Adware.Zusy.190027 removal guide

The Adware.Zusy.190027 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Adware.Zusy.190027 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Dynamic (imported) function loading detected
Authenticode signature is invalid

How to determine Adware.Zusy.190027?


File Info:
name: 5538DDD4E30E42D9B40F.mlw
path: /opt/CAPEv2/storage/binaries/27166fb0a738cff191584012775e66f1d81feafbb0452690ebd4d031e6edd960
crc32: D7AEE2F2
md5: 5538ddd4e30e42d9b40ffd232a374558
sha1: 3f92ab24588ba61f2a6b6e60fe82c90bd083fa42
sha256: 27166fb0a738cff191584012775e66f1d81feafbb0452690ebd4d031e6edd960
sha512: 17b9a5a10573cbf2e69a09054694e9ca627caa26ab50873d690929954e58ce0eb3a899b2646c3fe88e503e6d3496bfca3f2d97f6224a8dbb9a9b01afc458a302
ssdeep: 1536:/IdFJiunT++kRFyaFYcsFF1UiEstaZV8lLFgcBCJbdEDsWC1cd2lXFVaVDhRlX:/iiFRFyZcOrZXtaZV4LF9qygE2lXFVer
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1E6835B13B9D1C472E4B609319871DAB16A6EFD104F65CE6B3789332D4F380D0993AE6B
sha3_384: 212d199afbfdd76ae6539ff1f6d62aa32f60ccdee3cea3ea24337ade69308b42cea4b05eddbd6c086b1174216a89f9f8
ep_bytes: e829050000e97afeffff558bec56ff75
timestamp: 2020-09-11 03:14:26

Version Info:
FileVersion: 5.0.0.0
ProductVersion: 5.0.0.0
Translation: 0x0409 0x04b0

Adware.Zusy.190027 also known as:

Lionic	Trojan.Win32.Zusy.4!c
MicroWorld-eScan	Gen:Variant.Adware.Zusy.190027
FireEye	Generic.mg.5538ddd4e30e42d9
ALYac	Gen:Variant.Adware.Zusy.190027
Cylance	Unsafe
Sangfor	PUP.Win32.Vigua.A
Cybereason	malicious.4e30e4
Cyren	W32/Trojan.CTQJ-6898
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (moderate confidence)
APEX	Malicious
BitDefender	Gen:Variant.Adware.Zusy.190027
Ad-Aware	Gen:Variant.Adware.Zusy.190027
McAfee-GW-Edition	BehavesLike.Win32.PWSZbot.mh
Emsisoft	Gen:Variant.Adware.Zusy.190027 (B)
MAX	malware (ai score=69)
Microsoft	PUA:Win32/Vigua.A
Arcabit	Trojan.Adware.Zusy.D2E64B
ViRobot	Trojan.Win32.Z.Bulz.85504
GData	Gen:Variant.Adware.Zusy.190027
AhnLab-V3	Malware/Win32.RL_Generic.R352472
McAfee	GenericRXAA-AA!5538DDD4E30E
TrendMicro-HouseCall	TROJ_GEN.R011H09HB21
Rising	Trojan.Zpevdo!8.F912 (CLOUD)
Yandex	Trojan.GenAsa!zxftXlTDlew
MaxSecure	Trojan.Malware.106607825.susgen
BitDefenderTheta	Gen:NN.ZexaF.34606.fu0@aSFdigci
Panda	Trj/GdSda.A
CrowdStrike	win/grayware_confidence_60% (W)

How to remove Adware.Zusy.190027?

Adware.Zusy.190027 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X