What is “Client-SMTP.Win32.Blat.a”?

The Client-SMTP.Win32.Blat.a is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Client-SMTP.Win32.Blat.a virus can do?

• Reads data out of its own binary image
• The binary likely contains encrypted or compressed data.
• The executable is compressed using UPX
• Network activity detected but not expressed in API logs

How to determine Client-SMTP.Win32.Blat.a?

File Info:
crc32: 55D1082A
md5: 6c8c91051fa3c9906405b770f1c8a759
name: tb201910.exe
sha1: 628f3f947220fe94235b48958b0e051f66398fca
sha256: 917a7625016a42abda779348621a5bb574def6fa61c9deb9faf7023784b632b9
sha512: 2cba19c4885cf295ca348ad78e20b0023a2cab92ba7c54da1e66e1782ff00b28b4a33393c5a7263ba9f885da40841b0741c4d6917fa84a8915c5a654853149f5
ssdeep: 49152:qTqFgESkOGzLAPghgR1AC1oOVA5dBV+9r0sDH5c05kMU+Q6:qTqyeOGzLggu1FoOKtV+9g0SMQ6
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed

Version Info:
LegalCopyright: 
InternalName: 
FileVersion: 2, 0, 0, 29
CompanyName: 
PrivateBuild: 
LegalTrademarks: 
Comments: 
ProductName: Atualizar Tabela de xcdndices - CLC - Programa de Instalaxe7xe3o
SpecialBuild: 
ProductVersion: 2, 0, 0, 29
FileDescription: 
OriginalFilename: 
Translation: 0x0409 0x04b0

Client-SMTP.Win32.Blat.a also known as:

How to remove Client-SMTP.Win32.Blat.a?

• Download and install GridinSoft Anti-Malware.
• Open GridinSoft Anti-Malware and perform a “Standard scan“.
• “Move to quarantine” all items.
• Open “Tools” tab – Press “Reset Browser Settings“.
• Select proper browser and options – Click “Reset”.
• Restart your computer.