:

  1. Click menu and choose Settings.
  2. Look for a suspicious site in the On startup section.
  3. Click on Open a specific or set of pages and click on three dots to find the Remove option.

Reset Google Chrome:

If the previous methods did not help you, reset Google Chrome to eliminate all the unwanted components:

  1. Click on Menu and select Settings.
  2. In the Settings, scroll down and click Advanced.
  3. Scroll down and locate Reset and clean up section.
  4. Now click Restore settings to their original defaults.
  5. Confirm with Reset settings. Reset Chrome 2

Delete from Safari

Remove unwanted extensions from Safari:

  1. Click Safari > Preferences…
  2. In the new window, pick Extensions.
  3. Select the unwanted extension and select Uninstall. Remove extensions from Safari

Clear cookies and other website data from Safari:

  1. Click Safari > Clear History…
  2. From the drop-down menu under Clear, pick all history.
  3. Confirm with Clear History. Clear cookies and website data from Safari

Reset Safari if the above-mentioned steps did not help you:

  1. Click Safari > Preferences…
  2. Go to Advanced tab.
  3. Tick the Show Develop menu in menu bar.
  4. From the menu bar, click Develop, and then select Empty Caches. Reset Safari

After uninstalling this potentially unwanted program (PUP) and fixing each of your web browsers, we recommend you to scan your PC system with a reputable anti-spyware. This will help you to get rid of Under-Cover.info registry traces and will also identify related parasites or possible malware infections on your computer. For that you can use our top-rated malware remover: RestoroIntego, SpyHunter 5Combo Cleaner or Malwarebytes.

How to prevent from getting browser hijacker

Choose a proper web browser and improve your safety with a VPN tool

Online spying has got momentum in recent years and people are getting more and more interested in how to protect their privacy online. One of the basic means to add a layer of security – choose the most private and secure web browser. Although web browsers can't grant full privacy protection and security, some of them are much better at sandboxing, HTTPS upgrading, active content blocking, tracking blocking, phishing protection, and similar privacy-oriented features. However, if you want true anonymity, we suggest you employ a powerful Private Internet Access VPN – it can encrypt all the traffic that comes and goes out of your computer, preventing tracking completely.

 

Lost your files? Use data recovery software

While some files located on any computer are replaceable or useless, others can be extremely valuable. Family photos, work documents, school projects – these are types of files that we don't want to lose. Unfortunately, there are many ways how unexpected data loss can occur: power cuts, Blue Screen of Death errors, hardware failures, crypto-malware attack, or even accidental deletion.

To ensure that all the files remain intact, you should prepare regular data backups. You can choose cloud-based or physical copies you could restore from later in case of a disaster. If your backups were lost as well or you never bothered to prepare any, Data Recovery Pro can be your only hope to retrieve your invaluable files.

About the author
Gabriel E. Hall
Gabriel E. Hall - Passionate web researcher

If this free guide helped you and you are satisfied with our service, please consider making a donation to keep this service alive. Even a smallest amount will be appreciated.

Contact Gabriel E. Hall
About the company Esolutions

References
Removal guides in other languages