About “Adware.Graftor.77397” infection

The Adware.Graftor.77397 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Adware.Graftor.77397 virus can do?

Unconventionial language used in binary resources: Korean
Network activity detected but not expressed in API logs

How to determine Adware.Graftor.77397?


File Info:
crc32: 57BFC960
md5: ad82f2c8856bd68bdc36c8a165dc2988
name: AD82F2C8856BD68BDC36C8A165DC2988.mlw
sha1: 3930c82d673f7c9433a28ff0b3b7086d5371dae6
sha256: b3c8fda33ce4fc6659d8d8361443de812cfd48f2149da4aca85975387a61174d
sha512: 6885098ecffd340e4cc6f179efccb54541808f9586b820cf79ef77c2a528ffb00e2ae083decca7ea74100999cc7dda19a018dae0329a932b5a369b9e8c61b984
ssdeep: 768:YMHie90rs3adgF2MSr9zhpDgQKnFWCODIeBd5pTP7kbsHmRLcfDtPJ0Fl5Z0T:YUWrs3aDzEXWCReP5ubPYFJEl5yT
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: Copyright x24d2 2005
InternalName: MsnPlus
FileVersion: 1, 0, 0, 44
CompanyName: 
PrivateBuild: 
LegalTrademarks: 
Comments: 
ProductName: MsnPlus
SpecialBuild: 
ProductVersion: 1, 0, 0, 1
FileDescription: MsnPlus
OriginalFilename: 
Translation: 0x0412 0x04b0

Adware.Graftor.77397 also known as:

Bkav	W32.AIDetect.malware2
DrWeb	Trojan.DownLoader.3407
Cynet	Malicious (score: 99)
ALYac	Adware.Random
Cylance	Unsafe
Zillya	Adware.Samoware.Win32.52
CrowdStrike	win/malicious_confidence_60% (W)
Alibaba	AdWare:Win32/Samoware.49b525ff
Cybereason	malicious.8856bd
Cyren	W32/Adware.ENCA-4624
Symantec	Downloader
ESET-NOD32	a variant of Win32/Adware.Samoware.AA
APEX	Malicious
Avast	Win32:Agent-ACEQ [Trj]
Kaspersky	not-a-virus:AdWare.Win32.Samoware.a
BitDefender	Gen:Variant.Adware.Graftor.77397
NANO-Antivirus	Riskware.Win32.Samoware.zzwl
ViRobot	Trojan.Win32.Downloader.77824
MicroWorld-eScan	Gen:Variant.Adware.Graftor.77397
Tencent	Win32.Init.Samoware.cnsk
Ad-Aware	Gen:Variant.Adware.Graftor.77397
Sophos	Generic PUA DJ (PUA)
Comodo	Suspicious@#2wevyr1am1h0l
BitDefenderTheta	Gen:NN.ZexaF.34170.eq0@aiki8wpG
VIPRE	Trojan-Downloader.Trojan
TrendMicro	TROJ_DLOADER.GWB
McAfee-GW-Edition	Downloader-ABV.a
FireEye	Generic.mg.ad82f2c8856bd68b
Emsisoft	Gen:Variant.Adware.Graftor.77397 (B)
SentinelOne	Static AI – Suspicious PE
Jiangmin	TrojanDownloader.Agent.bgl
Webroot	W32.Malware.Gen
Avira	ADSPY/Samoware.A.7
eGambit	Unsafe.AI_Score_96%
Antiy-AVL	Trojan/Generic.ASMalwS.8789E
Microsoft	Trojan:Win32/Wacatac.A!ml
Arcabit	Trojan.Adware.Graftor.D12E55
GData	Gen:Variant.Adware.Graftor.77397
AhnLab-V3	Trojan/Win32.Xema.C90288
McAfee	Downloader-ABV.a
MAX	malware (ai score=96)
VBA32	suspected of Trojan-Dropper.Agent.16
Malwarebytes	MachineLearning/Anomalous.100%
Panda	Generic Malware
TrendMicro-HouseCall	TROJ_DLOADER.GWB
Yandex	Trojan.GenAsa!k7XM8X/Ld8w
Ikarus	Trojan-Downloader.Win32.ConHook
Fortinet	Adware/Samoware
AVG	Win32:Agent-ACEQ [Trj]

How to remove Adware.Graftor.77397?

Adware.Graftor.77397 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X