Malware

Ursu.200342 removal guide

Malware Removal

The Ursu.200342 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ursu.200342 virus can do?

  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Ursu.200342?



File Info:

crc32: 9626EF52
md5: b7b03416b93cec63cf7eff3b392dcb7f
name: B7B03416B93CEC63CF7EFF3B392DCB7F.mlw
sha1: 97ff574161b03173bee25d99f79c7c75e4ed0f2c
sha256: f1c90c49d28e2c0d903cb10230114d5e3486f2aac5e964450a3063c07bfcce55
sha512: 956a0909d995baad109b1443e083dfe37211df66e81f1d67a0443043786f710fc3abfa6bb47688f7c47f74f1d15cfb35a777d287357d3efae7f54e1eeb594e6e
ssdeep: 768:kqUFXacCcCcvT/oQ73nwsIH0UEI2XPu1OQ/c:oFX5xxvT/oQUN0UL2fam
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2017
Assembly Version: 1.0.0.0
InternalName: ransomware.exe
FileVersion: 1.0.0.0
ProductName: ransomware
ProductVersion: 1.0.0.0
FileDescription: ransomware
OriginalFilename: ransomware.exe

Ursu.200342 also known as:

MicroWorld-eScanGen:Variant.Ursu.200342
FireEyeGen:Variant.Ursu.200342
Qihoo-360Win32/Trojan.944
ALYacGen:Variant.Ursu.200342
VIPRETrojan.Win32.Generic!BT
BitDefenderGen:Variant.Ursu.200342
Cybereasonmalicious.6b93ce
SymantecTrojan.Gen.2
APEXMalicious
AvastMSIL:Ransom-AZ [Trj]
KasperskyUDS:DangerousObject.Multi.Generic
AlibabaTrojan:MSIL/SuspectCRC.526d5ae1
NANO-AntivirusTrojan.Win32.Encoder.erezzi
AegisLabTrojan.Win32.Generic.4!c
RisingTrojan.Dynamer!8.3A0 (CLOUD)
Ad-AwareGen:Variant.Ursu.200342
EmsisoftGen:Variant.Ursu.200342 (B)
ComodoMalware@#1olgyn1m6q5gk
DrWebTrojan.Encoder.12260
McAfee-GW-EditionArtemis!Trojan
SophosMal/Generic-S
IkarusTrojan.SuspectCRC
MAXmalware (ai score=84)
KingsoftWin32.Troj.Generic_a.a.(kcloud)
MicrosoftTrojan:Win32/Dynamer!rfn
ArcabitTrojan.Ursu.D30E96
ZoneAlarmUDS:DangerousObject.Multi.Generic
GDataGen:Variant.Ursu.200342
AhnLab-V3Trojan/Win32.Dynamer.C4030492
McAfeeArtemis!B7B03416B93C
MalwarebytesGeneric.Malware/Suspicious
PandaTrj/GdSda.A
ESET-NOD32a variant of Generik.DWPISWA
TencentWin32.Trojan.Razy.Phga
YandexTrojan.Encoder!IxcgS3QM4No
FortinetGenerik.DWPISWA!tr
BitDefenderThetaGen:NN.ZemsilCO.34590.bq0@aafvk@m
AVGMSIL:Ransom-AZ [Trj]
Paloaltogeneric.ml
MaxSecureTrojan.Malware.300983.susgen

How to remove Ursu.200342?

Ursu.200342 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment