Malware

About “Generik.HXSOYLT potentially unwanted” infection

Malware Removal

The Generik.HXSOYLT potentially unwanted is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generik.HXSOYLT potentially unwanted virus can do?

  • Presents an Authenticode digital signature
  • Starts servers listening on 127.0.0.1:0
  • Unconventionial language used in binary resources: Russian
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX

Related domains:

z.whorecord.xyz
api.az-partners.net
a.tomx.xyz
www.comboplayer.ru

How to determine Generik.HXSOYLT potentially unwanted?



File Info:

crc32: 27BD33BC
md5: d56ce7c951ebb4cad1608f4d56ca4536
name: ComboPlayerInstaller.exe
sha1: 6b52a2c67f2728c907f235f9876d645ed35f9f4d
sha256: f538ce5bd6715e3a28e5b04f012a283d4a88f3575362d74aa944f792f11b30cd
sha512: 068b8dd4a283f531083c9fd757fae04f0e9a244731e729f661d24b8e0dbb89b5abd8dde95e50cef3db895b3cf317ff863cfc68fd644f76aa6545ecab5932e4b3
ssdeep: 24576:DhdfzQa0DCJkjPB2CxFtWyHf+tIVNW226Qy5zD9qc3xP6zgIj5+J:tdrQbdjPPFvSwW22h4D97V6zgIjk
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

LegalCopyright: xa9 2020 ROSTPAY LTD. All rights reserved.
InternalName: ComboPlayer
FileVersion: 2.0.1.0
ProductName: ComboPlayer
ProductVersion: 2.0.1.0
FileDescription: ComboPlayer Installer
Translation: 0x0409 0x04b0

Generik.HXSOYLT potentially unwanted also known as:

DrWebProgram.Unwanted.4320
CAT-QuickHealTrojan.ArchSMS
McAfeeArtemis!D56CE7C951EB
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
K7GWRiskware ( 0040eff71 )
K7AntiVirusRiskware ( 0040eff71 )
ESET-NOD32a variant of Generik.HXSOYLT potentially unwanted
AvastWin32:PUP-gen [PUP]
GDataWin32.Trojan.Agent.MTDXRI
AlibabaRiskWare:Win32/ArchSMS.7a3dc2a5
NANO-AntivirusRiskware.Win32.ArchSMS.hgwwfq
TencentWin32.Trojan-psw.Archsms.Wqmu
SophosGeneric PUA GL (PUA)
ComodoMalware@#22ehn8855bdn7
F-SecureJoke.JOKE/ArchSMS.yhtwj
ZillyaTool.ArchSMS.Win32.33955
McAfee-GW-EditionArtemis!Trojan
CyrenW32/Application.WJDZ-8186
JiangminHoax.ArchSMS.dhzw
WebrootW32.Adware.Gen
AviraJOKE/ArchSMS.yhtwj
Antiy-AVLHackTool[Hoax]/Win32.ArchSMS
MicrosoftPUA:Win32/Rostpay
VBA32BScope.Trojan.Startun
TrendMicro-HouseCallTROJ_GEN.R002H0CCS20
RisingPUF.Rostpay!8.10916 (TFE:5:OyHIYVSJhQF)
FortinetRiskware/ArchSMS
AVGFileRepMetagen [PUP]

How to remove Generik.HXSOYLT potentially unwanted?

Generik.HXSOYLT potentially unwanted removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment