PWS:Win32/Fareit.VK!MTB removal tips

The PWS:Win32/Fareit.VK!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What PWS:Win32/Fareit.VK!MTB virus can do?

Unconventionial language used in binary resources: Russian
Attempts to modify proxy settings
Anomalous binary characteristics

Related domains:

z.whorecord.xyz

a.tomx.xyz

thisaintpc.com

How to determine PWS:Win32/Fareit.VK!MTB?


File Info:
crc32: 5900D771
md5: 09880304fe880adfc28550d51bfcc48e
name: 09880304FE880ADFC28550D51BFCC48E.mlw
sha1: 4cf3833fb78ceff38292a03457cfe0150414d117
sha256: 3f4fcba5e0698d8fba2490f09b01071b5beb6f66b3f62ea8feede49789c165e2
sha512: 2ea96fa9f467d78ec47f0eff3981cb58ea06e28b5d0a16f78509af507755e1bd62267c63f7a5f26c94377d1dd98e1a1ad982f0a1f5c9107a90311891acce0684
ssdeep: 768:jxDDnyAiIbhn+oRTaFSxjquEDFAnA1tLRNk2djaYoCMHosOAJMPsED3VK2+ZtyOd:jxDDnd1Raqq2uBNdSCM+YTjipvF2Pl
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
0: [No Data]

PWS:Win32/Fareit.VK!MTB also known as:

K7AntiVirus	Trojan ( 004fe8961 )
DrWeb	Trojan.DownLoad3.28161
MicroWorld-eScan	Trojan.Downloader.JQAP
CAT-QuickHeal	Trojan.Mauvaise.SL1
ALYac	Trojan.Downloader.JQAP
Cylance	Unsafe
Zillya	Trojan.Buzus.Win32.117902
Sangfor	Malware
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	TrojanDownloader:Win32/Small.fb4522b6
K7GW	Trojan ( 004fe8961 )
Cybereason	malicious.4fe880
TrendMicro	TSPY_FAREIT.AHP
Baidu	Win32.Trojan-Spy.Zbot.a
Cyren	W32/Trojan.KFRI-0889
Symantec	Downloader
ESET-NOD32	Win32/TrojanDownloader.Small.PRL
Zoner	Trojan.Win32.20972
APEX	Malicious
TotalDefense	Win32/Upatre.BX
Avast	Win32:Malware-gen
ClamAV	Win.Downloader.Upatre-5744087-0
GData	Trojan.Downloader.JQAP
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	Trojan.Downloader.JQAP
NANO-Antivirus	Trojan.Win32.DownLoad3.cjdyni
ViRobot	Trojan.Win32.Upatre.51256
Tencent	Malware.Win32.Gencirc.10b85cc8
Ad-Aware	Trojan.Downloader.JQAP
Sophos	Troj/Agent-ADIW
Comodo	TrojWare.Win32.TrojanDownloader.Small.PR@5276zr
BitDefenderTheta	Gen:NN.ZexaF.34110.fuZ@aC3aTjik
VIPRE	Trojan-Downloader.Win32.Small.aabb (v)
Invincea	heuristic
McAfee-GW-Edition	BehavesLike.Win32.PWSZbot.mm
Trapmine	malicious.moderate.ml.score
FireEye	Generic.mg.09880304fe880adf
Emsisoft	Trojan.Downloader.JQAP (B)
SentinelOne	DFI – Malicious PE
F-Prot	W32/Trojan2.OBOK
Endgame	malicious (high confidence)
Avira	TR/Spy.Zbot.amz.2
eGambit	Unsafe.AI_Score_99%
Antiy-AVL	Trojan/Win32.Buzus
Microsoft	PWS:Win32/Fareit.VK!MTB
Jiangmin	Trojan/Buzus.bnwn
Arcabit	Trojan.Downloader.JQAP
AegisLab	Trojan.Win32.Generic.4!e
ZoneAlarm	HEUR:Trojan.Win32.Generic
AhnLab-V3	Trojan/Win32.Zbot.R80711
Acronis	suspicious
McAfee	PWSZbot-FEV!09880304FE88
MAX	malware (ai score=82)
VBA32	Trojan.Fareit.2883
Malwarebytes	Trojan.Upatre
Panda	Generic Malware
TrendMicro-HouseCall	TSPY_FAREIT.AHP
Rising	Dropper.Generic!8.35E (TFE:dGZlOgVMxIOC84dlUQ)
Yandex	TrojanSpy.ZBot!168d6X6+yA4
Ikarus	Trojan-Spy.Win32.Zbot
MaxSecure	Trojan.Upatre.Gen
Fortinet	W32/Kryptik.BIYN!tr
AVG	Win32:Malware-gen
Paloalto	generic.ml
Qihoo-360	Win32/Trojan.FakePDF.AK

How to remove PWS:Win32/Fareit.VK!MTB?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

PWS:Win32/Fareit.VK!MTB removal tips