AIT:Trojan.Nymeria.4226 removal guide

The AIT:Trojan.Nymeria.4226 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What AIT:Trojan.Nymeria.4226 virus can do?

• Executable code extraction
• Creates RWX memory
• A process created a hidden window
• Executed a very long command line or script command which may be indicative of chained commands or obfuscation
• Uses Windows utilities for basic functionality
• Network activity detected but not expressed in API logs

How to determine AIT:Trojan.Nymeria.4226?

File Info:
crc32: 20BC5806
md5: de404112a52d3c3bb94c8120213f04bc
name: DE404112A52D3C3BB94C8120213F04BC.mlw
sha1: 84b0fef33c16475804f06b14f4c30858037316b1
sha256: 4bfd3fd6b4c8d175fe4d0bf0b8b138f17907cfd9790c0bc8d49cd6d764dd6b4e
sha512: 2a6f2082a7e80c5d4ed1e9e44971a9e79d2f2124e506e3f4678012bd943784a6e6f34d73dcaac5e57c744076653e77311eaf95564fe5b68a10491c41544faa16
ssdeep: 12288:VCdOy3vVrKxR5CXbNjAOxK/j2n+4YG/6c1mFFja3mXgcjfRlgsUBga2TjdcQ:VCdxte/80jYLT3U1jfsWaOjdcQ
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
Translation: 0x0809 0x04b0

AIT:Trojan.Nymeria.4226 also known as:

How to remove AIT:Trojan.Nymeria.4226?

• Download and install GridinSoft Anti-Malware.
• Open GridinSoft Anti-Malware and perform a “Standard scan“.
• “Move to quarantine” all items.
• Open “Tools” tab – Press “Reset Browser Settings“.
• Select proper browser and options – Click “Reset”.
• Restart your computer.