Adware

How to remove “Adware.DManager”?

Malware Removal

The Adware.DManager is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Adware.DManager virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Presents an Authenticode digital signature
  • Dynamic (imported) function loading detected
  • Unconventionial language used in binary resources: Greek
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Adware.DManager?



File Info:

name: 98A4FAACD60C07D1EBD2.mlw
path: /opt/CAPEv2/storage/binaries/3515c34c003bee07c013c84f0a7597d807c33d9951634a8c81eb7864f9b7ce99
crc32: 551F2639
md5: 98a4faacd60c07d1ebd22774386b7542
sha1: 39b65958a790e9728f5859b332d0077a662f6de9
sha256: 3515c34c003bee07c013c84f0a7597d807c33d9951634a8c81eb7864f9b7ce99
sha512: 5104c452ee89b4d9eeed316bd8988a0cc202d819be5514b4578eb18f0d505c8e64f7b17dc388952d184bf0ac746511f4309f44e6cc29b387eefb2cfa07776440
ssdeep: 24576:jGUwGpnnMQmWv8ISlFvJ3YlDbCC4Zw1cM5ean1Vfee8KNYOlKBU5qoxhMysmNac6:j/dSq1Cy1ci1NjSB17ncMA5t2+s
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T1D7855CA5F5B122E4C5B6E238C5576266F8B4B8048375E7DBA7CF4A160B107E0EE3E341
sha3_384: bba080cf90d8b9aaf9457e0e990bb9ec4cfa9efe72e2f0b142bfd72cb22637d86ac46289a48636d326e72e201e8099da
ep_bytes: 4883ec28e8df0500004883c428e976fe
timestamp: 2019-01-02 13:16:47


Version Info:

CompanyName: YellowLab.
FileDescription: YellowLab
FileVersion: 1.0.0.1
InternalName: yellowlab.exe
LegalCopyright: YellowLab. 2019
OriginalFilename: yellowlab.exe
ProductName: YellowLab
ProductVersion: 1.0.0.1
Translation: 0x0408 0x04b0

Adware.DManager also known as:

LionicAdware.Win32.DManager.2!c
Elasticmalicious (high confidence)
DrWebAdware.Searcher.3273
MicroWorld-eScanGen:Variant.Application.BitCoinMiner.IdleBuddy.2
FireEyeGeneric.mg.98a4faacd60c07d1
ALYacGen:Variant.Application.BitCoinMiner.IdleBuddy.2
ZillyaAdware.OpenSUpdater.Win64.865
SangforTrojan.Win32.Save.a
AlibabaAdWare:Win64/OpenSUpdater.5228f209
Cybereasonmalicious.cd60c0
ArcabitTrojan.Application.BitCoinMiner.IdleBuddy.2
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of Win64/Adware.OpenSUpdater.A
TrendMicro-HouseCallTROJ_GEN.R002H0CKR21
CynetMalicious (score: 100)
Kasperskynot-a-virus:HEUR:AdWare.Win32.DManager.gen
BitDefenderGen:Variant.Application.BitCoinMiner.IdleBuddy.2
NANO-AntivirusRiskware.Win64.Searcher.fpfcip
SUPERAntiSpywarePUP.BitCoinMinerIdleBuddy/Variant
AvastWin64:AdwareX-gen [Adw]
TencentWin64.Adware.Opensupdater.Hviy
Ad-AwareGen:Variant.Application.BitCoinMiner.IdleBuddy.2
EmsisoftGen:Variant.Application.BitCoinMiner.IdleBuddy.2 (B)
McAfee-GW-EditionArtemis
SophosGeneric PUA DJ (PUA)
IkarusAdWare.Opensupdater
JiangminAdWare.DManager.c
AviraHEUR/AGEN.1108436
GridinsoftRansom.Win64.Gen.sa
MicrosoftPUADlManager:Win32/OpenDownloadManager
ViRobotAdware.Opensupdater.1787496.A
GDataGen:Variant.Application.BitCoinMiner.IdleBuddy.2
Acronissuspicious
McAfeeArtemis!98A4FAACD60C
MAXmalware (ai score=73)
VBA32Adware.DManager
MalwarebytesAdware.OpenSoftwareUpdater
APEXMalicious
YandexTrojan.GenAsa!9SKzNaDOhC0
SentinelOneStatic AI – Malicious PE
FortinetAdware/OpenSUpdater
WebrootW32.Adware.Gen
AVGWin64:AdwareX-gen [Adw]
CrowdStrikewin/malicious_confidence_100% (D)

How to remove Adware.DManager?

Adware.DManager removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment