PUA

PUA:Win32/Puasson.A!ml information

Malware Removal

The PUA:Win32/Puasson.A!ml is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What PUA:Win32/Puasson.A!ml virus can do?

  • Executable code extraction
  • Presents an Authenticode digital signature
  • Creates RWX memory
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Attempts to modify proxy settings

Related domains:

z.whorecord.xyz
bestxserver.com
a.tomx.xyz

How to determine PUA:Win32/Puasson.A!ml?



File Info:

crc32: 8ED643F8
md5: 7d170db7d4304a343e77336be2ec3c40
name: installer_free.exe
sha1: cfbcc7ee9b2d3be70532b845ec5456be3fdd13e0
sha256: 2459166ffabc206bbb0f3b3aedb7a511cdbdf46c41899239ed54bbbcf1ecafde
sha512: 862220d8f54e364dba8341a016e6e574fd35a1f91166dcbca21336bc6a526ac25275d7d2dac50d82976ba0682d25e67fae6664e6cc0d12a415f73b37a939fb24
ssdeep: 24576:ATfEWQMHi9jzdDnAV7qK5dFv0oDoL2+8+LpkjL4mYaJILnGDFSPhwbSbdGwHQVoL:6cW4fAj/We+1kjL4mCCsgkd7W0JD
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright:                                                                                                     
FileVersion:                     
CompanyName:                                                             
Comments: This installation was built with Inno Setup.
ProductName:                                                             
ProductVersion: free                                              
FileDescription:                                                             
OriginalFileName:                                                   
Translation: 0x0000 0x04b0

PUA:Win32/Puasson.A!ml also known as:

MicroWorld-eScanApplication.Keylogger.QTE
McAfeeArtemis!7D170DB7D430
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
K7AntiVirusRiskware ( dec003411 )
BitDefenderApplication.Keylogger.QTE
K7GWRiskware ( dec003411 )
Invinceaheuristic
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/KeyLogger.BestFreeKeylogger.C
APEXMalicious
AvastFileRepMetagen [Adw]
Kasperskynot-a-virus:Monitor.Win32.BestFreeKeylogger.n
Ad-AwareApplication.Keylogger.QTE
EmsisoftApplication.Keylogger.QTE (B)
ComodoApplicUnwnt@#3pg0wgafiv07o
McAfee-GW-EditionArtemis
FireEyeApplication.Keylogger.QTE
SophosGeneric PUA MP (PUA)
CyrenW32/Application.JZUZ-4872
MaxSecureTrojan.Malware.74497517.susgen
FortinetRiskware/BestFreeKeylogger
Endgamemalicious (high confidence)
ArcabitApplication.Keylogger.QTE
ZoneAlarmnot-a-virus:Monitor.Win32.BestFreeKeylogger.n
MicrosoftPUA:Win32/Puasson.A!ml
MAXmalware (ai score=78)
PandaGeneric Malware
TrendMicro-HouseCallTROJ_GEN.R002H07JR19
TencentMsil.Risk.Keylogger.Ahyl
GDataApplication.Keylogger.QTE
WebrootW32.Malware.Gen
AVGFileRepMetagen [Adw]
Qihoo-360Win32/Virus.Keylog.258

How to remove PUA:Win32/Puasson.A!ml?

PUA:Win32/Puasson.A!ml removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment