Worm

IM-Worm.Win32.VB.poa information

Malware Removal

The IM-Worm.Win32.VB.poa is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What IM-Worm.Win32.VB.poa virus can do?

  • Executable code extraction
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine IM-Worm.Win32.VB.poa?



File Info:

crc32: A3DB4B35
md5: 0483284a11b9c59d31b3be816f5f236e
name: 0483284A11B9C59D31B3BE816F5F236E.mlw
sha1: ef3427651db0098633dbeab6a91a8b7086ec7261
sha256: 852f4106c39513899a21a8798ba7a7e9f0ee8ddd916dc65664664972ab7b6891
sha512: 5c53131b382a9b149d6d00094f7aaeac7d8cd385868c441d35192ceec9135da1ceaf33ed0d871e96e4d9c33edf58f7bc12c2911b1b349b9f2e705d81ccfac048
ssdeep: 768:2Xef+IWiLnR+l1gw30kGUBTK2iBghrmuaVicJ+Oei+Jg3SlUqRe30ql:9f+IRclSw3PGmTIuUkkxB2VUP3jl
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

Translation: 0x0409 0x04b0
InternalName: Who's Online
FileVersion: 1.00
CompanyName: Underground Coding Inc.
ProductName: prjLoadFromFile
ProductVersion: 1.00
OriginalFilename: Who's Online.exe

IM-Worm.Win32.VB.poa also known as:

DrWebBACKDOOR.Trojan
CynetMalicious (score: 100)
ALYacGen:Trojan.Heur2.VP2.dm0@audNO9ai
SangforWorm.Win32.VB.buxin
Cybereasonmalicious.a11b9c
SymantecTrojan.Gen.MBT
APEXMalicious
AvastWin32:Malware-gen
KasperskyIM-Worm.Win32.VB.poa
BitDefenderGen:Trojan.Heur2.VP2.dm0@audNO9ai
NANO-AntivirusTrojan.Win32.VB.cyjybw
MicroWorld-eScanGen:Trojan.Heur2.VP2.dm0@audNO9ai
TencentWin32.Worm-im.Vb.Eoh
Ad-AwareGen:Trojan.Heur2.VP2.dm0@audNO9ai
SophosMal/Generic-S
ComodoMalware@#31cuyc2rxs1hd
BitDefenderThetaAI:Packer.83ACFD2E21
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Fareit.kt
FireEyeGeneric.mg.0483284a11b9c59d
EmsisoftGen:Trojan.Heur2.VP2.dm0@audNO9ai (B)
SentinelOneStatic AI – Suspicious PE
Antiy-AVLTrojan/Generic.ASMalwS.392BD8
MicrosoftTrojan:Win32/Wacatac.A!ml
ArcabitTrojan.Heur2.VP2.E5B97E
GDataGen:Trojan.Heur2.VP2.dm0@audNO9ai
McAfeeArtemis!0483284A11B9
MAXmalware (ai score=84)
VBA32suspected of Trojan-AOL.VB.2
PandaGeneric Malware
FortinetW32/VB.POA!worm.im
AVGWin32:Malware-gen

How to remove IM-Worm.Win32.VB.poa?

IM-Worm.Win32.VB.poa removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment