Trojan

Trojan:Win32/SMSer.B removal instruction

Malware Removal

The Trojan:Win32/SMSer.B is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/SMSer.B virus can do?

  • A process attempted to delay the analysis task.
  • Installs itself for autorun at Windows startup
  • Attempts to modify proxy settings
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
f3g3fff3fggff3.com
zsgszzzszggzzs.com
nlglnnnlnggnnl.com
4jgj444j4gg44j.com
9aga999a9gg99a.com
rygyrrryrggrry.com
a.tomx.xyz
ogggooogoggoog.com
lpgplllplggllp.com
bygybbbybggbby.com
3igi333i3gg33i.com
8aga888a8gg88a.com
eigieeeieggeei.com
iogoiiioiggiio.com
d6g6ddd6dggdd6.com
k8g8kkk8kggkk8.com
ggggsggzszgggg.com
csgsjzzjjcgzzs.com
3lglcnnbcmgnnl.com
0jgj144c12g44j.com
uaga699h66g99a.com
fygyqrraq8grry.com
xgggyoozywgoog.com
23g3aff8aigff3.com
9pgphllghpgllp.com

How to determine Trojan:Win32/SMSer.B?



File Info:

crc32: E7C58600
md5: b6c0113ccf1b735bb39fabc4c1dd225f
name: B6C0113CCF1B735BB39FABC4C1DD225F.mlw
sha1: ee48f3dc03069dd6d71da9c4fd38b0436cd24ff3
sha256: 7e4fa50f234169c9681150a3d9b8b8348cbcff2c4961f92665235996e05ba4c8
sha512: d3cf5bf41b461260c825cf0be73cdb7a47a21ad831cadf783afab04f50ee2bb24529a70d10ff92fa372c1fd2842d27861fbb64a2a09c5b516bfcd81c14aea41f
ssdeep: 3072:4kogThL7EWXmeyFyRihOobzmga3at1rkogThL7EWXmeyFyRihOobzmga3atQ:ggNAtoqbzYSFgNAtoqbzYL
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Trojan:Win32/SMSer.B also known as:

K7AntiVirusRiskware ( 0040eff71 )
Elasticmalicious (high confidence)
DrWebTrojan.Winlock.55
CynetMalicious (score: 100)
ALYacTrojan.Ransom.H
CylanceUnsafe
ZillyaTrojan.Ransom.Win32.2
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_60% (D)
AlibabaRansom:Win32/WinBlocker.e080cdbb
K7GWRiskware ( 0040eff71 )
Cybereasonmalicious.ccf1b7
SymantecTrojan.Ransomlock
ESET-NOD32a variant of Win32/Ransom.F
APEXMalicious
AvastWin32:Trojan-gen
KasperskyTrojan-Ransom.Win32.WinBlocker.s
BitDefenderTrojan.Ransom.H
NANO-AntivirusTrojan.Win32.WinBlocker.fodmly
ViRobotTrojan.Win32.Agent.109568.CB
MicroWorld-eScanTrojan.Ransom.H
TencentWin32.Trojan.Winblocker.Phga
Ad-AwareTrojan.Ransom.H
SophosTroj/SMSer-Gen
ComodoMalware@#rbfj8t12hai8
F-SecureHeuristic.HEUR/AGEN.1130296
BitDefenderThetaGen:NN.ZexaF.34170.nqZ@aqwn9Og
VIPRETrojan.Win32.Generic!BT
TrendMicroTROJ_RANSOM.CN
McAfee-GW-EditionBehavesLike.Win32.Generic.dh
FireEyeGeneric.mg.b6c0113ccf1b735b
EmsisoftTrojan.Ransom.H (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan/Agent.cjht
AviraHEUR/AGEN.1130296
eGambitUnsafe.AI_Score_98%
Antiy-AVLTrojan/Generic.ASMalwS.EBB56C
MicrosoftTrojan:Win32/SMSer.B
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataTrojan.Ransom.H
AhnLab-V3Trojan/Win32.Agent.C16724
McAfeeGenericRXJM-IE!B6C0113CCF1B
MAXmalware (ai score=80)
VBA32BScope.TrojanRansom.WinBlocker
MalwarebytesMachineLearning/Anomalous.96%
PandaTrj/CI.A
TrendMicro-HouseCallTROJ_RANSOM.CN
YandexTrojan.GenAsa!OmtiekEJ6+4
IkarusTrojan-Ransom.Blocker
MaxSecureTrojan.Malware.1173345.susgen
FortinetW32/WinBlocker.S!tr
AVGWin32:Trojan-gen
Paloaltogeneric.ml

How to remove Trojan:Win32/SMSer.B?

Trojan:Win32/SMSer.B removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment