AutoIt:Dropper-F [Drp] removal tips

The AutoIt:Dropper-F [Drp] is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What AutoIt:Dropper-F [Drp] virus can do?

Expresses interest in specific running processes
Repeatedly searches for a not-found process, may want to run with startbrowser=1 option
Reads data out of its own binary image
Creates or sets a registry key to a long series of bytes, possibly to store a binary or malware config
Installs itself for autorun at Windows startup
Creates a hidden or system file
Creates a copy of itself

Related domains:

z.whorecord.xyz

a.tomx.xyz

ebukaalilonu.zapto.org

How to determine AutoIt:Dropper-F [Drp]?


File Info:
crc32: 904ADD12
md5: 2c9e48d7852e1a8471ad7e8075a3a237
name: 2C9E48D7852E1A8471AD7E8075A3A237.mlw
sha1: cee12ba611fb9ac24483668950cd01b78763257c
sha256: daf7c3756f7a7e2f94f3c0981d34e14dec4f4fa62393d375c71d8de034041abf
sha512: 2c3195419fda5575a323828134950a8582c100f8438f8f6021a8ccf342358879cf49aa5004bbdfe30c12db1c99c56188f8f5f29e6793012e3e957818e0f8bc64
ssdeep: 24576:PRmJkcoQricOIQxiZY1WNFw8Jl5VV+CaM6tQkFuYaTCtvFn/F9qiQ:EJZoQrbTFZY1WNFwSP+PM61FKWnm
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
CompiledScript: AutoIt v3 Script: 3, 3, 8, 1
FileVersion: 3, 3, 8, 1
FileDescription: 
Translation: 0x0809 0x04b0

AutoIt:Dropper-F [Drp] also known as:

Bkav	W32.AIDetect.malware1
Lionic	Trojan.Win32.Autoit.mcXb
Elastic	malicious (high confidence)
DrWeb	Trojan.Bankfraud.3628
ClamAV	Win.Malware.Autoit-6912463-0
ALYac	Trojan.GenericKD.41415387
Cylance	Unsafe
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	TrojanBanker:Win32/Banker.b5a3490f
K7GW	Spyware ( 004fbe541 )
K7AntiVirus	Spyware ( 004fbe541 )
Cyren	W32/Autoit.AQQU-2891
Symantec	Trojan.Gen.MBT
ESET-NOD32	multiple detections
APEX	Malicious
Avast	AutoIt:Dropper-F [Drp]
Cynet	Malicious (score: 100)
Kaspersky	Trojan-Dropper.Win32.Autoit.abceqi
BitDefender	Trojan.GenericKD.41415387
NANO-Antivirus	Trojan.Win32.Bankfraud.efjtmx
MicroWorld-eScan	Trojan.GenericKD.41415387
Tencent	Win32.Trojan-dropper.Autoit.Htwo
Ad-Aware	Trojan.GenericKD.41415387
Sophos	Mal/Generic-S
BitDefenderTheta	AI:Packer.0DA08E8C16
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	Ransom_Lokmwiz.R002C0CFE21
McAfee-GW-Edition	BehavesLike.Win32.Backdoor.tc
FireEye	Generic.mg.2c9e48d7852e1a84
Emsisoft	Trojan.GenericKD.41415387 (B)
Jiangmin	TrojanDropper.Autoit.dhs
Avira	HEUR/AGEN.1116018
eGambit	Unsafe.AI_Score_95%
Antiy-AVL	Trojan/Generic.ASCommon.168
Kingsoft	Win32.Troj.Banker.(kcloud)
Microsoft	Ransom:AutoIt/Lokmwiz.A
Arcabit	Trojan.Generic.D277F2DB
ZoneAlarm	Trojan-Dropper.Win32.Autoit.abceqi
GData	Trojan.GenericKD.41415387
AhnLab-V3	Dropper/Win32.RL_Autoit.R366525
Acronis	suspicious
McAfee	Artemis!2C9E48D7852E
MAX	malware (ai score=87)
VBA32	Trojan.Autoit.F
Malwarebytes	Generic.Trojan.Malicious.DDS
Panda	Trj/CI.A
TrendMicro-HouseCall	Ransom_Lokmwiz.R002C0CFE21
Rising	Trojan.Obfus/Autoit!1.BEDE (CLASSIC)
Yandex	Trojan.GenAsa!IZxoZO1iAfE
Ikarus	Troajn-Ransom.Crypt888
MaxSecure	Trojan.Autoit.AZA
Fortinet	AutoIt/Agent.BQ!tr
AVG	AutoIt:Dropper-F [Drp]
Paloalto	generic.ml

How to remove AutoIt:Dropper-F [Drp]?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

AutoIt:Dropper-F [Drp] removal tips