Step-by-Step Malware Removal Instructions

ModuleUpgrade Adware (Mac)
Mac Virus

ModuleUpgrade Adware (Mac)

ModuleUpgrade is a rogue app that our researchers found during a routine inspection of new submissions to VirusTotal. Our analysis of ModuleUpgrade revealed that it operates as advertising-supported software (adware) and belongs to the AdLoad malware family. Adware is designed to run int

Onelock Ransomware
Ransomware

Onelock Ransomware

Onelock is one of the ransomware variants from the MedusaLocker ransomware family. It encrypts files, appends the ".onelock" extension to filenames, and creates an HTML file named "how_to_back_files.html" that contains a ransom note. An example of how Onelock renames files: it changes "1.jpg" to "

Moonshine Malware (Android)
Trojan

Moonshine Malware (Android)

Moonshine is a spyware-type malicious program targeting Android devices. It is capable of obtaining a variety of vulnerable data from infected systems. There are several versions of this malware; the later ones include improved surveillance functionalities. Moonshine has been actively proliferate

Fastnetworkprotocol.com Ads
Notification Spam

Fastnetworkprotocol.com Ads

Our team investigated fastnetworkprotocol[.]com and learned that it runs the "McAfee - Your PC is infected with 5 viruses!" scam. Its creators use fraudulent marketing to promote legitimate antivirus software. Additionally, fastnetworkprotocol[.]com wants to show notifications. Fastnetwork

BadBazaar Malware (Android)
Trojan

BadBazaar Malware (Android)

BadBazaar is the name of a spyware targeting Android OSes (Operating Systems). Spyware is a type of malware that can stealthily extract and record data on infected devices. Evidence found by researchers at Bleeping Computer suggests that BadBazaar is linked to attacks against ethnic and religious

Mail Error Scam
Phishing/Scam

Mail Error Scam

We have analyzed this letter and determined that it is written by fraudsters hoping to obtain personal information from recipients. This email contains a link to a phishing website. It is disguised as a letter from an email service provider. It should be marked as spam and deleted. The sub

Muldrop Trojan
Trojan

Muldrop Trojan

Muldrop trojan - refers to a type of malware that drops multiple malicious programs onto infected devices. These droppers tend to cause extensive chain infections, which could potentially overload the system to the point of failure. Trojans of this kind can infect devices with just about any type

TMS5 Ransomware
Ransomware

TMS5 Ransomware

TMS5 is ransomware that encrypts files and modifies their filenames and creates the "!TMS5_INFO!.rtf" file that contains a ransom note. TMS5 is part of the Matrix ransomware family. Our team discovered this ransomware variant while inspecting malware samples submitted to the VirusTotal page. TMS5

GeneralOperation Adware (Mac)
Mac Virus

GeneralOperation Adware (Mac)

GeneralOperation is the name of an application we discovered while inspecting a fake installed downloaded from a deceptive web page. We learned that the purpose of GeneralOperation is to display intrusive advertisements. Thus, we classified GeneralOperation as adware. In most cases, users instal

Search-Mgr Browser Hijacker
Browser Hijacker

Search-Mgr Browser Hijacker

While examining the Search-Mgr browser extension, we found that it functions as a browser hijacker: it changes certain browser's settings to searchmgr.online. It forces users to browse the Internet using a shady search engine. It is worth mentioning that browser hijackers usually are promoted and