Malware

Win32/VB.ONY removal tips

Malware Removal

The Win32/VB.ONY is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/VB.ONY virus can do?

  • Anomalous binary characteristics

How to determine Win32/VB.ONY?



File Info:

crc32: B3D63778
md5: e57f9c882b69af118e1cdf33ee779fc0
name: E57F9C882B69AF118E1CDF33EE779FC0.mlw
sha1: 653a87cbfa7e1acecfffb43a05ba0d090ecef2a5
sha256: 1db7ed8206278368442a0890be19dc131e03c661c2c5926bce760f5df8a0d921
sha512: e3c46f5a9aa0e44197db20f9eaf60d9fb59c62a04b3d8124bcfb2f759b94ae9d0cff06c57b28690a0c03d93a9ae54186caab5ea09a3b03e66076a55dac5fbd5a
ssdeep: 98304:32EqqRT3F3bS0Yx8i2GEnQqRWenpHWWLx9vAnrFeP:3lqqRTlW01vWmphx9vAnry
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

Translation: 0x0409 0x04b0
LegalCopyright: Copyright (c) 1987-1998 Microsoft Corporation
InternalName: setup1
FileVersion: 6.00.8169
CompanyName: Microsoft Corporation
LegalTrademarks: Microsoft is a registered trademark of Microsoft Corporation.  Windows(TM) is a trademark of Microsoft Corporation.
ProductName: Microsoft Visual Basic for Windows
ProductVersion: 6.00.8169
FileDescription: Visual Basic 6.0 Setup Toolkit
OriginalFilename: setup1.exe

Win32/VB.ONY also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Generic.4!c
DrWebTrojan.Inject2.63085
CynetMalicious (score: 99)
ZillyaTrojan.VB.Win32.474972
CrowdStrikewin/malicious_confidence_100% (D)
Cybereasonmalicious.bfa7e1
CyrenW32/Patched.J.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/VB.ONY
APEXMalicious
AvastWin32:Malware-gen
ClamAVWin.Trojan.Zmunik-6999022-0
NANO-AntivirusVirus.Win32.Gen.ccmw
SophosMal/Generic-S
F-SecureTrojan.TR/Crypt.XPACK.Gen
BitDefenderThetaGen:NN.ZexaCO.34266.@x2@aS3!KVhi
McAfee-GW-EditionArtemis!Trojan
FireEyeGeneric.mg.e57f9c882b69af11
SentinelOneStatic AI – Malicious PE
AviraTR/Crypt.XPACK.Gen
MicrosoftTrojan:Win32/Wacatac.B!ml
McAfeeArtemis!E57F9C882B69
MAXmalware (ai score=95)
VBA32BScope.Trojan.Inject
MalwarebytesMalware.Heuristic.1003
YandexTrojan.GenAsa!cPHtIWCj9Vs
IkarusTrojan.SuspectCRC
FortinetW32/Injector.DYLX!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml

How to remove Win32/VB.ONY?

Win32/VB.ONY removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment