Should I remove “Fragtor.469195”?

The Fragtor.469195 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Fragtor.469195 virus can do?

Sample contains Overlay data
Presents an Authenticode digital signature
Unconventionial binary language: Chinese (Simplified)
Yara detections observed in process dumps, payloads or dropped files

How to determine Fragtor.469195?


File Info:
name: 5CA5DAA5F1B804F342FC.mlw
path: /opt/CAPEv2/storage/binaries/65cd6f89f742583766456bf9f9b453b66c24e0f9c30fb741a70b1d9c143b7cb1
crc32: 18D8B9C3
md5: 5ca5daa5f1b804f342fc48357d2a9327
sha1: 229162d01d37bf0a99724aa0774584f1843f22f2
sha256: 65cd6f89f742583766456bf9f9b453b66c24e0f9c30fb741a70b1d9c143b7cb1
sha512: 06b81516525fca278152187aafee277dd60e8073be3446121cd5042eced6410a1b926c1ef01e5f68f68ada6cb845965cda180af2d553431e8d6c3800062d498b
ssdeep: 24576:2x+BjV70NkPGVuxw1N2VTX1Q1Lu1HfQF3TKLnD+GnBLs/kW:2sH7l2AX1Q8fQF3TGn6oLs/kW
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T189150820BA86C336D16201B0172CAE6A91657D391F6019C7B3C43F39B4B5ED36D36E6B
sha3_384: 183ad26a4df62969de8a3ea1703d3d17dafaddae79f1b83725c871cb29e55d1d4546034a523c56ccc00fe518e17197ce
ep_bytes: e864070000e97afeffff558bec8b4508
timestamp: 2023-11-15 06:04:20

Version Info:
Comments: http://www.2345.com
CompanyName: 2345.cc
FileDescription: 安全卫士-2345广告防护
FileVersion: 8.8.0.14346
InternalName: 2345AdRtProtect
LegalCopyright: 版权所有 (c) 2023，2345.cc
OriginalFilename: 2345AdRtProtect.exe
ProductName: 2345安全卫士
ProductVersion: 8.8.0
Translation: 0x0804 0x04b0

Fragtor.469195 also known as:

Bkav	W32.AIDetectMalware
Lionic	Adware.Win32.Ad2345.2!c
MicroWorld-eScan	Gen:Variant.Fragtor.469195
FireEye	Gen:Variant.Fragtor.469195
Skyhigh	Artemis
McAfee	Artemis!5CA5DAA5F1B8
Malwarebytes	PUP.Optional.ChinAd.DDS
Zillya	Adware.Ad2345.Win32.5531
K7AntiVirus	Adware ( 0055ce2b1 )
K7GW	Adware ( 0055ce2b1 )
CrowdStrike	win/grayware_confidence_100% (W)
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/2345.H potentially unwanted
Cynet	Malicious (score: 100)
Kaspersky	not-a-virus:HEUR:AdWare.Win32.Ad2345.gen
BitDefender	Gen:Variant.Fragtor.469195
Avast	Win32:Malware-gen
Emsisoft	Gen:Variant.Fragtor.469195 (B)
VIPRE	Gen:Variant.Fragtor.469195
Sophos	Generic Reputation PUA (PUA)
Ikarus	PUA.2345
GData	Gen:Variant.Fragtor.469195
Jiangmin	AdWare.Ad2345.ajj
Google	Detected
Arcabit	Trojan.Fragtor.D728CB
ZoneAlarm	not-a-virus:HEUR:AdWare.Win32.Ad2345.gen
Varist	W32/ABAdware.GLXS-6463
ALYac	Gen:Variant.Fragtor.469195
MAX	malware (ai score=82)
VBA32	BScope.Adware.Ad
Cylance	unsafe
TrendMicro-HouseCall	TROJ_GEN.R002H07LR23
Rising	Adware.Ad2345!8.13C3C (TFE:5:PjLOwNIF5VS)
MaxSecure	Adware.W32.Ad2345.gen_274404
Fortinet	Riskware/2345
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS

How to remove Fragtor.469195?

Fragtor.469195 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X