PUA

PUA:Win32/MySafeProxy removal tips

Malware Removal

The PUA:Win32/MySafeProxy is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What PUA:Win32/MySafeProxy virus can do?

  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • Authenticode signature is invalid

How to determine PUA:Win32/MySafeProxy?



File Info:

name: 95DB402932EFED941727.mlw
path: /opt/CAPEv2/storage/binaries/fab78dac1baee0bac7d60a7f97e562190881435fcdcbb9bfb74b2c192ef3cde8
crc32: A299A688
md5: 95db402932efed9417274767e0ac0dc3
sha1: b8eecc6f467f2c3004ac958c90f9d33c4c55f1e4
sha256: fab78dac1baee0bac7d60a7f97e562190881435fcdcbb9bfb74b2c192ef3cde8
sha512: b2c790993cde70c4b405da33b99f7613ab9cf26cbd00fc9682a5ea7877ac059db88e406c402cf6efcab8c9d08371ab3b001eb92ad2233c0bc57d57fe26b69c13
ssdeep: 3072:3N/dnKomaPWTyXtAn58/RXNLHzCxT6HL0C1+1o+3KsYUuTylM5xQlqBMwx:3LnyaPWWdZRNCx6LvE6Ds6ycaiMwx
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T197549E1136A1C031D173027159E8E77655BEBD714E71960BBBE82F4E5EB02C2FA22B27
sha3_384: 6eace0c08e386409c718f6a5e63ed10bab6e56c53aae977b023abf01de19fa1124e395984dbd96e26b6e8e907b3934a8
ep_bytes: e8e0c40000e97bfeffffcccccccccccc
timestamp: 2014-08-06 13:08:15


Version Info:

CompanyName: XTRM Group Ltd.
FileDescription: MySafeProxy Installer
FileVersion: 1.0.4.0
InternalName: MySafeProxy Installer
LegalCopyright: Copyright (C) XTRM Group Ltd. All rights reserved.
OriginalFilename: MySafeProxyInstaller.exe
ProductName: MySafeProxy
ProductVersion: 1.0.4.0
Translation: 0x0409 0x04b0

PUA:Win32/MySafeProxy also known as:

BkavW32.Common.B402D58D
LionicAdware.Win32.MyProxySafe.2!c
Elasticmalicious (high confidence)
DrWebAdware.Siggen.31658
MalwarebytesPUP.Optional.MySafeProxy
ZillyaAdware.MyProxySafeCRTD.Win32.1224
AlibabaAdWare:Win32/MyProxySafe.83240c40
VirITPUP.Win32.XTRM.A
APEXMalicious
NANO-AntivirusRiskware.Win32.MyProxySafe.ejjyzz
AvastWin32:AdwareSig [Adw]
JiangminAdWare.MyProxySafe.f
WebrootPua.My.Safe.Proxy
MicrosoftPUA:Win32/MySafeProxy
RisingAdware.MyProxySafe!8.141C3 (CLOUD)
YandexPUA.MyProxySafe!CT/RvTliCC0
MaxSecureTrojan.Malware.12230758.susgen
AVGWin32:AdwareSig [Adw]
DeepInstinctMALICIOUS
CrowdStrikewin/grayware_confidence_70% (W)

How to remove PUA:Win32/MySafeProxy?

PUA:Win32/MySafeProxy removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment