Adware.ConvertAd.1112 malicious file

The Adware.ConvertAd.1112 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Adware.ConvertAd.1112 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Dynamic (imported) function loading detected
Authenticode signature is invalid
Attempts to modify proxy settings

How to determine Adware.ConvertAd.1112?


File Info:
name: 0F6C205AFE82AC301A61.mlw
path: /opt/CAPEv2/storage/binaries/d5094e0197b0cf8fef0835a27fb07544ca55525428a3c491adbe22bf098d4772
crc32: E922B8D3
md5: 0f6c205afe82ac301a61c82b42807bab
sha1: e60e07e2d2a4dd4e85a5d73618fd721bcff7f7bc
sha256: d5094e0197b0cf8fef0835a27fb07544ca55525428a3c491adbe22bf098d4772
sha512: 0a3ec74d259cfd26beac60eb390abc9639ae0b48f458283f4287f6c1687ba7329b79120e82a9717e600ee264aff50badcb9efa012eab3443647e8c007be6e55f
ssdeep: 3072:QSW2EYB0VeSk0YRcbXgBRQlaQEsWxIahx5IEfIumRK5y:QSWCB0Vm0YRcsBYaQbWxNf5N5
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T11F046D7E33A0907BCA5B813167DCA7E650BDB6312A609D8B7384333C4E316ADC625B57
sha3_384: b768a4faf352837a587d5ffe7ff767f39bdb46540e84fd625e640a7a7d5029caf404b18fe79a2654c5553da6c59f6fb8
ep_bytes: e875520000e989feffff8bff558bec83
timestamp: 2015-10-11 17:32:51

Version Info:
0: [No Data]

Adware.ConvertAd.1112 also known as:

Bkav	W32.AIDetect.malware2
Lionic	Adware.Win32.ConvertAd.2!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Adware.ConvertAd.1112
FireEye	Generic.mg.0f6c205afe82ac30
CAT-QuickHeal	Pua.Convertad.27414
ALYac	Gen:Variant.Adware.ConvertAd.1112
Cylance	Unsafe
Zillya	Adware.ConvertAD.Win32.61417
Alibaba	AdWare:Win32/ConvertAd.1375d6ef
Cybereason	malicious.afe82a
BitDefenderTheta	Gen:NN.ZexaF.34084.kuW@aGEoZvji
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Adware.ConvertAd.AAQ
APEX	Malicious
Kaspersky	not-a-virus:AdWare.Win32.ConvertAd.zdd
BitDefender	Gen:Variant.Adware.ConvertAd.1112
NANO-Antivirus	Riskware.Win32.ConvertAd.dyeenv
SUPERAntiSpyware	PUP.ConvertAd/Variant
Avast	Win32:Adware-gen [Adw]
Tencent	Malware.Win32.Gencirc.114c6327
Ad-Aware	Gen:Variant.Adware.ConvertAd.1112
Sophos	Generic PUA OG (PUA)
Comodo	ApplicUnwnt@#3uca9et1ztu9f
DrWeb	Trojan.KillFiles.30478
VIPRE	ConvertAd
TrendMicro	TROJ_GEN.R002C0WL921
McAfee-GW-Edition	Artemis!Trojan
Emsisoft	Gen:Variant.Adware.ConvertAd.1112 (B)
SentinelOne	Static AI – Suspicious PE
Jiangmin	AdWare.ConvertAd.aez
eGambit	Unsafe.AI_Score_97%
Avira	HEUR/AGEN.1108004
MAX	malware (ai score=69)
Antiy-AVL	Trojan/Generic.ASMalwS.152C250
Gridinsoft	Ransom.Win32.Wacatac.sa
Microsoft	Trojan:Win32/Wacatac.A!ml
ViRobot	Adware.Convertad.177152.B
GData	Gen:Variant.Adware.ConvertAd.1112
Cynet	Malicious (score: 99)
AhnLab-V3	PUP/Win32.ConvertAd.R165265
McAfee	RDN/Generic PUP.x
VBA32	BScope.Adware.ConvertAd
TrendMicro-HouseCall	TROJ_GEN.R002C0WL921
Rising	Trojan.Generic@ML.100 (RDML:jBBenRzWykCvbnz6SsueuA)
Yandex	Trojan.GenAsa!9hE4Dv8qWLg
Ikarus	PUA.ConvertAd
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	Adware/ConvertAd
Webroot	W32.Adware.Gen
AVG	Win32:Adware-gen [Adw]
Panda	Generic Suspicious
CrowdStrike	win/malicious_confidence_100% (D)

How to remove Adware.ConvertAd.1112?

Adware.ConvertAd.1112 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X