Malware

Generik.NFGCXYM removal

Malware Removal

The Generik.NFGCXYM is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generik.NFGCXYM virus can do?

  • Executable code extraction
  • Creates RWX memory
  • A process attempted to delay the analysis task.
  • HTTP traffic contains suspicious features which may be indicative of malware related traffic
  • Performs some HTTP requests
  • The binary likely contains encrypted or compressed data.
  • Looks up the external IP address
  • A process sent information about the computer to a remote location.

Related domains:

api.ipify.org
eaussill.com

How to determine Generik.NFGCXYM?



File Info:

crc32: D8F92AB1
md5: b6c9c5a79324fde809e1549cc85f4706
name: B6C9C5A79324FDE809E1549CC85F4706.mlw
sha1: 283d7c2870e003ba3c28c3c5d4815084c682142e
sha256: 1dfe38163fcebf3e37c5b74a9cbe9fceac518d5364c1ea5ee88e8eae9be765b4
sha512: a78a441b49e94e06c6d013260c2b5ffae94cd1cf35a7a543ea1848aa489ff874ff8f076b62fb5451ca34ea1a2285a1f68c00918ae723d08bdb4805e661bf748e
ssdeep: 6144:mcGNclrtHjRg9eNfGA1/r1xHAOtOk/4a:0cF2eNf5PH+kAa
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: xa9 Sun cover Corporation. All rights reserved
InternalName: Happen Leave
FileVersion: 3.5.5.964
CompanyName: Sun cover Corporation
ProductName: Sun coverxae Speakgoldxae
ProductVersion: 3.5.5.964
East: BlowRope
OriginalFilename: Still.dll
Translation: 0x0409 0x04b0

Generik.NFGCXYM also known as:

BkavW32.AIDetectVM.malware1
Elasticmalicious (high confidence)
McAfeeArtemis!B6C9C5A79324
APEXMalicious
Paloaltogeneric.ml
KasperskyUDS:DangerousObject.Multi.Generic
RisingTrojan.Generic@ML.88 (RDML:o2UM9n6L7zZ07cTcpUo/VQ)
TrendMicroTROJ_FRS.VSNTL220
McAfee-GW-EditionArtemis!Trojan
FireEyeGeneric.mg.b6c9c5a79324fde8
KingsoftWin32.Troj.Undef.(kcloud)
MicrosoftTrojan:Win32/Wacatac.B!ml
ZoneAlarmUDS:DangerousObject.Multi.Generic
BitDefenderThetaGen:NN.ZedlaF.34670.qu8@aepd71di
ESET-NOD32a variant of Generik.NFGCXYM
TrendMicro-HouseCallTROJ_FRS.VSNTL220
IkarusWin32.Outbreak
AVGFileRepMalware
Qihoo-360Generic/HEUR/QVM30.2.A95F.Malware.Gen

How to remove Generik.NFGCXYM?

Generik.NFGCXYM removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment