Malware

Should I remove “AdWare.Win32.StartSurf.dlpq”?

Malware Removal

The AdWare.Win32.StartSurf.dlpq is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What AdWare.Win32.StartSurf.dlpq virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine AdWare.Win32.StartSurf.dlpq?



File Info:

name: 5F0517127F822180DBBA.mlw
path: /opt/CAPEv2/storage/binaries/295805fb0c2e6473bed4c84b3b052bb6033dddd7a5f4ca4b8344ee7cd927adb3
crc32: D80FE6E2
md5: 5f0517127f822180dbba7909e09df824
sha1: 375e4020cb1014fe5d446ee6dd9de3635f5f29e3
sha256: 295805fb0c2e6473bed4c84b3b052bb6033dddd7a5f4ca4b8344ee7cd927adb3
sha512: b8d4c34d50c93ea8dcde3d79308ce4c0d06a0062f13606581b69f649cdb0b24b4feb80a2f64a3ebc70080a2fdcbb21d9020b9adbf2b840af0f66dff42a03aad8
ssdeep: 24576:OwASMJ7ppNx5rH+ErFWh4dLAiSNo12SlAkVCf:+SMZ/ZPWhOsDo3AkVM
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1A225788D9142900BFFA12B768BD254784DF8F91AE44FC26213D03B5B5E73883ABE5563
sha3_384: 23872ead583aa92d10fb636a4de18aa5a19d4312cf96ad85ee4937cbd5173d3e1535cabf471dc03d2d273e842fb30ed5
ep_bytes: 558bec6aff6830914000683685400064
timestamp: 2015-12-04 05:07:05


Version Info:

0: [No Data]

AdWare.Win32.StartSurf.dlpq also known as:

BkavW32.AIDetectMalware
LionicAdware.Win32.StartSurf.2!c
Elasticmalicious (high confidence)
DrWebTrojan.Vittalia.17867
CynetMalicious (score: 100)
FireEyeGeneric.mg.5f0517127f822180
CAT-QuickHealSwbndlr.Dlhelper.V2
SkyhighBehavesLike.Win32.Qakbot.dc
McAfeePacked-FKC!5F0517127F82
Cylanceunsafe
ZillyaAdware.StartSurf.Win32.93928
SangforSuspicious.Win32.Save.ins
K7AntiVirusTrojan ( 0053e8a41 )
AlibabaAdWare:Win32/StartSurf.1b69a844
K7GWTrojan ( 0053e8a41 )
Cybereasonmalicious.0cb101
BitDefenderThetaGen:NN.ZexaF.36744.9yW@a8hwRDci
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Kryptik.GLRL
APEXMalicious
Kasperskynot-a-virus:AdWare.Win32.StartSurf.dlpq
BitDefenderGen:Heur.Mint.Zamg.1
NANO-AntivirusVirus.Win32.Gen-Crypt.ccnc
MicroWorld-eScanGen:Heur.Mint.Zamg.1
AvastWin32:Adware-gen [Adw]
TencentMalware.Win32.Gencirc.10bd582b
SophosIStartSurfInstaller (PUA)
F-SecureTrojan.TR/Crypt.XPACK.Gen
VIPREGen:Heur.Mint.Zamg.1
Trapminemalicious.high.ml.score
EmsisoftGen:Heur.Mint.Zamg.1 (B)
IkarusTrojan.Crypt
GDataGen:Heur.Mint.Zamg.1
JiangminAdWare.StartSurf.nzq
AviraTR/Crypt.XPACK.Gen
Antiy-AVLGrayWare/Win32.Puwaders
Kingsoftmalware.kb.a.1000
XcitiumApplication.Win32.Dlhelper.GL@81g4fd
ArcabitTrojan.Mint.Zamg.1
ZoneAlarmnot-a-virus:AdWare.Win32.StartSurf.dlpq
MicrosoftSoftwareBundler:Win32/Prepscram.E
GoogleDetected
AhnLab-V3Packed/Win.FKC.C5408073
MAXmalware (ai score=100)
VBA32BScope.Adware.StartSurf
MalwarebytesCrypt.Trojan.Malicious.DDS
PandaTrj/GdSda.A
RisingTrojan.Kryptik!1.B33C (CLASSIC)
YandexPUA.StartSurf!YQnf4FixSNk
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.73835191.susgen
FortinetW32/Kryptik.GJJV!tr
AVGWin32:Adware-gen [Adw]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_90% (W)

How to remove AdWare.Win32.StartSurf.dlpq?

AdWare.Win32.StartSurf.dlpq removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment