Adware PUA

NSIS:Adware-OK [PUP] removal guide

Malware Removal

The NSIS:Adware-OK [PUP] is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What NSIS:Adware-OK [PUP] virus can do?

  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Performs HTTP requests potentially not found in PCAP.
  • Reads data out of its own binary image
  • Authenticode signature is invalid
  • Attempts to modify proxy settings

How to determine NSIS:Adware-OK [PUP]?



File Info:

name: 886CEF7D5995A678E478.mlw
path: /opt/CAPEv2/storage/binaries/c2ada2b99f41288246cd301d4ab141b0a0488f6d664013196985055a8c3310c6
crc32: 992BA24B
md5: 886cef7d5995a678e47808f816744bea
sha1: f0446dc492f164b3f217ce911afaa18d74b2e892
sha256: c2ada2b99f41288246cd301d4ab141b0a0488f6d664013196985055a8c3310c6
sha512: 84832166fa9d4844ad4d356160dc0212529f8f9a88fdb6956640c5a9f4b525491e5b3330b908e5832d01dc65a3075311d7eeef807c253081d57af8a208291b06
ssdeep: 1536:6pgpHzb9dZVX9fHMvG0D3XJBelEyeV/Bf20mIc7Z:4gXdZt9P6D3XJUOy8/BO0o7Z
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T10F66E1079AE6CD77DDA70A7002BB7379E3FBC2C90241664747587FBE6E521838A24291
sha3_384: c00ecfe1d902bca5c76754fa74cebd5866ad8eb895cbbe5200743f9eb30de1b91cab0ba2a33dde7640d3d9a878f8fee2
ep_bytes: 81ec8001000053555633db57895c2418
timestamp: 2009-12-05 22:50:52


Version Info:

0: [No Data]

NSIS:Adware-OK [PUP] also known as:

BkavW32.AIDetect.malware2
Elasticmalicious (high confidence)
FireEyeGeneric.mg.886cef7d5995a678
McAfeeArtemis!886CEF7D5995
K7AntiVirusAdware ( 0052e1b41 )
AlibabaAdWare:Win32/Generic.58205511
K7GWAdware ( 0052e1b41 )
Cybereasonmalicious.492f16
SymantecDownloader
ESET-NOD32NSIS/Adware.Agent.S
APEXMalicious
Paloaltogeneric.ml
Kasperskynot-a-virus:HEUR:AdWare.NSIS.Agent.gen
NANO-AntivirusTrojan.Nsis.Mlw.fjtpud
AvastNSIS:Adware-OK [PUP]
SophosGeneric Reputation PUA (PUA)
DrWebAdware.Downware.19319
ZillyaDownloader.Genome.Win32.68586
TrendMicroTROJ_GEN.R002C0OKR21
McAfee-GW-EditionArtemis
SentinelOneStatic AI – Suspicious PE
AviraHEUR/AGEN.1124300
Antiy-AVLTrojan/Generic.ASMalwNS.19F
MicrosoftTrojan:Win32/Bitrep.B
GridinsoftRansom.Win32.Gen.sa
CynetMalicious (score: 100)
VBA32Adware.Agent
TrendMicro-HouseCallTROJ_GEN.R002C0OKR21
FortinetNSIS/CoinMiner.ITKX!tr
AVGNSIS:Adware-OK [PUP]

How to remove NSIS:Adware-OK [PUP]?

NSIS:Adware-OK [PUP] removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment