Adware

What is “NSIS/Adware.Runner.Q”?

Malware Removal

The NSIS/Adware.Runner.Q is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What NSIS/Adware.Runner.Q virus can do?

  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • Authenticode signature is invalid
  • Installs itself for autorun at Windows startup
  • Attempts to modify browser security settings

How to determine NSIS/Adware.Runner.Q?



File Info:

name: 5A4FB7F39C6011F6A1B6.mlw
path: /opt/CAPEv2/storage/binaries/528259f784ac3585392f609aafbdcfb3af45fab3a2efbe948e2d400b3fa0eec0
crc32: FE6D718D
md5: 5a4fb7f39c6011f6a1b6289bdc20e08e
sha1: 616d677dd6ef5e2c1363903455fd7d70be3f4f32
sha256: 528259f784ac3585392f609aafbdcfb3af45fab3a2efbe948e2d400b3fa0eec0
sha512: 14e43d67b76caa0136b396b2ac8a898e12a222f934b97f75059d5c0af02a632482dbf2d12acc28bad3e183c1b9dc8e2247b426c80cfdef778043e378a581fe46
ssdeep: 768:1n04RNfdSXe28HjPxWlk0CoCzXtBi4PY//I0D3fmoxbxAuauIRdzOc1p2Ijpd0lF:904f1SMHjZ0k/tB1g//I0DuoxbxAHscE
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1AF13AF1727A0D8F7C56607700D7BAB6AEFFAC20421A9470B97541F997C63AC34B1F292
sha3_384: 27ebbb2fd9274abee1239ea52f54f514f33583ef177d9d43ca7eb05b76afd60306496a8c62d48f24a81528157cc83e57
ep_bytes: 81ec8401000053565733db6801800000
timestamp: 2020-08-01 02:44:50


Version Info:

0: [No Data]

NSIS/Adware.Runner.Q also known as:

CynetMalicious (score: 100)
FireEyeGeneric.mg.5a4fb7f39c6011f6
McAfeeArtemis!5A4FB7F39C60
CylanceUnsafe
AlibabaTrojan:Win32/RegRun.830a454d
K7GWAdware ( 0058abd91 )
K7AntiVirusAdware ( 0058abd91 )
SymantecPUA.Gen.2
ESET-NOD32NSIS/Adware.Runner.Q
APEXMalicious
Paloaltogeneric.ml
KasperskyHEUR:Trojan.Win32.RegRun.gen
AvastWin32:Adware-gen [Adw]
TencentWin32.Trojan.Regrun.Swbn
McAfee-GW-EditionBehavesLike.Win32.Vopak.ph
SophosMal/Generic-S
GDataWin32.Trojan.Agent.3V4MXY
AviraTR/Regrun.nxnte
GridinsoftRansom.Win32.Sabsik.sa
MicrosoftTrojan:Win32/Wacatac.B!ml
TrendMicro-HouseCallTROJ_GEN.R002H0DL821
SentinelOneStatic AI – Suspicious PE
AVGWin32:Adware-gen [Adw]
Cybereasonmalicious.dd6ef5

How to remove NSIS/Adware.Runner.Q?

NSIS/Adware.Runner.Q removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment