MSIL/Adware.Dotdo.FK malicious file

The MSIL/Adware.Dotdo.FK is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What MSIL/Adware.Dotdo.FK virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Creates RWX memory
Guard pages use detected – possible anti-debugging.
Dynamic (imported) function loading detected
CAPE extracted potentially suspicious content
Authenticode signature is invalid

How to determine MSIL/Adware.Dotdo.FK?


File Info:
name: 12C5296F5C4AD6BA5662.mlw
path: /opt/CAPEv2/storage/binaries/6f7a9adc8abd9b9c762f37b98993372fd03805a596a1b6962ee6a2bfaac26d5e
crc32: 4110A87E
md5: 12c5296f5c4ad6ba56623f29674968af
sha1: a0952f07ae0637425dab17d4443f03f56a7c330b
sha256: 6f7a9adc8abd9b9c762f37b98993372fd03805a596a1b6962ee6a2bfaac26d5e
sha512: aa5cafbad4df50259dc1bcd9ec4f9bedf1e1f5ab87caa6470521277ade64a663f58a23e8da82a65e6ab20499e67c10625dc7089ed257f8fc47c7ba8bc9ec3292
ssdeep: 768:3mBS9MFGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGG3rrrrrrrrrnoooooooouyPyEq1:3nIyPyEqpGR3g7dVlogXgPi
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1680362449E55DC17D3628C76FA95EF1E9A2DB96C2F161323AFB4087CC14CB6F4BA2102
sha3_384: 56a849ebee44fb1f2495c8b3782129dc32841119edb54ba019bd2644b6c8ea9538095deffefeabb225ed23b89e1731f3
ep_bytes: ff250020400000000000000000000000
timestamp: 2018-05-30 01:03:22

Version Info:
Translation: 0x0000 0x04b0
FileDescription: numbed
FileVersion: 5.1.5.139
InternalName: boundless.exe
LegalCopyright:  
OriginalFilename: boundless.exe
ProductVersion: 5.1.5.139
Assembly Version: 5.1.5.139

MSIL/Adware.Dotdo.FK also known as:

Elastic	malicious (high confidence)
MicroWorld-eScan	IL:Trojan.MSILZilla.5029
FireEye	Generic.mg.12c5296f5c4ad6ba
ALYac	IL:Trojan.MSILZilla.5029
K7AntiVirus	Adware ( 005305b51 )
K7GW	Adware ( 005305b51 )
Cybereason	malicious.f5c4ad
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/Adware.Dotdo.FK
Kaspersky	not-a-virus:HEUR:AdWare.MSIL.Agent.gen
BitDefender	IL:Trojan.MSILZilla.5029
Avast	Win32:Adware-gen [Adw]
Ad-Aware	IL:Trojan.MSILZilla.5029
Sophos	Generic ML PUA (PUA)
McAfee-GW-Edition	BehavesLike.Win32.AdwareTskLnk.pm
SentinelOne	Static AI – Malicious PE
Emsisoft	IL:Trojan.MSILZilla.5029 (B)
Ikarus	AdWare.MSIL.Dotdo
Avira	HEUR/AGEN.1122406
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
GData	IL:Trojan.MSILZilla.5029
Cynet	Malicious (score: 99)
McAfee	Adware-TskLnk
VBA32	TScope.Trojan.MSIL
Malwarebytes	MachineLearning/Anomalous.95%
APEX	Malicious
Yandex	PUA.Dotdo!eqHB1xSz8AY
MAX	malware (ai score=87)
MaxSecure	Trojan.Malware.300983.susgen
AVG	Win32:Adware-gen [Adw]
CrowdStrike	win/malicious_confidence_100% (D)

How to remove MSIL/Adware.Dotdo.FK?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

MSIL/Adware.Dotdo.FK malicious file

Gridinsoft Anti-Malware

How to determine MSIL/Adware.Dotdo.FK?

File Info:

Version Info:

MSIL/Adware.Dotdo.FK also known as:

How to remove MSIL/Adware.Dotdo.FK?

About the author

Paul Valéry

Leave a Comment X

Gridinsoft Anti-Malware

How to determine MSIL/Adware.Dotdo.FK?

File Info:

Version Info:

MSIL/Adware.Dotdo.FK also known as:

How to remove MSIL/Adware.Dotdo.FK?

You may also like

About the author

Paul Valéry

Leave a Comment X