Malware

About “Spammer:Win32/Aslike.C” infection

Malware Removal

The Spammer:Win32/Aslike.C is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Spammer:Win32/Aslike.C virus can do?

  • Creates RWX memory
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Spammer:Win32/Aslike.C?



File Info:

crc32: 42281CE8
md5: 562e5c2f8bba7bf3d472c8a3c115bcbe
name: wsbomb.exe
sha1: 831eb345ed9d022c98736afe604122af829a0bdd
sha256: 50bcdd2f4b488f3aba82e19cd9ff3d3e3668a7f9676174b239ee942a9dc74e48
sha512: b57e8332839b82b669a591e93bd68e94dab4b51ccd1fb4fed845a1b3f6cb73d0a7fdcdbb540ea281655267bf00d80e8a5487d952a90eedb6bce7543ce84c5812
ssdeep: 12288:VBf8heK6QdOMNJkrRR0bnMSfdVbyomAhOwlRbS8+X5UsbKZ:VWeqOQu2MS1VblOw3SBjO
type: PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows


Version Info:

LegalCopyright: x968fx5fc3x5de5x4f5cx5ba4 x7248x6743x6240x6709
InternalName: 
FileVersion: 1.6.2003.824
CompanyName: x968fx5fc3x5de5x4f5cx5ba4
LegalTrademarks: 
Comments: 
ProductName: x968fx5fc3x90aex4ef6x70b8x5f39
ProductVersion: 1.5.0.0
FileDescription: x968fx5fc3x90aex4ef6x5de5x5177
OriginalFilename: 
Translation: 0x0804 0x03a8

Spammer:Win32/Aslike.C also known as:

MicroWorld-eScanMemScan:Trojan.Generic.6664547
FireEyeMemScan:Trojan.Generic.6664547
CAT-QuickHealHacktool.Aslike
McAfeeFDoS-Aslike
ALYacMemScan:Trojan.Generic.6664547
CylanceUnsafe
VIPREHacktool.Flooder (not malicious)
AegisLabHacktool.Win32.Aslike.3!c
SangforMalware
K7AntiVirusDoS-Trojan ( 00003d091 )
BitDefenderMemScan:Trojan.Generic.6664547
K7GWDoS-Trojan ( 00003d091 )
Cybereasonmalicious.f8bba7
TrendMicroTROJ_ASLIKE.C
F-ProtW32/Malware!9a6a
SymantecHacktool.Flooder
ESET-NOD32Win32/Flooder.MailSpam.Aslike.C
TrendMicro-HouseCallTROJ_ASLIKE.C
AvastWin32:Suixin [Trj]
ClamAVWin.Trojan.WSFlood-1
GDataMemScan:Trojan.Generic.6664547
KasperskyEmail-Flooder.Win32.Aslike.c
AlibabaTrojan:Win32/Aslike.8682dac0
NANO-AntivirusTrojan.Win32.Aslike.dbml
TencentWin32.Trojan.Aslike.Stuk
Endgamemalicious (high confidence)
SophosW32/Flooder-V
ComodoTrojWare.Win32.Flooder.MailSpam.C@vs6
F-SecureTrojan.TR/Flooder.MailSpam.Aslike.C
DrWebFDOS.Aslike
ZillyaTool.Aslike.Win32.1
McAfee-GW-EditionBehavesLike.Win32.Dropper.bh
CMCGeneric.Win32.562e5c2f8b!MD
EmsisoftMemScan:Trojan.Generic.6664547 (B)
CyrenW32/Risk.GSGS-6152
JiangminFlooder.MailSpam.WsBomb.16
AviraTR/Flooder.MailSpam.Aslike.C
MAXmalware (ai score=88)
ArcabitTrojan.Generic.D65B163
AhnLab-V3Trojan/Win32.Aslike.R89668
ZoneAlarmEmail-Flooder.Win32.Aslike.c
MicrosoftSpammer:Win32/Aslike.C
VBA32BScope.FDOS.Aslike
Ad-AwareMemScan:Trojan.Generic.6664547
PandaFlooder Program
RisingTrojan.Win32.Generic.122BF1B7 (C64:YzY0Oua0PMn8TpwV)
YandexFlooder.Aslike!Synt8tmOXzs
IkarusEmail-Flooder.Win32.Aslike
MaxSecureTrojan.Malware.1717323.susgen
FortinetW32/Aslike.C!tr
WebrootW32.Email.Spam.Gen
AVGWin32:Suixin [Trj]
Paloaltogeneric.ml

How to remove Spammer:Win32/Aslike.C?

Spammer:Win32/Aslike.C removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment