Adware

Adware.Strictor.247395 removal

Malware Removal

The Adware.Strictor.247395 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Adware.Strictor.247395 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Presents an Authenticode digital signature
  • Possible date expiration check, exits too soon after checking local time
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Authenticode signature is invalid
  • Created a process from a suspicious location

How to determine Adware.Strictor.247395?



File Info:

name: 4DA41972988C010ED977.mlw
path: /opt/CAPEv2/storage/binaries/1fe225e128c3f96f75dc4f6490bd1c045d20bb4dadc4dab9abea7386551aebcd
crc32: A882F239
md5: 4da41972988c010ed977a2bdba323967
sha1: 5a2d6873a893ca7f47bd88310a6068c324c22b28
sha256: 1fe225e128c3f96f75dc4f6490bd1c045d20bb4dadc4dab9abea7386551aebcd
sha512: fb9486de26d5d3f039ffbbd6961c7a168e29f9416bc4cea50f2f1b07f030d1d98b139fa42f733241e883b10be42dadc7073677cd1764bfa19ee8ea6c4e3b3927
ssdeep: 49152:8OkWVq4y/5SdPqkHXVmSWEfi2YssLg4DDf7jr60:8Okqdy/UwklmyHYsIg4DDTjj
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1A9752353B7B2C97CD6E11833AA4127796EB5E955078A05CB6308050BCBBE2CB7E3D2D1
sha3_384: 1889fda50059ca2907dfbc838725f53f210c3ec1080c15462f65837786c319fb283d127e90b77519f859dab27e8161d5
ep_bytes: 558bec6aff685892410068005b410064
timestamp: 2012-12-31 00:38:32


Version Info:

CompanyName: Care SOFTWARE
FileDescription: Care SOFTWARE 
FileVersion: 1.22.0.2712
InternalName: CareSOFTWARE.exe
LegalCopyright: Care SOFTWARE (c).  All rights reserved
OriginalFilename: CareSOFTWARE.exe
ProductName: Care SOFTWARE 
ProductVersion: 1.22.0.2712
Translation: 0x0409 0x04b0

Adware.Strictor.247395 also known as:

LionicAdware.Win32.Agent.2!c
MicroWorld-eScanGen:Variant.Adware.Strictor.247395
FireEyeGen:Variant.Adware.Strictor.247395
ALYacGen:Variant.Adware.Strictor.247395
K7AntiVirusAdware ( 00589e261 )
AlibabaAdWare:Win32/OpenSUpdater.3e29f4b2
K7GWAdware ( 00589e261 )
ESET-NOD32a variant of Win32/Adware.OpenSUpdater.IN
TrendMicro-HouseCallTROJ_GEN.R002H0CKM21
Kasperskynot-a-virus:HEUR:AdWare.Win32.Agent.gen
BitDefenderGen:Variant.Adware.Strictor.247395
AvastWin32:Adware-gen [Adw]
Ad-AwareGen:Variant.Adware.Strictor.247395
DrWebAdware.Downware.20010
McAfee-GW-EditionArtemis
EmsisoftApplication.Updater (A)
GDataWin32.Application.Agent.54S9WA
McAfeeArtemis!4DA41972988C
MAXmalware (ai score=60)
VBA32Adware.Agent
MalwarebytesAdware.SpecialSearchOffer
TencentTrojan.Win32.BitCoinMiner.la
FortinetRiskware/OpenSUpdater
AVGWin32:Adware-gen [Adw]
PandaTrj/Genetic.gen

How to remove Adware.Strictor.247395?

Adware.Strictor.247395 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment