Adware

Win32/Adware.Loderka.B removal instruction

Malware Removal

The Win32/Adware.Loderka.B is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Adware.Loderka.B virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Drops a binary and executes it
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Attempts to identify installed AV products by installation directory

Related domains:

api-torrent.ru

How to determine Win32/Adware.Loderka.B?



File Info:

name: 0905795FCFD41D63735F.mlw
path: /opt/CAPEv2/storage/binaries/c9671e7828730f443a65ba27fa46569933e0f6a52861895a1f6810dd184c82b2
crc32: B6327180
md5: 0905795fcfd41d63735f3a662b4ae522
sha1: 364c9263ba4655a0f158ae89535b98a960a9d1e5
sha256: c9671e7828730f443a65ba27fa46569933e0f6a52861895a1f6810dd184c82b2
sha512: 0f1e2e070003beaac20a80fae34bfa67f41380150cdd2adbdb8c3d4172c000ff65c80837ebf067c3459b1d650c9961bea03415ff9c6199caedc21be485603382
ssdeep: 98304:9nxSKgCcthSPgX6HoKT6nv8fH8R4xsq+vv7tTg/z3tJ:jSK8hSPgOP64qbtA7
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T11C4611127283AEB9E2D499B28E0D2144BD1D285811DA302DBCBCB7CF177F6EB457E191
sha3_384: 439f1edfa669bd0166ff991bb0e5091f23dbbc3ef7a2d276651c1d7fd9e00d7eb362d32d9c8044ea62e549178d8a16d6
ep_bytes: 558bec83c4a453565733c08945c48945
timestamp: 2012-10-02 05:04:04


Version Info:

Comments: This installation was built with Inno Setup.
CompanyName: Game                                                        
FileDescription: Setup For Sonic Mania                                       
FileVersion: 1.0.0               
LegalCopyright: © Game                                                                                              
ProductName: Sonic Mania                                                 
ProductVersion: 1.06.0503           
Translation: 0x0000 0x04b0

Win32/Adware.Loderka.B also known as:

LionicTrojan.Win32.Generic.4!c
DrWebAdware.Downware.19891
MicroWorld-eScanAdware.GenericKD.38079500
FireEyeAdware.GenericKD.38079500
McAfeeArtemis!0905795FCFD4
K7AntiVirusAdware ( 005761aa1 )
K7GWAdware ( 005761aa1 )
SymantecPUA.Gen.2
ESET-NOD32a variant of Win32/Adware.Loderka.B
TrendMicro-HouseCallTROJ_GEN.R002H07KJ21
Kasperskynot-a-virus:HEUR:Downloader.Win32.Gamini.gen
BitDefenderAdware.GenericKD.38079500
AvastNSIS:Loderka-A [Adw]
Ad-AwareAdware.GenericKD.38079500
EmsisoftAdware.GenericKD.38079500 (B)
GDataAdware.GenericKD.38079500
AviraADWARE/Loderka.Gen
GridinsoftRansom.Win32.Wacatac.sa
MicrosoftPUA:Win32/Bitrepeyp.B
ALYacAdware.GenericKD.38079500
MAXmalware (ai score=63)
VBA32Downloader.Gamini
YandexPUA.Downloader!JGWMwxmVZZA
AVGNSIS:Loderka-A [Adw]

How to remove Win32/Adware.Loderka.B?

Win32/Adware.Loderka.B removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment