BV:Silly removal guide

The BV:Silly is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What BV:Silly virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Yara rule detections observed from a process memory dump/dropped files/CAPE
Dynamic (imported) function loading detected
Authenticode signature is invalid

How to determine BV:Silly?


File Info:
name: AFBC3DF20B9BD11A85C1.mlw
path: /opt/CAPEv2/storage/binaries/94051bf7afdd99d36784e81682e71a221ce638e5733a65bc2b781bfdd4d13fb3
crc32: 6E5023E6
md5: afbc3df20b9bd11a85c1cd62c2744ba2
sha1: badbf4211c8ea2f02b3e5c38cb014c9447fd065f
sha256: 94051bf7afdd99d36784e81682e71a221ce638e5733a65bc2b781bfdd4d13fb3
sha512: 326f01c9278876e63087ab833f7bde99f169cf6f4cdec9142c7c73f9f15ce42f8a68fbacff56a7cdf51380b6aaa3972681e68dc0bdb59fd0151cf765d445a282
ssdeep: 24576:DPswBNVTHceo3P73m5WUqlcsUs0UxEGm4d/LV9OxpAFaazPyZd6Q1KcFIqygBPss:DgBPLuC/MAMazPO6Q1KcFIqygB
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1A895F6557521EC63F7AE71313450A234AA21E8E9131289F27E73DF29AA234D52F35F0E
sha3_384: 1e8f1f6157480bf1d99379d26e79d6cfc4e484de597529ae968ec2d177d9bbc65c0715ca887f02be0e6d6c104090a69f
ep_bytes: 558bec6aff68c8b14b0068fc37480064
timestamp: 2001-02-14 22:52:19

Version Info:
Comments: Protector Plus 2000 for Windows 95/98 (c) Proland Software
CompanyName: Proland Software
FileDescription: Protector Plus 2000 for Windows 95/98 - PP2000
FileVersion: 7, 0, 65, 1
InternalName: PP2000
LegalCopyright:  (c) Proland Software, 1992, 2000
LegalTrademarks: Protector Plus
OriginalFilename: PP2000.EXE
PrivateBuild: 
ProductName: Protector Plus 2000 for Windows 95/98
ProductVersion: 7, 0, 65, 1
SpecialBuild: 
Translation: 0x0409 0x04b0

BV:Silly also known as:

McAfee	Artemis!AFBC3DF20B9B
Cylance	Unsafe
ClamAV	Win.Trojan.1963-1
Avast	BV:Silly
Tencent	Trojan.Win32.BitCoinMiner.la
McAfee-GW-Edition	Artemis!Trojan
Microsoft	Trojan:Win32/Wacatac.B!ml
VBA32	BScope.Trojan.Tiggre
AVG	BV:Silly

How to remove BV:Silly?

BV:Silly removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X