Mal/Generic-R + W32/Neshta-D removal

Malware Removal

The Mal/Generic-R + W32/Neshta-D is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Mal/Generic-R + W32/Neshta-D virus can do?

  • Reads data out of its own binary image
  • Unconventionial language used in binary resources: Russian
  • Installs itself for autorun at Windows startup
  • Network activity detected but not expressed in API logs
  • Likely virus infection of existing system binary
  • Anomalous binary characteristics

How to determine Mal/Generic-R + W32/Neshta-D?


File Info:

crc32: 5544F012
md5: ec022f92355ae58272bffc434a595bad
name: EC022F92355AE58272BFFC434A595BAD.mlw
sha1: d6e945a955beadf7fbc384d0df68d83cb1000c1c
sha256: 47af206f5b28365c01eb80fa135f1acb09f99ea37dd9c2ad23d5c7f359f29e0f
sha512: 6f8e264f1643e8735a26add89cd5376bc538a1616da77ed53383ef5a708c1a159ba4b037a1d965372f41f460fa61402786de11c39e381619ae3a482dcbd24359
ssdeep: 3072:sr85C9w9YAJOzIY9gVl01T2ENipdDg0z5dNLOpnhTd2:k9697JSIFl0QENqFdNLYd2
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

0: [No Data]

Mal/Generic-R + W32/Neshta-D also known as:

BkavW32.NeshtaB.PE
K7AntiVirusVirus ( 00556e571 )
LionicVirus.Win32.Neshta.tn9H
Elasticmalicious (high confidence)
DrWebWin32.HLLP.Neshta
CynetMalicious (score: 100)
CAT-QuickHealW32.Neshta.C8
ALYacWin32.Neshta.A
CylanceUnsafe
ZillyaVirus.Neshta.Win32.1
SangforWin.Trojan.Neshuta-1
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaVirus:Win32/Neshta.3bb
K7GWVirus ( 00556e571 )
Cybereasonmalicious.2355ae
BaiduWin32.Virus.Neshta.a
CyrenW32/Neshta.OBIX-2981
SymantecW32.Neshuta
ESET-NOD32Win32/Neshta.A
ZonerVirus.Win32.19514
APEXMalicious
AvastWin32:Apanas [Trj]
ClamAVWin.Trojan.Neshuta-1
KasperskyVirus.Win32.Neshta.a
BitDefenderWin32.Neshta.A
NANO-AntivirusTrojan.Win32.Winlock.fmobyw
ViRobotWin32.Neshta.Gen.A
MicroWorld-eScanWin32.Neshta.A
TencentVirus.Win32.Neshta.a
Ad-AwareWin32.Neshta.A
SophosMal/Generic-R + W32/Neshta-D
ComodoWin32.Neshta.A@3ypg
BitDefenderThetaAI:FileInfector.D5C3B0640E
VIPREVirus.Win32.Neshta.a (v)
TrendMicroPE_NESHTA.A
McAfee-GW-EditionBehavesLike.Win32.HLLP.ch
FireEyeGeneric.mg.ec022f92355ae582
EmsisoftWin32.Neshta.A (B)
SentinelOneStatic AI – Malicious PE
JiangminVirus.Neshta.a
AviraW32/Neshta.A
eGambitUnsafe.AI_Score_99%
Antiy-AVLTrojan/Generic.ASVirus.20D
KingsoftWin32.Infected.neshta.nl.(kcloud)
MicrosoftVirus:Win32/Neshta.A
GridinsoftVirus.Win32.Neshta.ka!s8
ArcabitWin32.Neshta.A
GDataWin32.Virus.Neshta.D
TACHYONVirus/W32.Neshta
AhnLab-V3Win32/Neshta
Acronissuspicious
McAfeeW32/HLLP.41472.e
MAXmalware (ai score=89)
VBA32Virus.Win32.Neshta.a
MalwarebytesAveMaria.Backdoor.Stealer.DDS
PandaW32/Neshta.A
TrendMicro-HouseCallPE_NESHTA.A
RisingStealer.AveMaria!1.BA1C (CLASSIC)
YandexTrojan.GenAsa!Mo0tdcmmg3o
IkarusVirus.Win32.Neshta
MaxSecureVirus.Infector.Gen9
FortinetW32/Generic.AC.171!tr
AVGWin32:Apanas [Trj]
Paloaltogeneric.ml
Qihoo-360Virus.Win32.Neshta.B

How to remove Mal/Generic-R + W32/Neshta-D?

Mal/Generic-R + W32/Neshta-D removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment