PUA.WacapewVMF.S20641102 removal instruction

Malware Removal

The PUA.WacapewVMF.S20641102 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What PUA.WacapewVMF.S20641102 virus can do?

  • Executable code extraction
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine PUA.WacapewVMF.S20641102?


File Info:

crc32: 83F92E32
md5: 8d1272819f10172a1dd4e0fdcce4e204
name: 8D1272819F10172A1DD4E0FDCCE4E204.mlw
sha1: b535139978f7eda8c1ac30b8cdd3a7b538b79577
sha256: 6d0e93381619af9381b88ee14d70ef3ea74515c881947f2513e074818e6aec7a
sha512: 910660662fd28acceba651abb642fcdaaa495c82a7fc861f81c99c9637b454a1485d076b3a2325f859b751150b7984b7d164f686691564b8cff2e58a3ea7183c
ssdeep: 6144:GjjYwyuPSP8Jf0vs/9y3qBBjHvaWNAK8QSzhPkv36KPRZEZfK248PecmYFyTAG9J:GjMdu60Jf0U/9yipHC+0dPq3H7AtubJ
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

Translation: 0x0804 0x04b0
InternalName: x67f3x5ddex4e94x83f1x56dbx8f74x62e7x7d27x673a2011-9-5
FileVersion: 1.00
CompanyName: x5faex8f6fx4e2dx56fd
ProductName: x53ccx8f74x62e7x7d27x673a
ProductVersion: 1.00
OriginalFilename: x67f3x5ddex4e94x83f1x56dbx8f74x62e7x7d27x673a2011-9-5.exe

PUA.WacapewVMF.S20641102 also known as:

BkavW32.AIDetect.malware1
LionicVirus.Win32.Zmepdb.n!c
CAT-QuickHealPUA.WacapewVMF.S20641102
McAfeeArtemis!8D1272819F10
CylanceUnsafe
SangforRiskware.Win32.Wacapew.C
CrowdStrikewin/malicious_confidence_80% (D)
Cybereasonmalicious.19f101
SymantecTrojan.Gen.2
APEXMalicious
AvastFileRepMalware
CynetMalicious (score: 100)
BitDefenderGen:Malware.Heur.1.Hm0@b8zMepdb
NANO-AntivirusVirus.Win32.Virut-Gen.bwpxnc
MicroWorld-eScanGen:Malware.Heur.1.Hm0@b8zMepdb
Ad-AwareGen:Malware.Heur.1.Hm0@b8zMepdb
BitDefenderThetaGen:NN.ZevbaF.34058.Hm0@a8zMepdb
VIPREVirus.Win32.Sality.atbh (v)
FireEyeGeneric.mg.8d1272819f10172a
EmsisoftGen:Malware.Heur.1.Hm0@b8zMepdb (B)
SentinelOneStatic AI – Suspicious PE
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataGen:Malware.Heur.1.Hm0@b8zMepdb
MAXmalware (ai score=97)
TrendMicro-HouseCallTROJ_GEN.R002H09DQ21
MaxSecureTrojan.Malware.117942088.susgen
AVGFileRepMalware
Paloaltogeneric.ml
Qihoo-360Win32/Trojan.Generic.HgAASTAA

How to remove PUA.WacapewVMF.S20641102?

PUA.WacapewVMF.S20641102 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment