Virus

Virus:Win32/Sality.R removal

Malware Removal

The Virus:Win32/Sality.R is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Virus:Win32/Sality.R virus can do?

  • Unconventionial language used in binary resources: Korean
  • Anomalous binary characteristics

How to determine Virus:Win32/Sality.R?



File Info:

crc32: 5549EF9B
md5: 248ed26d7f3ec30112a2cb7c5bb34ddb
name: main.exe
sha1: c92c39179baac5b72f72806e2c806d4dbb57554b
sha256: e0afaa976a27d1178f711d7a6e29cfc64a255713481bcbb616f38423a6b3e5fc
sha512: adfd527381bcff44c0d4b39c5d096bb443bf22d0feeaccca234e5fb6b74494dea8ed1a1b17d4df3d5f8132d2f6f8cec3f762ff2d66b77b18dee1262b0cc64b27
ssdeep: 24576:SDIMkNIqvOwyMYv1xukrgOrnlLRIK6xuOzPl1PMnYoEEPurAjFpRtB77BEHtRkN:qIMkanMcxXtdwPVgur4FfuNRkN
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright x24d2 2002
InternalName: main
FileVersion: 0, 97, 2, 0
CompanyName: WebZen
PrivateBuild: 
LegalTrademarks: 
Comments: 
ProductName: WebZen mu main
SpecialBuild: 
ProductVersion: 1, 0, 0, 1
FileDescription: main
OriginalFilename: main.exe
Translation: 0x0412 0x04b0

Virus:Win32/Sality.R also known as:

BkavW32.VoSzDD.PE
DrWebBackDoor.BlackHole.53145
MicroWorld-eScanWin32.Sality.1
CMCVirus.Win32.Sality!O
CAT-QuickHealW32.Sality.K
Qihoo-360Win32/Virus.Sality.N
McAfeeW32/Sality.q.ab
CylanceUnsafe
CrowdStrikewin/malicious_confidence_100% (D)
BitDefenderWin32.Sality.1
K7GWVirus ( 0008d71c1 )
K7AntiVirusVirus ( 0008d71c1 )
TrendMicroPE_SALITY.AW
BitDefenderThetaAI:FileInfector.4BE2AA870E
F-ProtW32/Trojan.MQF
ESET-NOD32Win32/Sality.NAL
TrendMicro-HouseCallPE_SALITY.AW
ClamAVWin.Trojan.Sality-1028
KasperskyVirus.Win32.Sality.ac
NANO-AntivirusVirus.Win32.Sality.vgkl
TencentVirus.Win32.HanKu.h
Ad-AwareWin32.Sality.1
EmsisoftWin32.Sality.1 (B)
ComodoVirus.Win32.Sality.AC@2cq2ts
F-SecureMalware.W32/Sality.YE
Invinceaheuristic
McAfee-GW-EditionBehavesLike.Win32.Virut.rz
FortinetW32/Sality.AW
FireEyeGeneric.mg.248ed26d7f3ec301
SophosW32/Sality-AJ
IkarusVirus.Win32.Sality
CyrenW32/Trojan.ZLJT-0953
JiangminWin32/Sality.a
AviraW32/Sality.YE
MAXmalware (ai score=82)
Antiy-AVLVirus/Win32.Sality.ac
KingsoftWin32.Kuku.a.20480
Endgamemalicious (high confidence)
ArcabitWin32.Sality.1
ZoneAlarmVirus.Win32.Sality.ac
MicrosoftVirus:Win32/Sality.R
AhnLab-V3Win32/Sality.M
Acronissuspicious
VBA32Virus.Win32.Sality.NAL
ALYacWin32.Sality.1
MalwarebytesTrojan.MalPack.PEPack
PandaW32/Sality.W
APEXMalicious
RisingMalware.Heuristic!ET#81% (RDMK:cmRtazor7ErDXJwAAuhXnFQixuUF)
YandexWin32.Kuku.A
SentinelOneDFI – Malicious PE
GDataWin32.Sality.1
AVGWin32:Sality-FX
AvastWin32:Sality-FX
MaxSecureVirus.W32.Sality.AC

How to remove Virus:Win32/Sality.R?

Virus:Win32/Sality.R removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment