Virus

Virus:Win32/Floxif.F removal guide

Malware Removal

The Virus:Win32/Floxif.F is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Virus:Win32/Floxif.F virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Authenticode signature is invalid
  • CAPE detected the FloodFix malware family
  • Anomalous binary characteristics
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Virus:Win32/Floxif.F?



File Info:

name: FDE84FF5FBEC8D758463.mlw
path: /opt/CAPEv2/storage/binaries/a99e6f024f971ca48e4240e3e7328617a37518eb6021fc0c1fb352c2e633774f
crc32: E0535068
md5: fde84ff5fbec8d75846393f29ee2308b
sha1: 52934b3de12c88ef47f7daa62f31c1d8986f28c9
sha256: a99e6f024f971ca48e4240e3e7328617a37518eb6021fc0c1fb352c2e633774f
sha512: 9c9be2610db7668f6c8076485a771aa22d03dea1d722c6a5234bcf61d61c570ba0732a49c21bf1a9f95e241c9e9e07da061e978e6656b368922a6fe7fcf12cdd
ssdeep: 24576:DXLbKxL6QipToAT5h9217WiOZk4AA8Gs/Jjq3x3ZZZxRw5NXjCVvpitG:DXLOxL7yUpGZZvy5NXjWf
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T17735BF81AFC283F4F9DA26BB617A632A5739665A1301D0C7DBA43D819C301E2FB7D345
sha3_384: 79b31dbcbe91524582b712801bf4b4ce9cb3959aece8c76dc04271685ecb6c880adbfa2b6047b7211dd2fdbb2a1b3af5
ep_bytes: e98c61faff7505e806180000ff742404
timestamp: 2009-11-05 03:23:16


Version Info:

CompanyName: Beike Internet Security.
FileDescription: Skylark Client Interface
FileVersion: 2009.11.5.179
InternalName: skylarkd
LegalCopyright: Copyright (C) 2009 Beike Internet Security
OriginalFilename: skylarkd.dll
ProductName: Skylark
ProductVersion: 1.3.3291.179
Translation: 0x0000 0x04b0

Virus:Win32/Floxif.F also known as:

BkavW32.AIDetectMalware
ElasticWindows.Virus.Floxif
MicroWorld-eScanWin32.Floxif.A
ClamAVWin.Virus.Floxif-2
FireEyeGeneric.mg.fde84ff5fbec8d75
CAT-QuickHealW32.Pioneer.CZ1
SkyhighArtemis!Virus
McAfeeW32/Pioneer.gen.d
Cylanceunsafe
CrowdStrikewin/malicious_confidence_100% (D)
K7GWVirus ( 00521e9a1 )
K7AntiVirusVirus ( 00521e9a1 )
BitDefenderThetaAI:FileInfector.207622A70E
SymantecW32.Fixflo!inf
ESET-NOD32a variant of Win32/Floxif.F
APEXMalicious
CynetMalicious (score: 99)
KasperskyVirus.Win32.Pioneer.bv
BitDefenderWin32.Floxif.A
NANO-AntivirusVirus.Win32.Pioneer.behten
AvastWin32:FloxLib-A [Trj]
TencentVirus.Win32.Pioneer.c
SophosW32/Floxif-C
BaiduWin32.Virus.Floxif.a
F-SecureMalware.W32/Floxif.C
DrWebWin32.FloodFix.6
VIPREWin32.Floxif.A
TrendMicroPE_FLOXIF.D
Trapminemalicious.high.ml.score
EmsisoftWin32.Floxif.A (B)
IkarusVirus.Win32.Patched
GDataWin32.Floxif.A
WebrootW32.Trojan.Gen
VaristW32/Floxif.A
AviraW32/Floxif.C
MAXmalware (ai score=81)
Antiy-AVLVirus/Win32.Pioneer.bv
KingsoftWin32.btm2infect.zz.2250875
XcitiumVirus.Win32.Floxif.A@7h5wha
ArcabitWin32.Floxif.A
ZoneAlarmVirus.Win32.Pioneer.bv
MicrosoftVirus:Win32/Floxif.F
GoogleDetected
ALYacWin32.Floxif.A
VBA32Virus.Heisen.2
MalwarebytesGeneric.Malware.AI.DDS
PandaW32/Floxif.A
TrendMicro-HouseCallPE_FLOXIF.D
RisingVirus.Floxif!1.9B7A (CLASSIC)
SentinelOneStatic AI – Malicious PE
MaxSecureVirus.W32.Pioneer.bv
FortinetW32/Poineer.BQ
AVGWin32:FloxLib-A [Trj]
DeepInstinctMALICIOUS

How to remove Virus:Win32/Floxif.F?

Virus:Win32/Floxif.F removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment