What is “CloudGuard (PUA)”?

Malware Removal

The CloudGuard (PUA) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What CloudGuard (PUA) virus can do?

  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz

How to determine CloudGuard (PUA)?


File Info:

crc32: 6305984D
md5: a4bb509c0a331534092ea265408e3e1f
name: A4BB509C0A331534092EA265408E3E1F.mlw
sha1: f79cbb8e02f9176d3852194a08636d9ae79b8bc4
sha256: dd17cca47b88fdda86f36946403b49fd9251ad68e8db8bbb500cf84993b3a3af
sha512: 972da6dac190311c47cda276bd19d6617038a0e1ed42a33df463caa0aaaed6a71275db42c3bf614725b07aa026e023a93ec1d34957c307d313d8c78b9829d3a6
ssdeep: 24576:lN+aLo2+NFZqeI+8NFZqe50hNxKQVzl0H:+4+PZqed8PZqeYK+l
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright CC xa92017 .
Assembly Version: 1.3.1.8
InternalName: France.exe
FileVersion: 1.3.1.8
CompanyName: prest ltd
LegalTrademarks: prest
Comments: prest
ProductName: prest Client
ProductVersion: 1.3.1.8
FileDescription: prest
OriginalFilename: France.exe

CloudGuard (PUA) also known as:

K7AntiVirusAdware ( 005465501 )
Elasticmalicious (high confidence)
DrWebTrojan.Siggen7.34782
CynetMalicious (score: 99)
ALYacGen:Variant.Bulz.662146
CylanceUnsafe
ZillyaAdware.CloudScout.Win32.302
SangforSuspicious.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
AlibabaAdWare:MSIL/CloudGuard.19a14003
K7GWAdware ( 005465501 )
Cybereasonmalicious.c0a331
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Adware.CloudGuard.D
APEXMalicious
AvastWin32:Adware-gen [Adw]
BitDefenderGen:Variant.Bulz.662146
NANO-AntivirusRiskware.Win32.CloudScout.exvdyf
MicroWorld-eScanGen:Variant.Bulz.662146
TencentMalware.Win32.Gencirc.11491f21
Ad-AwareGen:Variant.Bulz.662146
SophosCloudGuard (PUA)
ComodoApplicUnwnt@#k9y22poy7qp7
BitDefenderThetaGen:NN.ZemsilF.34170.tn0@amh4uip
VIPRECloudScout
McAfee-GW-EditionPUP-XDW-PK
FireEyeGeneric.mg.a4bb509c0a331534
EmsisoftGen:Variant.Bulz.662146 (B)
SentinelOneStatic AI – Malicious PE
JiangminAdWare.CloudScout.ao
AviraADWARE/CloudGuard.Gen
Antiy-AVLTrojan/Generic.ASMalwS.2448E76
MicrosoftTrojan:Win32/Wacatac.A!ml
SUPERAntiSpywareAdware.CloudGuard/Variant
GDataGen:Variant.Bulz.662146
AhnLab-V3PUP/Win32.CloudGuard.R222514
McAfeePUP-XDW-PK
MAXmalware (ai score=100)
VBA32AdWare.CloudScout
MalwarebytesGeneric.Trojan.Malicious.DDS
PandaTrj/GdSda.A
YandexPUA.CloudScout!G5f9Ku/AFFU
IkarusAdWare.MSIL.Cloudguard
FortinetAdware/CloudGuard
AVGWin32:Adware-gen [Adw]
Paloaltogeneric.ml

How to remove CloudGuard (PUA)?

CloudGuard (PUA) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment