Should I remove “Graftor.138174”?

The Graftor.138174 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Graftor.138174 virus can do?

Unconventionial binary language: Chinese (Simplified)
Unconventionial language used in binary resources: Chinese (Simplified)

How to determine Graftor.138174?


File Info:
crc32: 8C482BFF
md5: ae4db852a341b510461902aaa721b158
name: AE4DB852A341B510461902AAA721B158.mlw
sha1: f4e1d40297ac30f7bcdb76ab573d8ad383189f11
sha256: 879631583b3c56caa06b13fd9466ea55c32519e08c0001c67a05983a57847071
sha512: be1aaee4bbdf9e52932d2338abcde49192ec6c66e2b038f77000d77f869e2c49d9a98a4e54d48fa4af9862bf46bf66fab654771b2806996132afd4bbb01af525
ssdeep: 12288:fjPkmhImcy7LJVOWumA27Uv5R2GOPsCSeW:fjjhIXyHJ4W/AN5R2GOPg
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: x6211x80d6x864ex4ecax5929x8981x5e72x6b7bx4f60
FileVersion: 1.0.0.0
CompanyName: x6211x80d6x864ex4ecax5929x8981x5e72x6b7bx4f60
Comments: x6211x80d6x864ex4ecax5929x8981x5e72x6b7bx4f60
ProductName: x6211x80d6x864ex4ecax5929x8981x5e72x6b7bx4f60
ProductVersion: 1.0.0.0
FileDescription: x6211x80d6x864ex4ecax5929x8981x5e72x6b7bx4f60
Translation: 0x0804 0x04b0

Graftor.138174 also known as:

K7AntiVirus	Trojan ( 005246d51 )
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
ALYac	Gen:Variant.Graftor.138174
Cylance	Unsafe
Sangfor	Win.Malware.Zusy-6840460-0
CrowdStrike	win/malicious_confidence_90% (W)
BitDefender	Gen:Variant.Graftor.138174
K7GW	Trojan ( 005246d51 )
Cybereason	malicious.2a341b
Cyren	W32/Agent.EW.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Packed.FlyStudio.AA potentially unwanted
APEX	Malicious
ClamAV	Win.Malware.Zusy-6840460-0
MicroWorld-eScan	Gen:Variant.Graftor.138174
Ad-Aware	Gen:Variant.Graftor.138174
Sophos	Generic ML PUA (PUA)
Comodo	Worm.Win32.Dropper.RA@1qraug
BitDefenderTheta	Gen:NN.ZexaF.34608.6q1@auWqg3eb
McAfee-GW-Edition	BehavesLike.Win32.Generic.dh
FireEye	Generic.mg.ae4db852a341b510
Emsisoft	Gen:Variant.Graftor.138174 (B)
SentinelOne	Static AI – Malicious PE
eGambit	Unsafe.AI_Score_100%
Microsoft	Trojan:Win32/Emotet!ml
Arcabit	Trojan.Graftor.D21BBE
GData	Win32.Trojan.PSE.1FOH0JX
AhnLab-V3	Dropper/Win32.Agent.C143488
Acronis	suspicious
McAfee	Artemis!AE4DB852A341
MAX	malware (ai score=80)
Malwarebytes	Trojan.MalPack.FlyStudio
Rising	Malware.Heuristic!ET#97% (RDMK:cmRtazotLrUP+f1Iccw12aO9ccdC)
MaxSecure	Trojan.Malware.300983.susgen
Paloalto	generic.ml
Qihoo-360	HEUR/QVM07.1.E2BB.Malware.Gen

How to remove Graftor.138174?

Graftor.138174 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X