What is “Spyware.Ranger”?

The Spyware.Ranger is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Spyware.Ranger virus can do?

• Presents an Authenticode digital signature
• Unconventionial binary language: Chinese (Simplified)
• Unconventionial language used in binary resources: Chinese (Simplified)
• Network activity detected but not expressed in API logs

How to determine Spyware.Ranger?

File Info:
crc32: D1504B11
md5: 104ae16d0c2d5cd6146237bc151da78c
name: 104AE16D0C2D5CD6146237BC151DA78C.mlw
sha1: 6a664dd2679dec73139adfd45cf9ddfa64b7a7e1
sha256: 3d15852ae5471833583d6ecc0206c66696118581b6f3bed1b47a24c1ee27370f
sha512: c9b661d49d1bbef3330e35a4681d575785d558d9a38a5ce21e6a71f1b5bd6cc568fc9318e6ffd8256531b92f25ab3d3d9c7c79fa0f8edc4f806f3a46d90e46d1
ssdeep: 49152:tGmDpBQdeGnFAdGOYHjoBbx/IwUqOp0mBsU0Gx7Yo1S9Jiwz6h1:oupB7JGOY0kwUqakU0Gx7Yo1S9Jijh1
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: x7248x6743x6240x6709 (C) 2008
ProductVersion: 3, 1, 0, 1
FileVersion: 3, 1, 0, 1
OriginalFilename: ODMGuard.EXE
ProductName: ODM
Translation: 0x0804 0x04b0

Spyware.Ranger also known as:

How to remove Spyware.Ranger?

• Download and install GridinSoft Anti-Malware.
• Open GridinSoft Anti-Malware and perform a “Standard scan“.
• “Move to quarantine” all items.
• Open “Tools” tab – Press “Reset Browser Settings“.
• Select proper browser and options – Click “Reset”.
• Restart your computer.