Application.Generic.3684796 removal

The Application.Generic.3684796 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Application.Generic.3684796 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Application.Generic.3684796?


File Info:
name: C5DDA06FAF45A54DA612.mlw
path: /opt/CAPEv2/storage/binaries/42b82d9d291b15555fc4d3d4f758526e009bb1d7b759837f17222ae1c6c01cdd
crc32: 1B0C1B58
md5: c5dda06faf45a54da612fdb6ae089a00
sha1: 5d8d6a79b5551e4b657dea430ba3e32dfb916257
sha256: 42b82d9d291b15555fc4d3d4f758526e009bb1d7b759837f17222ae1c6c01cdd
sha512: 60fc3aea7964a983b83b2a931e955b928a7d2f41bf1a96b047b5a406ec9ce9d89744d43f3e9e6507fc8f39cdf8101c1c3aa9936c0dd07e6bf22e967d2482e452
ssdeep: 768:7+kpCWBwNWzYn0fw94EWU4A6/pwmmPIyxb91r/WRn5tBTc2xmRYYYYYY0Yc+R4yU:puWzW0IaEW66q7Iqbfr/WR7BTt+PpW
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T1D4330943E6E34070C0A181B485ABAB3293BBF4560AF1371E16ACD6287FD155B3F6ED91
sha3_384: 1c2f4c30e034bc1744069abf4777f7ba40ea1e80040c917ab62fbca061ec8e20eb3392908c844f9b123e6effb53da163
ep_bytes: 4883ec28488d0d95540000e850040000
timestamp: 2016-10-19 08:35:50

Version Info:
0: [No Data]

Application.Generic.3684796 also known as:

MicroWorld-eScan	Application.Generic.3684796
FireEye	Application.Generic.3684796
Cylance	unsafe
K7AntiVirus	Unwanted-Program ( 0059809c1 )
K7GW	Unwanted-Program ( 0059809c1 )
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win64/HackKMS.U potentially unsafe
Kaspersky	HackTool.Win32.KMSAuto.gen
BitDefender	Application.Generic.3684796
Rising	PUF.HackKMS!8.185 (TFE:5:qr5QAW5z4XH)
Emsisoft	Application.Generic.3684796 (B)
VIPRE	Application.Generic.3684796
Sophos	Generic Reputation PUA (PUA)
Ikarus	PUA.HackKMS
MAX	malware (ai score=75)
Antiy-AVL	HackTool/Win32.KMSAuto
Arcabit	Application.Generic.D3839BC
ZoneAlarm	HackTool.Win32.KMSAuto.gen
GData	Application.Generic.3684796
ALYac	Application.Generic.3684796
Fortinet	Adware/HackKMS
DeepInstinct	MALICIOUS

How to remove Application.Generic.3684796?

Application.Generic.3684796 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X