PUA

Should I remove “PUA:Win32/Vintaller”?

Malware Removal

The PUA:Win32/Vintaller is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What PUA:Win32/Vintaller virus can do?

  • Creates RWX memory
  • Unconventionial binary language: Russian
  • Unconventionial language used in binary resources: Ukrainian

How to determine PUA:Win32/Vintaller?



File Info:

crc32: 45F6D2CE
md5: ca04fde356823d611f333253c54fdaee
name: CA04FDE356823D611F333253C54FDAEE.mlw
sha1: 7adbe0a069549f9c551f39ce4042278a9509dada
sha256: 53968b25802d5e30f9f28a2011d0576b459b70300b4fe9b08c76e3f7970ea9ce
sha512: 29e1aabdfce98c5b34eca06282bbd8a1905f885a6007c88e7f563de7224fad307080c185e432f27db821e895885709699946c9c4762df12cba2b85ef143c99d3
ssdeep: 24576:BITc8/KnVxPsQQfjqRJ8fwu6qxWKkCuioBISop/8L88QQ7fWL4TMOJYik:B18sXSfAqiDaSl88QQ7hTNa
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: 
InternalName: 
FileVersion: 2.3.7.5553
CompanyName: 
LegalTrademarks: 
Comments: 
ProductName: 
ProductVersion: 1.0.0.0
FileDescription: 
OriginalFilename: 
Translation: 0x0419 0x04e3

PUA:Win32/Vintaller also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 7000000f1 )
Elasticmalicious (high confidence)
DrWebTrojan.SMSSend.5626
CynetMalicious (score: 99)
ALYacGen:Variant.Application.Bundler.FileTour.4
CylanceUnsafe
ZillyaAdware.FileTour.Win32.15
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_60% (D)
K7GWTrojan ( 7000000f1 )
Cybereasonmalicious.356823
CyrenW32/A-561616fc!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Adware.FileTour.GK
APEXMalicious
AvastWin32:SMSSend-CKK [Trj]
KasperskyHoax.Win32.FakeInstaller.rv
BitDefenderGen:Variant.Application.Bundler.FileTour.4
NANO-AntivirusRiskware.Win32.FakeInstaller.faduji
MicroWorld-eScanGen:Variant.Application.Bundler.FileTour.4
TencentMalware.Win32.Gencirc.114bee6c
Ad-AwareGen:Variant.Application.Bundler.FileTour.4
SophosFileTour (PUA)
ComodoApplicUnwnt@#s3a3chuc71rw
BitDefenderThetaAI:Packer.BDF024E019
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.PUP.th
FireEyeGeneric.mg.ca04fde356823d61
EmsisoftGen:Variant.Application.Bundler.FileTour.4 (B)
JiangminHoax.FakeInstaller.pu
AviraADWARE/Adware.Gen4
KingsoftWin32.Heur.KVM011.a.(kcloud)
MicrosoftPUA:Win32/Vintaller
GDataGen:Variant.Application.Bundler.FileTour.4
AhnLab-V3Adware/Win32.SMSHoax.R124979
McAfeeArtemis!CA04FDE35682
MAXmalware (ai score=75)
VBA32TScope.Trojan.Delf
PandaTrj/Genetic.gen
RisingHoax.FakeInstaller!8.1ED (CLOUD)
MaxSecureTrojan.Malware.9379846.susgen
FortinetRiskware/FakeInstaller
AVGWin32:SMSSend-CKK [Trj]
Qihoo-360Win32/Ransom.FakeInstaller.HwUBEpsA

How to remove PUA:Win32/Vintaller?

PUA:Win32/Vintaller removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment