Adware

Adware.MegaSearch information

Malware Removal

The Adware.MegaSearch is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Adware.MegaSearch virus can do?

  • Sample contains Overlay data
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Adware.MegaSearch?



File Info:

name: 29088190790530293F40.mlw
path: /opt/CAPEv2/storage/binaries/5f7f00f17adc97375a73bb79a6d20c323a5d2f8d934c3a4b282b159c780045c8
crc32: A95F315F
md5: 29088190790530293f4049e5693e18ee
sha1: 2c0c805dbde54181cdb52903ccad0896d2499998
sha256: 5f7f00f17adc97375a73bb79a6d20c323a5d2f8d934c3a4b282b159c780045c8
sha512: c03794643e2f489dbf24c349340ad229d5e114dd94737a45564b5077acab7f0f69d73750d9b543886cbac4373e2eebf29bcdd7ab821d8d8853d6cbb87458e0ad
ssdeep: 24576:nnRIvfTmnQzwPRA/zmFyQ1YB7K/A4cGUikRSptzXiYfMN:lP23OYNK/A4cGUikRSptD8
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T14145AF02EBCB30FBD6491171502C77319AF95784873B4EEBE698EE29C0E94E1596B30D
sha3_384: fe5caf09b7dc3e63230fb765d8e5fd9dc0f05678fd2fd576253ffcdcc4fd6589814107d968eba46ed45cf4a5f61c5b06
ep_bytes: 535156e8000000005b81eb0810000083
timestamp: 2003-02-06 15:50:39


Version Info:

Comments: Beta Candidate
CompanyName: Wanadoo
FileDescription: Inquisition
FileVersion: 1, 0, 0, 1003
InternalName: InquisitionStatic
LegalCopyright: Copyright © Wanadoo 2002
LegalTrademarks: 
OriginalFilename: InquisitionStatic.exe
PrivateBuild: 
ProductName: Inquisition
ProductVersion: 1, 0, 0, 1003
SpecialBuild: 
Translation: 0x040c 0x04b0

Adware.MegaSearch also known as:

BkavW32.AIDetectMalware
FireEyeGeneric.mg.2908819079053029
McAfeeGenericRXEX-KU!290881907905
MalwarebytesAdware.MegaSearch
SangforSuspicious.Win32.Save.ins
BitDefenderThetaGen:NN.ZexaF.36738.lz1@aSbQhche
Elasticmalicious (high confidence)
APEXMalicious
CynetMalicious (score: 100)
McAfee-GW-EditionBehavesLike.Win32.Worm.th
Trapminemalicious.moderate.ml.score
TrendMicro-HouseCallTROJ_GEN.R002H06E723
RisingTrojan.Generic@AI.86 (RDML:EjC+4vcuG45UrsGsb8MUqg)
MaxSecureTrojan.Malware.300983.susgen
CrowdStrikewin/malicious_confidence_90% (D)

How to remove Adware.MegaSearch?

Adware.MegaSearch removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment