Malware

About “Hoax.Win32.PCRepair.cxo” infection

Malware Removal

The Hoax.Win32.PCRepair.cxo is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Hoax.Win32.PCRepair.cxo virus can do?

  • Executable code extraction
  • Presents an Authenticode digital signature
  • Creates RWX memory
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Attempts to modify proxy settings
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz
yahoo.com

How to determine Hoax.Win32.PCRepair.cxo?



File Info:

crc32: 61190E06
md5: 51f9814d52e753dea11fa539361a33e0
name: speedcat.setup.exe
sha1: 85f8b6537196226ce0cd59239de36a8c6b0b8fc2
sha256: c6ca63e2d9c2370759d4e8c4a3b67163144b5591eb3a3d81a76c2ea701378265
sha512: 61558c7415d06a9988553084a8a48f89cc1dee4bca708b1489829dc72c2eb0ef58e12b5482d93b6f42f913e445eb8293696eab65c831fce3d17c15219953597a
ssdeep: 49152:Qs7uZp6kcthtPc93lCR5RdylGsH55WRb6ygf+IFqyop/:jHm93QRjclnH55Wb6yQ
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright:                                                                                                     
FileVersion: 11.2.1              
CompanyName:                                                             
Comments: This installation was built with Inno Setup.
ProductName: Setup                                                       
ProductVersion: 11.2.1                                            
FileDescription: Installer                                                   
Translation: 0x0000 0x04b0

Hoax.Win32.PCRepair.cxo also known as:

SangforMalware
CrowdStrikewin/malicious_confidence_60% (D)
K7GWAdware ( 0051f3071 )
K7AntiVirusAdware ( 0051f3071 )
Invinceaheuristic
APEXMalicious
AvastWin32:UnwantedSig [PUP]
ClamAVWin.Malware.Pcspeedcat-6989438-0
KasperskyHoax.Win32.PCRepair.cxo
NANO-AntivirusTrojan.Win32.VaniLoader.gedvih
DrWebProgram.Unwanted.3933
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Obfuscated.vc
FireEyeGeneric.mg.51f9814d52e753de
SophosInnoMod (PUA)
JiangminHoax.DeceptPCClean.afx
MaxSecureTrojan.Malware.74567789.susgen
Antiy-AVLGrayWare/Win32.SpeedCat.a
Endgamemalicious (high confidence)
ZoneAlarmHoax.Win32.PCRepair.cxo
MicrosoftPUA:Win32/PCSpeedCat
AhnLab-V3PUP/Win32.Helper.R282310
VBA32Adware.Presenoker
MalwarebytesPUP.Optional.PCSpeedCat
ESET-NOD32a variant of Win32/VanilLoader.A potentially unwanted
FortinetW32/SpeedCat.A!tr
AVGWin32:UnwantedSig [PUP]

How to remove Hoax.Win32.PCRepair.cxo?

Hoax.Win32.PCRepair.cxo removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment