Adware

About “BScope.Adware.Agent” infection

Malware Removal

The BScope.Adware.Agent is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What BScope.Adware.Agent virus can do?

  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • Network activity contains more than one unique useragent.

Related domains:

www.ezkeyqq.com
www.time.ac.cn

How to determine BScope.Adware.Agent?


File Info:

crc32: 44705C88
md5: 9052357e1e0ad8480a6e8f8b28a38e9e
name: menghuanxiyoudatu.exe
sha1: 16ac128302def7a32b4ddc5a6e28b306e2b20ce2
sha256: f21fb8cc87daca69018219ccacf9fedc062a35326612b6512f4d14986f25a5b6
sha512: 89e1d14bb17a63860e8085e580b9339177a76aa4440b998534ddb4fdf5118d9334dfc51bfe68aefcb2f8c525d5b34a473da3fa0cdb5415441507c9af707e5caf
ssdeep: 49152:1hqDqm5rdBbSiLM9lG4Oq7IXTIGQ1UWCsVb6KUpZ+hDg1F2d6N63:XqDqm5JtSyM9lG4Ow1U5SbWf+YFCd
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

LegalCopyright: x4f5cx8005x7248x6743x6240x6709 x8bf7x5c0ax91cdx5e76x4f7fx7528x6b63x7248
FileVersion: 3.3.1.23
Comments: x672cx7a0bx5e8fx4f7fx7528x6613x8bedx8a00x7f16x5199(http://www.eyuyan.com)
ProductName: x6613x8bedx8a00x7a0bx5e8f
ProductVersion: 3.3.1.23
FileDescription: x6613x8bedx8a00x7a0bx5e8f
Translation: 0x0804 0x04b0

BScope.Adware.Agent also known as:

BkavW32.AIDetectVM.malware
MicroWorld-eScanTrojan.GenericKD.31291129
FireEyeGeneric.mg.9052357e1e0ad848
Qihoo-360Win32/Trojan.4c6
McAfeeGenericRXBO-IQ!9052357E1E0A
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
AegisLabTrojan.Multi.Generic.4!c
K7AntiVirusRiskware ( 0040eff71 )
BitDefenderTrojan.GenericKD.31291129
K7GWRiskware ( 0040eff71 )
Cybereasonmalicious.e1e0ad
Invinceaheuristic
CyrenW32/Agent.EW.gen!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:Malware-gen
ClamAVWin.Trojan.Kazy-6878
GDataWin32.Application.PUPStudio.A
KasperskyUDS:DangerousObject.Multi.Generic
AlibabaRiskWare:Win32/IMEStartup.6f694b66
NANO-AntivirusTrojan.Win32.Chistudi.cvlvfb
ViRobotTrojan.Win32.Z.Chistudi.3100672
TencentWin32.Trojan.Agent.Mgen
Endgamemalicious (high confidence)
SophosMal/Generic-S
ComodoTrojWare.Win32.Agent.OSCF@5rs7jr
F-SecureTrojan:W32/DelfInject.R
DrWebTrojan.PWS.Wsgame.35243
ZillyaTrojan.Chistudi.Win32.19
TrendMicroTROJ_GEN.R002C0OBI20
McAfee-GW-EditionBehavesLike.Win32.Generic.vc
EmsisoftTrojan.GenericKD.31291129 (B)
IkarusTrojan.Crypt
F-ProtW32/Agent.EW.gen!Eldorado
JiangminTrojan/Chistudi.y
WebrootW32.Chistudi
AviraTR/Agent.3100672.29
Antiy-AVLTrojan/Win32.Chistudi
ArcabitTrojan.Generic.D1DD76F9
ZoneAlarmnot-a-virus:RiskTool.Win32.IMEStartup.wpk
MicrosoftVirTool:WinNT/Rootkitdrv
TACHYONTrojan/W32.Chistudi.3100672
AhnLab-V3Trojan/Win32.Chistudi.C1784974
Acronissuspicious
VBA32BScope.Adware.Agent
ALYacTrojan.GenericKD.31291129
MAXmalware (ai score=100)
Ad-AwareTrojan.GenericKD.31291129
PandaGeneric Malware
ESET-NOD32a variant of Win32/Packed.FlyStudio.AA potentially unwanted
TrendMicro-HouseCallTROJ_GEN.R002C0OBI20
RisingTrojan.Chistudi!8.1DB9 (CLOUD)
YandexTrojan.Chistudi!MR4nt8wRd+4
SentinelOneDFI – Malicious PE
eGambitHackTool.Generic
FortinetW32/Chistudi.SA!tr
BitDefenderThetaGen:NN.ZexaF.34106.9s0@aOjhimgb
AVGWin32:Malware-gen
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_90% (W)
MaxSecureTrojan.Malware.8138342.susgen

How to remove BScope.Adware.Agent?

BScope.Adware.Agent removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment