How to remove “Worm.Calgary”?

The Worm.Calgary is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Worm.Calgary virus can do?

• Sample contains Overlay data
• The binary contains an unknown PE section name indicative of packing
• Authenticode signature is invalid
• Anomalous binary characteristics

How to determine Worm.Calgary?

File Info:
name: 8C11C11B634E8DFBCDCA.mlw
path: /opt/CAPEv2/storage/binaries/5f6c2e7f98f0f5ff32a6524226a6f72c390d2c89c906db537cd91cfea2a67005
crc32: 9237CD12
md5: 8c11c11b634e8dfbcdcabb1b773339d9
sha1: 36435bcb83e63936ad8704375c8f254449e16e75
sha256: 5f6c2e7f98f0f5ff32a6524226a6f72c390d2c89c906db537cd91cfea2a67005
sha512: 0a7097c089978f2be5e76f9de2e90a196993f871b101ba57801c7ea8a287e80a03df8edad5c01d20a1e93b7531300a7c89f0e46ec0c3a1e8502a2177d932144e
ssdeep: 24576:MjbT7Pk5hFQEhyU3+rihXWW8OHvyPp/WG255nLWBa+Ein1HmpFuTFR2v2kST0Q+E:qbTTk5HyU3d8kWeCBZmpFUuC0QlBCe
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1C3A56C15A64640F2EC2315314357EBEF13B5BA2196208ECFD7D82D15EF37AC0AA39366
sha3_384: c2392ed64b128e5722874e8e08986df98a59e821a1a85134b08575578376c92452943f0be9e52ea05e230c2ce4edad58
ep_bytes: 83ec0cc70558d27b0000000000e87e53
timestamp: 1970-01-01 00:00:00

Version Info:
0: [No Data]

Worm.Calgary also known as:

How to remove Worm.Calgary?

• Download and install GridinSoft Anti-Malware.
• Open GridinSoft Anti-Malware and perform a “Standard scan“.
• “Move to quarantine” all items.
• Open “Tools” tab – Press “Reset Browser Settings“.
• Select proper browser and options – Click “Reset”.
• Restart your computer.