Adware

MSIL/Adware.Dotdo.CP information

Malware Removal

The MSIL/Adware.Dotdo.CP is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/Adware.Dotdo.CP virus can do?

  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid

How to determine MSIL/Adware.Dotdo.CP?



File Info:

name: 2BFE049547264F19F90A.mlw
path: /opt/CAPEv2/storage/binaries/79c1c7dcaf792197f03fe02cc19e475dc613921056ae8a4205669e87a6dfc5c4
crc32: 954EC21A
md5: 2bfe049547264f19f90aac8543b2299b
sha1: 43802d2118e91e8c5fcb52acfb749f32371af517
sha256: 79c1c7dcaf792197f03fe02cc19e475dc613921056ae8a4205669e87a6dfc5c4
sha512: 3ff0b8f49a409e7641ff20c0c1525081eddb5b94f5e8c4d5f07b9931275ee55f2aff414b925e34197f5f444b3aa2ee42b663e639d899681a11f473338aa4ca57
ssdeep: 48:6V/RXe0Wr3bruJuijtHwRrCUJv2g1XYKTkhxPqqCSfbNtm:O/RbKoHcB5KY+JTzNt
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T17791821083D88337ED73477AEEB38740A774BA149B662F2D24841637AE2BA504963B31
sha3_384: e9adc6e0811b2da105c9430593fc1c7db22438db86f8b0e9758fa7716a62faedd43d45460ee073b4460b44994acfb788
ep_bytes: ff250020400000000000000000000000
timestamp: 2017-10-21 06:44:11


Version Info:

Translation: 0x0000 0x04b0
Comments: zeman
CompanyName: zeman
FileDescription: zeman
FileVersion: 8.6.8.47
InternalName: schorr.exe
LegalCopyright: Copyright © zeman 2015
LegalTrademarks: © 2015 zeman
OriginalFilename: schorr.exe
ProductName: zeman
ProductVersion: 8.6.8.47
Assembly Version: 8.6.8.47

MSIL/Adware.Dotdo.CP also known as:

BkavW32.AIDetectMalware.CS
K7AntiVirusAdware ( 0052b2131 )
K7GWAdware ( 0052b2131 )
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Adware.Dotdo.CP
Kasperskynot-a-virus:HEUR:AdWare.MSIL.Agent.gen
SophosGeneric ML PUA (PUA)
F-SecureHeuristic.HEUR/AGEN.1313678
SentinelOneStatic AI – Malicious PE
GoogleDetected
AviraHEUR/AGEN.1313678
VaristW32/MSIL_Troj.ACC.gen!Eldorado
XcitiumApplication.MSIL.Dotdo.CP@7xj8xg
ZoneAlarmnot-a-virus:HEUR:AdWare.MSIL.Agent.gen
CynetMalicious (score: 100)
MalwarebytesAdware.DotDo.Generic
IkarusAdWare.MSIL.Dotdo
FortinetAdware/Dotdo

How to remove MSIL/Adware.Dotdo.CP?

MSIL/Adware.Dotdo.CP removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment