PUA

PUA:Win32/AlotToolbar removal tips

Malware Removal

The PUA:Win32/AlotToolbar is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What PUA:Win32/AlotToolbar virus can do?

  • Sample contains Overlay data
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Authenticode signature is invalid
  • Creates a copy of itself
  • Deletes executed files from disk
  • Anomalous binary characteristics

How to determine PUA:Win32/AlotToolbar?



File Info:

name: F3EE5F908EA22EE404C7.mlw
path: /opt/CAPEv2/storage/binaries/3606a9546c2a9ea27b21431441f502f636bb8adb3c69ef5e0813d675fb4b9825
crc32: 9A8D3692
md5: f3ee5f908ea22ee404c713d885523d27
sha1: a9a903902f7c875fc80daabed6553edcd22c8103
sha256: 3606a9546c2a9ea27b21431441f502f636bb8adb3c69ef5e0813d675fb4b9825
sha512: c779cdbcb11e63198feeb3f987e480250fe8e9b1f49ea2b2e997a81376586f42e1dd9f3ad220d248eef6041fe56d56f017a497be4c96f337cc602fd7696b5153
ssdeep: 3072:CcmVWD5ltbmP3Q7yChrzGYbS9xMh49eCeEj8CuiEfGH68Pm+:pmJIthrKYbS9i2qEduif9
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T160E3E0412B28D89BD9B501B19891DAF9BAB97C1746726FC757D03E5B3C33F80C839612
sha3_384: b31cdc40797f16aefa7b6907e44a52b1bf99004f40f465f6adc5dc17ea3d17d1dbdc10ae4f25f13b46858c2ef1d94503
ep_bytes: 81ecd4020000535556576a2033ed5e89
timestamp: 2009-09-09 13:23:23


Version Info:

CompanyName: ALOT
FileDescription: ALOT Toolbar Setup
FileVersion: 2.5.9000.490
LegalCopyright: © 2009
ProductName: ALOT Toolbar
Translation: 0x0000 0x0000

PUA:Win32/AlotToolbar also known as:

BkavW32.AIDetectMalware
K7AntiVirusRiskware ( 00584baa1 )
K7GWRiskware ( 00584baa1 )
VirITTrojan.Win32.MulDrop2.BSHE
CynetMalicious (score: 100)
SophosAlot Toolbar Installer (PUA)
WebrootW32.Malware.Gen
Antiy-AVLGrayWare/Win32.AlotToolbar
MicrosoftPUA:Win32/AlotToolbar
Cylanceunsafe
RisingPUA.AlotToolbar!8.F648 (CLOUD)
YandexTrojan.Agent!4jDH55FthYw
DeepInstinctMALICIOUS

How to remove PUA:Win32/AlotToolbar?

PUA:Win32/AlotToolbar removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment