Virus

Should I remove “UDS:Virus.Win32.Infector”?

Malware Removal

The UDS:Virus.Win32.Infector is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What UDS:Virus.Win32.Infector virus can do?

  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine UDS:Virus.Win32.Infector?



File Info:

name: B3FF5186D12C67882402.mlw
path: /opt/CAPEv2/storage/binaries/f97f5fd0cfc682931597d9cde1bbb569d037963886aa240a5549aa9b9d25cfe8
crc32: AC61CABF
md5: b3ff5186d12c67882402af99defbe93b
sha1: b8b00fb1dbf1382a559e05026e53975c04af181f
sha256: f97f5fd0cfc682931597d9cde1bbb569d037963886aa240a5549aa9b9d25cfe8
sha512: d389cfbcfd522a7d82a114ed2fe503aa75bafe917197c23db4a6f824c15e045c26637a7e06571aa901bc7841c2fe3efb14a1ed2e598b81f98ae31923debd9d44
ssdeep: 192:rqgbd+yFHtC8WMn/2KetAj0EOuMkMn/ZW6W4WLL5+x3:2gvFHtDW82ZtAnV8ZW6W4WLLs
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T16522064277FA412BF4F63670497456265B3FB8348B3783AF1089665E0E36A528CB072B
sha3_384: 96bce16d58909a0c85d4c757d9f917a880e19032048468fec33b1181c43c75d9db9ad6834b0d944ef455a93b1700dbca
ep_bytes: 81ec0011000090be00040001eb00545f
timestamp: 2008-04-13 18:37:12


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Force DOS Execute Utility
FileVersion: 5.1.2600.5512 (xpsp.080413-2111)
InternalName: ForceDOS
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: ForceDOS.Exe
ProductName: Microsoft® Windows® Operating System
ProductVersion: 5.1.2600.5512
Translation: 0x0409 0x04b0

UDS:Virus.Win32.Infector also known as:

LionicVirus.Win32.Infector.n!c
DrWebWin32.Siggen.29
MicroWorld-eScanGen:Trojan.FileInfector.am0@aK5ldjc
CAT-QuickHealW32.Infector.A5
ALYacGen:Trojan.FileInfector.am0@aK5ldjc
MalwarebytesGeneric.Malware/Suspicious
SangforSuspicious.Win32.Save.a
K7AntiVirusVirus ( 00508e1d1 )
AlibabaVirus:Win32/Hematite.8689d5cf
K7GWVirus ( 00508e1d1 )
Cybereasonmalicious.6d12c6
CyrenW32/Hematite.F.gen!Eldorado
SymantecTrojan.Gen.6
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Agent.NFR
APEXMalicious
ClamAVWin.Virus.Hematite-6232506-0
KasperskyUDS:Virus.Win32.Infector
BitDefenderGen:Trojan.FileInfector.am0@aK5ldjc
NANO-AntivirusVirus.Win32.Infector.emtrum
AvastFileRepMalware [Misc]
TencentVirus.Win32.Infector.ya
EmsisoftGen:Trojan.FileInfector.am0@aK5ldjc (B)
F-SecureTrojan.TR/Patched.Gen
VIPREGen:Trojan.FileInfector.am0@aK5ldjc
TrendMicroTROJ_GEN.R002C0DEJ23
McAfee-GW-EditionBehavesLike.Win32.HWorld.lm
Trapminemalicious.high.ml.score
FireEyeGeneric.mg.b3ff5186d12c6788
SophosW32/HWorld-A
IkarusVirus.Win32.Agent
GDataGen:Trojan.FileInfector.am0@aK5ldjc
GoogleDetected
AviraTR/Patched.Gen
MAXmalware (ai score=83)
Antiy-AVLGrayWare/Win32.Kryptik.Hematite
XcitiumVirus.Win32.Hematite.A@77ycil
ArcabitTrojan.FileInfector.EAD952
ZoneAlarmUDS:Virus.Win32.Infector
MicrosoftVirus:Win32/Hematite.A
CynetMalicious (score: 100)
AhnLab-V3Virus/Win32.Hematite.R198137
McAfeeArtemis!B3FF5186D12C
VBA32Win32.Virus.Unknown.Heur
Cylanceunsafe
PandaTrj/Genetic.gen
TrendMicro-HouseCallTROJ_GEN.R002C0DEJ23
RisingVirus.Agent!1.B308 (CLASSIC)
MaxSecureVirus.W32.Infector.Gen
FortinetW32/Agent.D17
AVGFileRepMalware [Misc]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_100% (W)

How to remove UDS:Virus.Win32.Infector?

UDS:Virus.Win32.Infector removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment