Virus

Virus:Win32/Expiro.EK!MTB removal

Malware Removal

The Virus:Win32/Expiro.EK!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Virus:Win32/Expiro.EK!MTB virus can do?

  • Authenticode signature is invalid

How to determine Virus:Win32/Expiro.EK!MTB?



File Info:

name: 8DC5C566DDA0C26A0C43.mlw
path: /opt/CAPEv2/storage/binaries/84c6fcaa792a77e8cc5863291698285ce86c5003cf312037c7f6efcd45621ae2
crc32: 26282B38
md5: 8dc5c566dda0c26a0c4344a9dba6fefe
sha1: 7700411ad4bd6e688160a2f6ae923dfe6154b085
sha256: 84c6fcaa792a77e8cc5863291698285ce86c5003cf312037c7f6efcd45621ae2
sha512: 498c756339e32777f3d63dd9bc2eb96feb80e7138ae3b9b802a080bbae0779fed2b3be0ae71cce6b208b04a637cdfbe8b0cf9056e3c41abfee1d893575544faa
ssdeep: 98304:OXgJhss73Jvs3yDvtsAFcqpPnQNu0CfrPPFFlr+EuQGZEnW6at:OXgkqJU3Q+qtKu0CLFFlrxHnW9
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T165A67C02EB91D065D66747332E75B790E1FCEE7149A0494B3E8C3B0FAB325859E2E583
sha3_384: 0c6e533123595a079c797dcd8cbd5ae260ff329e67df2f68b6a5e50bc88afb47b69c631b208e102a8bbd71968f1ffa87
ep_bytes: e805000000e9dd000000558bec83ec14
timestamp: 2006-10-27 22:01:53


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Microsoft Office Publisher
FileVersion: 12.0.4518.1014
InternalName: MSPUB
LegalCopyright: © 2006 Microsoft Corporation.  All rights reserved.
LegalTrademarks1: Microsoft® is a registered trademark of Microsoft Corporation.
LegalTrademarks2: Windows® is a registered trademark of Microsoft Corporation.
OriginalFilename: MSPUB.EXE
ProductName: 2007 Microsoft Office system
ProductVersion: 12.0.4518.1014
Translation: 0x0000 0x04e4

Virus:Win32/Expiro.EK!MTB also known as:

CyrenCloudW32/Expiro.AU.gen!Eldorado
BkavW32.AIDetectMalware
LionicVirus.Win32.Expiro.n!c
Elasticmalicious (high confidence)
MicroWorld-eScanWin32.Expiro.Gen.7
ClamAVWin.Malware.Expiro-9941636-0
FireEyeGeneric.mg.8dc5c566dda0c26a
CAT-QuickHealW32.Expiro.R3
SkyhighBehavesLike.Win32.Virus.th
Cylanceunsafe
SangforVirus.Win32.Expiro.Vesy
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaVirus:Win32/Expiro.25a8cde5
K7GWVirus ( 005a8b911 )
K7AntiVirusVirus ( 005a8b911 )
ArcabitWin32.Expiro.Gen.7
SymantecW32.Xpiro.J!dam
ESET-NOD32a variant of Win32/Expiro.NDP
APEXMalicious
CynetMalicious (score: 100)
KasperskyVirus.Win32.Moiva.a
BitDefenderWin32.Expiro.Gen.7
NANO-AntivirusVirus.Win32.Virut-Gen.bwpxnc
AvastWin32:Dh-A [Heur]
TencentVirus.Win32.VirMoiva.a
Ad-AwareWin32.Expiro.Gen.7
TACHYONVirus/W32.Movia
EmsisoftWin32.Expiro.Gen.7 (B)
F-SecureMalware.W32/Infector.Gen
DrWebWin32.Expiro.158
VIPREWin32.Expiro.Gen.7
TrendMicroVirus.Win32.EXPIRO.JMA
Trapminesuspicious.low.ml.score
SophosW32/Moiva-A
IkarusVirus.Win32.Expiro
GoogleDetected
AviraW32/Infector.Gen
Antiy-AVLVirus/Win32.Expiro.x
MicrosoftVirus:Win32/Expiro.EK!MTB
ZoneAlarmVirus.Win32.Moiva.a
GDataWin32.Expiro.Gen.7
VaristW32/Expiro.AU.gen!Eldorado
VBA32Trojan.Sabsik.TE
ALYacWin32.Expiro.Gen.7
MAXmalware (ai score=82)
MalwarebytesGeneric.Malware/Suspicious
PandaW32/Moyv.A
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.121218.susgen
FortinetW32/Expiro.NDP!tr
AVGWin32:Dh-A [Heur]
DeepInstinctMALICIOUS

How to remove Virus:Win32/Expiro.EK!MTB?

Virus:Win32/Expiro.EK!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment