Ursu.875197 removal tips

The Ursu.875197 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Ursu.875197 virus can do?

Network activity detected but not expressed in API logs
Anomalous binary characteristics

How to determine Ursu.875197?


File Info:
crc32: 42AB3BBC
md5: e7d647e23339c31319e4e0ba6bfb3fd6
name: E7D647E23339C31319E4E0BA6BFB3FD6.mlw
sha1: e0434c835528b87d0d54bb761f0432858c1b205d
sha256: c3f21d0778dc91c8527aefd8c815b4b9947fed6d5d7a03930a044a7d27bae617
sha512: 9d364a303bf7deb47be5cba07f28158e7d4a8809280e08ccd99a2d7f9bf0e63b8c23a8370dda63b1b4cbdfc63ebd5feb1ce241fb6975673358304035632b9f9f
ssdeep: 384:tw5tcvx+YLT9ZdOcn2gkh2WUNy3cEtj95vciCfWpxVwYcZgHS7KrcylAc6:tw5tc5+YLT9TOcn2gksWUN9cZRciCuV
type: PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:
Translation: 0x0000 0x04b0
LegalCopyright: $AuthorCopyright
Assembly Version: 1.0.7991.21521
InternalName: titine.exe
FileVersion: 1.0.7991.21521
CompanyName: 
LegalTrademarks: 
Comments: 
ProductName: 
ProductVersion: 1.0.7991.21521
FileDescription: titine
OriginalFilename: titine.exe

Ursu.875197 also known as:

Elastic	malicious (high confidence)
DrWeb	Trojan.Siggen15.44325
Cynet	Malicious (score: 99)
ALYac	Gen:Variant.Ursu.875197
CrowdStrike	win/malicious_confidence_60% (W)
Alibaba	Trojan:Win32/Generic.94ef2f97
Cybereason	malicious.23339c
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Generik.JBNMRZZ
APEX	Malicious
Avast	Win32:Malware-gen
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	Gen:Variant.Ursu.875197
ViRobot	Trojan.Win32.Z.Ursu.18944.V
MicroWorld-eScan	Gen:Variant.Ursu.875197
Tencent	Win32.Trojan.Generic.Amvu
Ad-Aware	Gen:Variant.Ursu.875197
BitDefenderTheta	Gen:NN.ZemsilF.34294.bm0@a0Aj35b
McAfee-GW-Edition	Artemis!Trojan
FireEye	Generic.mg.e7d647e23339c313
Emsisoft	Gen:Variant.Ursu.875197 (B)
SentinelOne	Static AI – Malicious PE
Avira	HEUR/AGEN.1121175
eGambit	Trojan.Generic
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Gen:Variant.Ursu.875197
AhnLab-V3	Trojan/Win32.RL_Generic.C3523185
McAfee	Artemis!E7D647E23339
MAX	malware (ai score=85)
Panda	Trj/CI.A
TrendMicro-HouseCall	TROJ_GEN.R002H07KH21
Ikarus	Trojan.SuspectCRC
Fortinet	PossibleThreat
AVG	Win32:Malware-gen
Paloalto	generic.ml

How to remove Ursu.875197?

Ursu.875197 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X