Malware

MSIL/WebCompanion.J potentially unwanted removal tips

Malware Removal

The MSIL/WebCompanion.J potentially unwanted is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/WebCompanion.J potentially unwanted virus can do?

  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine MSIL/WebCompanion.J potentially unwanted?



File Info:

name: 5026EAF39534C75B5CC8.mlw
path: /opt/CAPEv2/storage/binaries/a6e4f70cdf4bfa5ba579166194f68f3a91ac8a8246f34ad0c80175f1cf757910
crc32: 4EF9A253
md5: 5026eaf39534c75b5cc8f8884348d629
sha1: 3a64142c1d0de6b28eeb05645a3f94bfd30101bb
sha256: a6e4f70cdf4bfa5ba579166194f68f3a91ac8a8246f34ad0c80175f1cf757910
sha512: ea6ee19b481c7feafa7786ef795e30d84572e427ce86c704179db612e4d5eede0821254471d71b5004aa78675b12b187b548e1eb28f3a78cc95a5e5ed4d41b81
ssdeep: 12288:HG5knZfFKeTDvQuRkbkdSsaRHu4FFjcdXXru0eRXpb0XXKofjzS/03nv:HG50ZfFKmvkbkMsQOlXi0sX5A7fC/Onv
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1DFD4D05079E8CEB2C64081F095747EA17A6B9FD01D1380A3F270657A9BF8B4EC11E6B7
sha3_384: b255e9c58e24561e8a80346ec3d0f278f910511e9ca377c884a607225128aa804170e27c01bf1b8a2642c9080ce91bad
ep_bytes: 558bec6aff68e8b9410068fc47410064
timestamp: 2011-04-18 18:54:06


Version Info:

FileVersion: 9.22 beta
ProductVersion: 9.22 beta
OriginalFilename: 7zS.sfx.exe
InternalName: 7zS.sfx
FileDescription: 7z Setup SFX
CompanyName: Igor Pavlov
LegalCopyright: Copyright (c) 1999-2011 Igor Pavlov
ProductName: 7-Zip
Translation: 0x0409 0x04b0

MSIL/WebCompanion.J potentially unwanted also known as:

BkavW32.Common.B5BCA6A3
DrWebProgram.Unwanted.5342
MalwarebytesGeneric.Malware/Suspicious
K7AntiVirusAdware ( 00593e231 )
K7GWAdware ( 00593e231 )
CrowdStrikewin/grayware_confidence_100% (D)
VirITTrojan.Win32.Agent.BGSH
Elasticmalicious (moderate confidence)
ESET-NOD32a variant of MSIL/WebCompanion.J potentially unwanted
AvastWin32:MiscX-gen [PUP]
WebrootW32.Malware.Gen
CynetMalicious (score: 100)
MaxSecureTrojan.Malware.121218.susgen
AVGWin32:MiscX-gen [PUP]
DeepInstinctMALICIOUS

How to remove MSIL/WebCompanion.J potentially unwanted?

MSIL/WebCompanion.J potentially unwanted removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment