Malware

NSIS:Loderka-A [Adw] removal

Malware Removal

The NSIS:Loderka-A [Adw] is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What NSIS:Loderka-A [Adw] virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Network activity detected but not expressed in API logs

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine NSIS:Loderka-A [Adw]?



File Info:

crc32: FD0E74BD
md5: ec85b3c5bd089574759faa4335c1cb17
name: EC85B3C5BD089574759FAA4335C1CB17.mlw
sha1: 4bc27d661d20a8fd92bcf66d7d9025f0600dec35
sha256: 807750ab7f9ee9d32fa6a594b81dc96ba8f37a8498f4384fc9b49f9764e21c70
sha512: bd3626a813a7dc1ca58a776f3fcd15ee6d159319943ad2bb9bdaebd7c665b65243c28b716016beca1073731c18ef114478be546453ee187f0503f33edd196b96
ssdeep: 24576:iMjhb3gBd29fUv/4gABpWq42bR0AogoHrW3+2rXvAYEF60qZ0:xOgUv/zojR0AArWO2r/Amo
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: xa9 Game                                                                                              
FileVersion: 1.0.0               
CompanyName: GamerPackz                                                  
Comments: This installation was built with Inno Setup.
ProductName: Crysis 2                                                    
ProductVersion: 1.1.1.6156          
FileDescription: Setup For Crysis 2                                          
Translation: 0x0000 0x04b0

NSIS:Loderka-A [Adw] also known as:

K7AntiVirusAdware ( 005794cc1 )
ALYacTrojan.GenericKD.46578483
AlibabaAdWare:Win32/Loderka.3a7f597a
K7GWAdware ( 005794cc1 )
SymantecRansom.Hermes!gen2
ESET-NOD32multiple detections
AvastNSIS:Loderka-A [Adw]
BitDefenderTrojan.GenericKD.46578483
MicroWorld-eScanTrojan.GenericKD.46578483
Ad-AwareTrojan.GenericKD.46578483
SophosGeneric PUA EL (PUA)
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.BadFile.tc
FireEyeTrojan.GenericKD.46578483
EmsisoftTrojan.GenericKD.46578483 (B)
AviraHEUR/AGEN.1142807
MicrosoftPUA:Win32/Presenoker
ArcabitTrojan.Generic.D2C6BB33
GDataTrojan.GenericKD.46578483
McAfeeArtemis!EC85B3C5BD08
MAXmalware (ai score=86)
VBA32TScope.Trojan.Delf
TrendMicro-HouseCallTROJ_GEN.R002H09G721
MaxSecureTrojan.Malware.121218.susgen
FortinetRiskware/multiple_detections
AVGNSIS:Loderka-A [Adw]

How to remove NSIS:Loderka-A [Adw]?

NSIS:Loderka-A [Adw] removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment