How to remove “Adware.Razy.357461”?

The Adware.Razy.357461 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Adware.Razy.357461 virus can do?

CAPE extracted potentially suspicious content
Authenticode signature is invalid

How to determine Adware.Razy.357461?


File Info:
name: B6AAE0BEE723BC35A6F9.mlw
path: /opt/CAPEv2/storage/binaries/a824a733d95c36b445170d9d0d5faacc62afd479ff5cef0e24d23cdc3e0b5d40
crc32: 87FF6E05
md5: b6aae0bee723bc35a6f9f2dc5369a392
sha1: c774ba871894a474294d1896924f9538763a0bab
sha256: a824a733d95c36b445170d9d0d5faacc62afd479ff5cef0e24d23cdc3e0b5d40
sha512: 4911defa81c4767410d1c5e6051611da4c134535ef6611f2bf14573b0108186dbdea38214c7f607defbca6e3ffcb485018ec64d17ef052834d1698c2bae38ad5
ssdeep: 3072:uRILXFIoILIIIIIIIIkLDB804zvvvvvvvvvvvvvvvvvvvvk7z:azvvvvvvvvvvvvvvvvvvvvk
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D7442FB0A0D7A1B8C6DA367C131E6F6883635FACDE65A93047947D17773A08F1AE1831
sha3_384: 14c17108a63f82f063c52fa34c609521c9837f21c01b45e32e0e208a25051ea19d9a180bd9f57f038b60ff2d40fa04c1
ep_bytes: ff250020400000000000000000000000
timestamp: 2019-03-03 12:22:26

Version Info:
Translation: 0x0000 0x04b0
FileDescription: clientele
FileVersion: 2.1.9.62
InternalName: hajji.exe
LegalCopyright:  
OriginalFilename: hajji.exe
ProductName: clientele
ProductVersion: 2.1.9.62
Assembly Version: 2.1.9.62

Adware.Razy.357461 also known as:

Bkav	W32.AIDetectMalware.CS
Lionic	Riskware.Win32.Dotdo.1!c
MicroWorld-eScan	Gen:Variant.Adware.Razy.357461
Skyhigh	Adware-TskLnk
McAfee	Adware-TskLnk
Cylance	unsafe
Sangfor	Trojan.Win32.AGEN.1029956
Alibaba	AdWare:MSIL/Dotdo.d575dab6
Arcabit	Trojan.Adware.Razy.D57455
Symantec	PUA.Gen.2
Elastic	malicious (high confidence)
ESET-NOD32	a variant of MSIL/Adware.Dotdo.FB
Cynet	Malicious (score: 100)
APEX	Malicious
BitDefender	Gen:Variant.Adware.Razy.357461
NANO-Antivirus	Riskware.Win32.Dotdo.fnqpjp
Avast	Win32:Adware-gen [Adw]
Tencent	Win32.Trojan.Agen.Kflw
Emsisoft	Gen:Variant.Adware.Razy.357461 (B)
F-Secure	Heuristic.HEUR/AGEN.1312851
VIPRE	Gen:Variant.Adware.Razy.357461
Sophos	Dotdo (PUA)
Ikarus	AdWare.MSIL.Dotdo
Webroot	W32.Adware.Gen
Varist	W32/Dotdo.R.gen!Eldorado
Avira	HEUR/AGEN.1312851
Antiy-AVL	GrayWare[AdWare]/MSIL.Dotdo
Kingsoft	malware.kb.c.998
Xcitium	Application.MSIL.Razy.B@7xyy94
Microsoft	Program:Win32/Wacapew.C!ml
GData	Gen:Variant.Adware.Razy.357461
Google	Detected
Malwarebytes	Generic.Malware/Suspicious
Rising	Adware.MSIL/Dotdo!1.B5C1 (CLOUD)
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.73522479.susgen
Fortinet	Adware/Dotdo
AVG	Win32:Adware-gen [Adw]
DeepInstinct	MALICIOUS
CrowdStrike	win/grayware_confidence_100% (W)

How to remove Adware.Razy.357461?

Adware.Razy.357461 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X