Step-by-Step Malware Removal Instructions

ZeNyA Ransomware
Ransomware

ZeNyA Ransomware

ZeNyA is ransomware belonging to a ransomware family called Xorist. We discovered ZeNyA while checking the VirusTotal page for recently submitted malware samples. ZeNyA encrypts files and appends its extension (".ZeNyA" to filenames. Also, it shows an error window and creates the "HOW TO DECRYPT F

Scanuralerts.com Ads
Notification Spam

Scanuralerts.com Ads

After examining scanuralerts[.]com, we learned that it is a deceptive website running the "McAfee - Your PC is infected with 5 viruses!" scam. Also, it asks for permission to deliver notifications. Our team discovered scanuralerts[.]com while inspecting websites that use rogue advertising networks

AccessibleInput Adware (Mac)
Mac Virus

AccessibleInput Adware (Mac)

Our research team discovered the AccessibleInput application while investigating new submissions to VirusTotal. After analyzing this app, we determined that it operates as adware and is part of the AdLoad malware family. Adware stands for advertising-supported software. It is designed to

Avira - Your System Was Corrupted POP-UP Scam
Phishing/Scam

Avira - Your System Was Corrupted POP-UP Scam

While investigating suspicious websites, our researchers discovered the "Avira - Your System Was Corrupted" scam. It claims that the visitor's device is infected and urges them to perform a scan. It must be emphasized that this scam is in no way associated with either the Avira anti-virus or Avira

Dood Colors Adware
Adware

Dood Colors Adware

While inspecting suspect software-promoting websites, our research team found the Dood Colors browser extension. This piece of rogue software promises to allow users to change webpage background colors. After analyzing Dood Colors, we determined that it operates as advertising-supported software (

Travel Adware
Adware

Travel Adware

Travel is the name of adware - an untrustworthy advertising-supported application that shows annoying advertisements. We discovered it after examining an ISO file downloaded from a shady website. We also found that it runs as "Travel tech Copyright © all rights reserved" in the Task Manager.

BISAMWARE Ransomware
Ransomware

BISAMWARE Ransomware

BISAMWARE is ransomware that encrypts files, changes the desktop wallpaper, creates the "SYSTEM=RANSOMWARE=INFECTED.TXT" file (a ransom note) and modifies filenames. It appends the ".BISAMWARE" extension to filenames (e.g., it renames "1.jpg" to "1.jpg.BISAMWARE", "2.png" to "2.png.BISAMWARE").

Bruhnet Ransomware
Ransomware

Bruhnet Ransomware

We discovered the Bruhnet ransomware-type program while inspecting new submissions to VirusTotal. This program belongs to the Xorist ransomware family. After we executed a sample of Bruhnet on our test machine, it encrypted files and appended their names with a ".bruhnet" extension. For example,

Some-Light Adware
Adware

Some-Light Adware

Some-Light is the name of a browser extension that shows unwanted advertisements. Software of this type is called adware. Typically, users download and install adware unintentionally (without knowing that the application displays ads). Our team discovered Some-Light while examining deceptive web p

LockLock (MedusaLocker) Ransomware
Ransomware

LockLock (MedusaLocker) Ransomware

During a routine investigation of new submissions to VirusTotal, our researchers discovered the LockLock ransomware. It is yet another program from the MedusaLocker ransomware family. On our test machine, this malware encrypted files and appended their filenames with a ".locklock" extension. Henc