PUA

PDF Decrypt (PUA) removal instruction

Malware Removal

The PDF Decrypt (PUA) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What PDF Decrypt (PUA) virus can do?

  • Authenticode signature is invalid

Related domains:

wpad.local-net

How to determine PDF Decrypt (PUA)?



File Info:

name: 1448243DEC5DD7FDFFC1.mlw
path: /opt/CAPEv2/storage/binaries/67d586a026a33a39b29da595a0d5c4f61e75cb4ce5bb8327b20e6764d0c5d926
crc32: 8CBDE2C1
md5: 1448243dec5dd7fdffc1303e6ee55d0e
sha1: 2dcc56c89755f13538d2c0fe886d059080e121a0
sha256: 67d586a026a33a39b29da595a0d5c4f61e75cb4ce5bb8327b20e6764d0c5d926
sha512: 180cfdccab46209bba8ea1875ed70dff97170989f7f22998cdd155852c55bfa47530bdb9afa2485799a22b923d2f4b6e4e13abec7288917ab2b69a099c0a9d01
ssdeep: 12288:00K+jyTIQVrjRDLZfmx00TCXlhfawB5rqOLaPP2bhHG:lMIQLLxmM7aPP2o
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T152059D22F5E240F0D6561130146AB73EBA38FA06CB155B83E3A4ED3D1E3E7D1953726A
sha3_384: cfad1b8eaa542dd4d7bd6c2efa2c3a3f1e8b8017d2ec48ccc00c82177b9c7d276307797f3a529b47e351f4484bf1f2c3
ep_bytes: 558bec6aff68e8bc480068249e460064
timestamp: 2007-05-31 05:52:42


Version Info:

Comments: PDF Password Remover
CompanyName: Copyright (C) 2000-2007 VeryPDF.com Inc
FileDescription: PDF Password Remover
FileVersion: 3, 0, 0, 1
InternalName: PDF Password Remover
LegalCopyright: Copyright (C) 2000-2007 VeryPDF.com Inc
LegalTrademarks: 
OriginalFilename: winDecrypt.EXE
PrivateBuild: 
ProductName: PDF Password Remover
ProductVersion: 3, 0, 0, 1
SpecialBuild: 
Translation: 0x0409 0x04b0

PDF Decrypt (PUA) also known as:

LionicTrojan.Win32.Generic.4!c
CAT-QuickHealTrojan.GenericPMF.S3091753
CylanceUnsafe
ZillyaTrojan.PSWTool.Win32.16
K7AntiVirusUnwanted-Program ( 004d38111 )
K7GWUnwanted-Program ( 004d38111 )
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/PSWTool.PdfCracker.A potentially unsafe
NANO-AntivirusTrojan.Win32.Ool.dfwdxh
SophosPDF Decrypt (PUA)
VIPRETrojan.Win32.Generic!BT
GridinsoftRansom.Win32.Wacatac.sa
MicrosoftTrojan:Win32/Wacatac.B!ml
MalwarebytesMalware.AI.1483824826
APEXMalicious
YandexTrojan.GenAsa!8wk7WULe+94

How to remove PDF Decrypt (PUA)?

PDF Decrypt (PUA) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment