Ransom

Ransom:MSIL/PadCrypt.A removal guide

Malware Removal

The Ransom:MSIL/PadCrypt.A is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ransom:MSIL/PadCrypt.A virus can do?

    How to determine Ransom:MSIL/PadCrypt.A?

    

    File Info:
    
crc32: 0ECDAC15
    md5: 50bca3c8c57a88f63defa0cee571643b
    name: 50BCA3C8C57A88F63DEFA0CEE571643B.mlw
    sha1: 6c5eaf29b7ceeb7ca5d5f6eae3d8efe35adde62d
    sha256: 99b3910f904981f2fbe619a625dcc7bef6ac8ad075df4f220ee17ce1f814f6e2
    sha512: 95a7854939aa119b998daf518621a943d058b10d03e90c649462924f50591154ae3572e0fad46b0453228221fbd236dd52b3793ad83420ba74dceca30ccfe8d6
    ssdeep: 12288:uk6QrzfwSk1fIZp8NBo4UgaRe1c/0WDM3:/nIp1c8NBolgao1wZa
    type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
    

    Version Info:
    
Translation: 0x0000 0x04b0
    LegalCopyright: 
    Assembly Version: 3.0.2.3
    InternalName: PadCrypt 3.0.exe
    FileVersion: 3.0.2.3
    CompanyName: 
    LegalTrademarks: 
    Comments: 
    ProductName: 
    ProductVersion: 3.0.2.3
    FileDescription: 
    OriginalFilename: PadCrypt 3.0.exe

    Ransom:MSIL/PadCrypt.A also known as:

    K7AntiVirusTrojan ( 00512f281 )
    Elasticmalicious (high confidence)
    CynetMalicious (score: 90)
    ALYacGen:Variant.Ransom.PadCrypt.19
    CylanceUnsafe
    ZillyaTrojan.Filecoder.Win32.4820
    SangforTrojan.Win32.Generic.8
    CrowdStrikewin/malicious_confidence_90% (W)
    AlibabaTrojan:MSIL/Filecoder.ec080f03
    K7GWTrojan ( 00512f281 )
    Cybereasonmalicious.8c57a8
    SymantecRansom.PadCrypt
    ESET-NOD32a variant of MSIL/Filecoder.PadCrypt.G
    APEXMalicious
    AvastMSIL:Ransom-N [Trj]
    KasperskyUDS:DangerousObject.Multi.Generic
    BitDefenderGen:Variant.Ransom.PadCrypt.19
    NANO-AntivirusTrojan.Win32.Ransom.ereraa
    MicroWorld-eScanGen:Variant.Ransom.PadCrypt.19
    TencentWin32.Trojan.Generic.Suxw
    Ad-AwareGen:Variant.Ransom.PadCrypt.19
    SophosMal/Generic-S
    ComodoMalware@#10rpnyyfv6cez
    BitDefenderThetaGen:NN.ZemsilF.34628.In0@aeZPVDe
    VIPRETrojan.Win32.Generic!BT
    TrendMicroTROJ_GEN.R002C0PK720
    McAfee-GW-EditionRansomware-GAK!50BCA3C8C57A
    FireEyeGeneric.mg.50bca3c8c57a88f6
    EmsisoftTrojan.FileCoder (A)
    JiangminTrojan.Generic.bepzv
    AviraHEUR/AGEN.1105877
    eGambitUnsafe.AI_Score_99%
    MicrosoftRansom:MSIL/PadCrypt.A
    AegisLabTrojan.Win32.Generic.4!c
    GDataMSIL.Trojan-Ransom.PadCrypt.F
    AhnLab-V3Trojan/Win32.FileCoder.C2496094
    McAfeeRansomware-GAK!50BCA3C8C57A
    MAXmalware (ai score=84)
    MalwarebytesMalware.AI.4258544602
    PandaTrj/GdSda.A
    TrendMicro-HouseCallTROJ_GEN.R002C0PK720
    RisingRansom.FileCryptor!8.1A7 (CLOUD)
    YandexTrojan.Filecoder!Zg0ENhE7xzo
    SentinelOneStatic AI – Malicious PE
    FortinetMSIL/Filecoder_PadCrypt.G!tr
    AVGMSIL:Ransom-N [Trj]
    Paloaltogeneric.ml
    Qihoo-360Win32/Ransom.Generic.HgIASOgA

    How to remove Ransom:MSIL/PadCrypt.A?

    Ransom:MSIL/PadCrypt.A removal tool
    • Download and install GridinSoft Anti-Malware.
    • Open GridinSoft Anti-Malware and perform a “Standard scan“.
    • Move to quarantine” all items.
    • Open “Tools” tab – Press “Reset Browser Settings“.
    • Select proper browser and options – Click “Reset”.
    • Restart your computer.

    You may also like

    About the author

    Paul Valéry

    I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

    View all posts

    Leave a Comment