Generik.GPQVEHI malicious file

The Generik.GPQVEHI is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Generik.GPQVEHI virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
At least one process apparently crashed during execution
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Generik.GPQVEHI?


File Info:
name: 1738EE1633F7A5123F4B.mlw
path: /opt/CAPEv2/storage/binaries/8fe30f0dd095237b7a1cf2f0a7d0b505097379338e53dcee3d043be36e458946
crc32: EC25677D
md5: 1738ee1633f7a5123f4b3a713b4aba47
sha1: e67b7552902eace7082136cab3a368278cdf1ef8
sha256: 8fe30f0dd095237b7a1cf2f0a7d0b505097379338e53dcee3d043be36e458946
sha512: 908690f631190d9cc9f5a7227ebb857f57a3004ae93c7c11132c960f19ccf6545d0da66325f61b98724c6b6de6da786af3c9f2926b9b2018580fbe71f3ec6b37
ssdeep: 6144:5gWpUhPQFfTjghZvZvZ0FkvPobZJqhZf3YoTxnkm4cqKl:uWpUhPQFrUfxOFGPGqH3Y4l
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13784AF03B7D080B6E56A463049E585529B39FD7247605F8FA3F84A4A0EB17C27E3973B
sha3_384: 4a5fd9604039ac69e3f4e61164b6e0eb11df901d0c50d3715fa21873098ee46001fd1d5636695dceff26e55aea1371c2
ep_bytes: e8131d0000e97bfeffff3b0dd0b24100
timestamp: 2015-12-17 03:29:19

Version Info:
0: [No Data]

Generik.GPQVEHI also known as:

Bkav	W32.AIDetect.malware2
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (high confidence)
DrWeb	Win32.HLLP.Soul
MicroWorld-eScan	Trojan.GenericKD.48221115
FireEye	Trojan.GenericKD.48221115
ALYac	Trojan.GenericKD.48221115
Sangfor	Trojan.Win32.Wacatac.B
Alibaba	Trojan:Win32/Generic.ceb2a5d9
ESET-NOD32	a variant of Generik.GPQVEHI
ClamAV	Win.Malware.Generic-9880088-0
BitDefender	Trojan.GenericKD.48221115
Avast	Win32:VB-JGI
Tencent	Win32.Trojan.Worm.Dwtk
Emsisoft	Trojan.GenericKD.48221115 (B)
F-Secure	Trojan.TR/Dropper.Gen8
Baidu	Win32.Worm.VB.bc
McAfee-GW-Edition	Artemis!Trojan
Ikarus	Trojan.Dropper
Avira	TR/Dropper.Gen8
Microsoft	Trojan:Script/Phonzy.C!ml
GData	Trojan.GenericKD.48221115
Cynet	Malicious (score: 99)
McAfee	GenericRXRP-ZV!1738EE1633F7
MAX	malware (ai score=83)
Fortinet	W32/Blackie.C953!tr
AVG	Win32:VB-JGI

How to remove Generik.GPQVEHI?

Generik.GPQVEHI removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X