Win32/Fasong.A removal instruction

The Win32/Fasong.A is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Win32/Fasong.A virus can do?

Creates RWX memory
A process attempted to delay the analysis task.
Reads data out of its own binary image
Drops a binary and executes it
Unconventionial language used in binary resources: Chinese (Simplified)
The binary likely contains encrypted or compressed data.
Installs itself for autorun at Windows startup
Created a service that was not started
Creates a slightly modified copy of itself
Anomalous binary characteristics

Related domains:

z.whorecord.xyz

a.tomx.xyz

How to determine Win32/Fasong.A?


File Info:
crc32: 2C3CAA7E
md5: 6b699598d9b88107f16ea4977a39dd2c
name: 6B699598D9B88107F16EA4977A39DD2C.mlw
sha1: 28ae2c9fe6ae8ca1e891d32094e159684363cef1
sha256: de048753f687a726312de3ad7f8f0e05966fdd5207942d4a4a82488ff2936248
sha512: 668ca675242b843f7781df225c4156b2b7722b7f7a5afe9233e45ff587546ac5d35f282f43fc518228ae7591290f4bb0da5aada839bcfe1ee255f98c694d0050
ssdeep: 3072:KhS7VD4/EnzzMUD8u8EC45xRS5b7lIf3GYHfqR1hAtTD5DyXglREK0c:dOizzb8uDxZCHlIZgEh5DyXglh
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
0: [No Data]

Win32/Fasong.A also known as:

K7AntiVirus	Trojan ( 0048b81e1 )
DrWeb	Win32.HLLW.Fasong.1
MicroWorld-eScan	Trojan.GenericKD.43115603
CMC	Worm.Win32.Fasong!O
ALYac	Trojan.GenericKD.43115603
Cylance	Unsafe
Zillya	Worm.Fasong.Win32.1
Sangfor	Malware
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	Worm:Win32/Fasong.41e9d492
K7GW	Trojan ( 0048b81e1 )
Cybereason	malicious.8d9b88
TrendMicro	WORM_FASONG.A
Baidu	Win32.Trojan-PSW.OLGames.bm
Cyren	W32/Fasong.DIWC-8572
ESET-NOD32	Win32/Fasong.A
APEX	Malicious
TotalDefense	Win32/PSW.QQpass.7001
Avast	Win32:Fasong-ASP [Wrm]
ClamAV	Win.Worm.A-13
GData	Trojan.GenericKD.43115603
Kaspersky	Trojan.Win32.Scar.ofhn
BitDefender	Trojan.GenericKD.43115603
NANO-Antivirus	Trojan.Win32.Fasong.hmzl
ViRobot	Worm.Win32.A.Fasong.406225.A[ASPack]
Tencent	Malware.Win32.Gencirc.10b4d013
Ad-Aware	Trojan.GenericKD.43115603
Sophos	Troj/Fasong-A
Comodo	Worm.Win32.Fasong.A@3ep7
F-Secure	Worm.WORM/Fasong.A
BitDefenderTheta	AI:Packer.9DB3747521
VIPRE	Worm.Win32.Fasong.a (v)
Invincea	heuristic
McAfee-GW-Edition	BehavesLike.Win32.PWSQQPass.dh
Trapmine	malicious.moderate.ml.score
FireEye	Generic.mg.6b699598d9b88107
Emsisoft	Trojan.GenericKD.43115603 (B)
SentinelOne	DFI – Suspicious PE
F-Prot	W32/Fasong.A
Endgame	malicious (high confidence)
Avira	WORM/Fasong.A
eGambit	Unsafe.AI_Score_90%
Antiy-AVL	Worm/Win32.Fasong
Microsoft	Worm:Win32/Fasong
Jiangmin	Trojan/Hiddukel.e
Arcabit	Trojan.Generic.D291E453
AegisLab	Worm.Win32.Fasong.lzQk
ZoneAlarm	Trojan.Win32.Scar.ofhn
AhnLab-V3	Trojan/Win32.QQPass.R57556
Acronis	suspicious
McAfee	W32/Fasong.worm
MAX	malware (ai score=82)
VBA32	TScope.Trojan.Delf
Panda	Trj/Fasong
TrendMicro-HouseCall	WORM_FASONG.A
Rising	Trojan.QQpass7 (CLOUD)
Yandex	Worm.Fasong!mw5Muxy+vN4
Ikarus	Worm.Win32.Fasong
MaxSecure	Win.MxResIcn.Heur.Gen
Fortinet	W32/Fasong.A!tr
AVG	Win32:Fasong-ASP [Wrm]
Paloalto	generic.ml
Qihoo-360	Win32/Trojan.PSW.GameOnline.GM

How to remove Win32/Fasong.A?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Win32/Fasong.A removal instruction