Categories: PUA

What is “Generic PUA CL (PUA)”?

The Generic PUA CL (PUA) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic PUA CL (PUA) virus can do?

  • Presents an Authenticode digital signature
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.

Related domains:

downloader.downerapi.com

How to determine Generic PUA CL (PUA)?



File Info:

crc32: 7FF934B9md5: e7e379f6c8cae723f220595dd6c5053fname: 802.11n_____sha1: 2b2be2110f0a0d417e3df6082225bb0e510ae7e0sha256: 9c5784ca4eb828f92a56577d693c60e0d503607384c10cf0fda3d2b4da6afee8sha512: 5a0635a681b0a79e069fdb7e92dd4871b8f312e4a0e9753cd7b85008cf7b285a81ac0b7982704fb9dd9448692295c9ab2abb6f71ac3f6c84b6923fa1b14c880fssdeep: 24576://Kjz7UAwOJV3yjauXWWonKaeDcqcdeZe6bz4sBN3d/://KP7fwOJV3yjavnKae/cdie6I2N3d/type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

LegalCopyright: Copyright (C) 2018InternalName: FastDownloader.exeFileVersion: 3.2.0.8CompanyName: -ProductName: x8f6fx4ef6x4e0bx8f7dx5668ProductVersion: 3.2.0.8FileDescription: x8f6fx4ef6x4e0bx8f7dx5668OriginalFilename: FastDownloader.exeTranslation: 0x0804 0x04b0

Generic PUA CL (PUA) also known as:

MicroWorld-eScan Gen:Variant.Adware.Downloader.211
FireEye Generic.mg.e7e379f6c8cae723
ALYac Gen:Variant.Adware.Downloader.211
Cylance Unsafe
VIPRE Trojan.Win32.Generic!BT
K7AntiVirus Riskware ( 00544e421 )
BitDefender Gen:Variant.Adware.Downloader.211
K7GW Riskware ( 00544e421 )
Invincea heuristic
Cyren W32/Adware.OOYD-7795
Symantec Trojan.Gen.2
APEX Malicious
GData Gen:Variant.Adware.Downloader.211
Alibaba RiskWare:Win32/Downer.bd86ae47
ViRobot Adware.Downer.1135456.A
Tencent Malware.Win32.Gencirc.10b90e3a
Ad-Aware Gen:Variant.Adware.Downloader.211
Sophos Generic PUA CL (PUA)
Comodo ApplicUnwnt@#37mo6e07gyx5l
Zillya Tool.Downer.Win32.54
Emsisoft Application.Downloader (A)
Ikarus PUA.RiskWare.Downer
Antiy-AVL RiskWare/Win32.Downer
Endgame malicious (high confidence)
Arcabit Trojan.Adware.Downloader.211
Microsoft PUA:Win32/Downer
AhnLab-V3 PUP/Win32.Generic.C3478818
McAfee Artemis!E7E379F6C8CA
MAX malware (ai score=99)
Malwarebytes PUP.Optional.FastDownloader
Panda Trj/Genetic.gen
ESET-NOD32 a variant of Win32/RiskWare.Downer.A
TrendMicro-HouseCall TROJ_GEN.R049H0CCN20
Rising Adware.Downloader!1.BD64 (CLOUD)
eGambit Unsafe.AI_Score_99%
Fortinet Riskware/Downer
AVG FileRepMalware [PUP]
Paloalto generic.ml

How to remove Generic PUA CL (PUA)?

  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.
Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment
Share
Published by
Paul Valéry
Tags: downloader.downerapi.comFastDownloader.exeGeneric PUA CL (PUA)
4 years ago

Recent Posts

Malware.AI.1658877817 removal tips

The Malware.AI.1658877817 is considered dangerous by lots of security experts. When this infection is active,…

59 seconds ago

About “Win32/Pronny.JI” infection

The Win32/Pronny.JI is considered dangerous by lots of security experts. When this infection is active,…

12 mins ago

Adware.Ursu.14752 removal

The Adware.Ursu.14752 is considered dangerous by lots of security experts. When this infection is active,…

22 mins ago

Should I remove “Symmi.28558”?

The Symmi.28558 is considered dangerous by lots of security experts. When this infection is active,…

32 mins ago

About “Malware.AI.4245024472” infection

The Malware.AI.4245024472 is considered dangerous by lots of security experts. When this infection is active,…

32 mins ago

Should I remove “Fragtor.Azorult.68839”?

The Fragtor.Azorult.68839 is considered dangerous by lots of security experts. When this infection is active,…

32 mins ago