Malware

Application.ChinAd (A) removal tips

Malware Removal

The Application.ChinAd (A) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Application.ChinAd (A) virus can do?

  • Presents an Authenticode digital signature
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Application.ChinAd (A)?



File Info:

crc32: 21A5DCA9
md5: 264b27b9ac7ac6874e50d073638930b5
name: 2345sz.exe
sha1: 4e2b68ab76ea8afaa6ef03dde72ab1ad5fd1f265
sha256: b5476446d4f5ac386bdd94987323ed71f70de54016ba19ce31e6e46b43e267ce
sha512: 8f78943b1526f29c26f8f34571eb40b0fa9396d02876e76a7c6311340f0a7ee2826890a1cfb5f0aa0077d2726ef1458b16de33cdc55706df09a8ee95bdd9702d
ssdeep: 49152:kO0e40QOdfZ7B1OHZYlLjqyJkUs75Naw4O5:kO0Z0QIfH1SM/qkkVbd4O5
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright (C) 2018, 2345x6e38x620fx4e2dx5fc3
FileVersion: 3.0.0.0
CompanyName: 2345x6e38x620fx4e2dx5fc3
ProductName: x795ex5ea7
ProductVersion: 3.0.0.0
FileDescription: x795ex5ea7 install
Translation: 0x0804 0x03a8

Application.ChinAd (A) also known as:

McAfeeArtemis!264B27B9AC7A
K7GWAdware ( 004fef751 )
K7AntiVirusAdware ( 004fef751 )
SymantecPUA.Gen.2
ESET-NOD32a variant of Win32/Wews87.B potentially unwanted
AvastWin32:Adware-gen [Adw]
Kasperskynot-a-virus:AdWare.Win32.Wews87.dyz
Endgamemalicious (high confidence)
SophosGeneric PUA OO (PUA)
F-SecureAdware.ADWARE/Wews87.bffyt
ZillyaAdware.Wews87.Win32.356
Invinceaheuristic
McAfee-GW-EditionArtemis
EmsisoftApplication.ChinAd (A)
APEXMalicious
JiangminAdWare.Wews87.nl
AviraADWARE/Wews87.bffyr
Antiy-AVLGrayWare[AdWare]/Win32.Wews87
MicrosoftPUA:Win32/Bitrepeyp.A
AhnLab-V3Malware/Gen.Generic.C3555702
ZoneAlarmnot-a-virus:AdWare.Win32.Wews87.dyz
VBA32BScope.Adware.FileFinder
RisingPUA.Wews87!8.642 (CLOUD)
IkarusPUA.Wews87
FortinetAdware/Wews87
AVGWin32:Adware-gen [Adw]

How to remove Application.ChinAd (A)?

Application.ChinAd (A) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment