Trojan

Trojan:Win32/Vidotuk removal tips

Malware Removal

The Trojan:Win32/Vidotuk is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/Vidotuk virus can do?

  • Presents an Authenticode digital signature
  • Reads data out of its own binary image
  • Unconventionial language used in binary resources: Korean
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX

Related domains:

www.yesform.com

How to determine Trojan:Win32/Vidotuk?



File Info:

crc32: 993DDBF9
md5: fbd96901689bda3ec3471db07c229b23
name: update_chg.exe
sha1: fcf370354a752bdef9ed06de08b9caef72a06c11
sha256: 4435fd1a839467b37ee4c98718d376f2db3dff764763faee28c3767a983d935c
sha512: 801547546b23e6d1f031227d26091ee780facd4b96cc79391f969c2c0d1830b5fba14f35529950fb26cf9efd5320a3171c68d20b7c83be8112bbe65dfcd3ed32
ssdeep: 6144:/lZ/zUMu4pDSxsCMRzf7x3SfS1JAzXBtL76lXRPmt9T2Ug2pGadnEZ:/HLUMuiv9RgfSjAzRtyBiT2xWGknE
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

LegalCopyright: Yesform
FileVersion: 2.1.0.3
Comments: http://www.yesform.com
FileDescription: xc608xc2a4xd3fc xbb34xb8ccxb2e4xc6b4xb85cxb4dc xc5c5xb370xc774xd2b8
Translation: 0x0412 0x04b0

Trojan:Win32/Vidotuk also known as:

MicroWorld-eScanGen:Variant.Ursu.239017
FireEyeGen:Variant.Ursu.239017
Qihoo-360Win32/Trojan.b67
McAfeeArtemis!FBD96901689B
VIPRETrojan-Downloader.Win32.Agent
BitDefenderGen:Variant.Ursu.239017
SymantecTrojan.Gen.MBT
AvastWin32:Malware-gen
ClamAVWin.Trojan.8075362-1
GDataGen:Variant.Ursu.239017
KasperskyUDS:DangerousObject.Multi.Generic
AlibabaTrojan:Win32/Vidotuk.3f4478da
Ad-AwareGen:Variant.Ursu.239017
EmsisoftGen:Variant.Ursu.239017 (B)
ComodoTrojWare.Win32.Buzus.dcwo@4pl9q7
ZillyaDownloader.Genome.Win32.71525
Invinceaheuristic
McAfee-GW-EditionArtemis
SophosMal/Generic-S
IkarusTrojan.Dropper
ArcabitTrojan.Ursu.D3A5A9
ZoneAlarmUDS:DangerousObject.Multi.Generic
MicrosoftTrojan:Win32/Vidotuk
ALYacGen:Variant.Ursu.239017
MAXmalware (ai score=94)
CylanceUnsafe
FortinetW32/Generic!tr.dldr
AVGWin32:Malware-gen
Cybereasonmalicious.1689bd
Paloaltogeneric.ml
MaxSecureWorm.Win32.AutoIt.QN

How to remove Trojan:Win32/Vidotuk?

Trojan:Win32/Vidotuk removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment