Graftor.274735 removal instruction

The Graftor.274735 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Graftor.274735 virus can do?

Reads data out of its own binary image
A process created a hidden window
Drops a binary and executes it
HTTP traffic contains suspicious features which may be indicative of malware related traffic
Performs some HTTP requests
Uses Windows utilities for basic functionality
Attempts to remove evidence of file being downloaded from the Internet
Attempts to delete volume shadow copies
Deletes its original binary from disk
Exhibits behavior characteristic of Alphacrypt/Teslacrypt ransomware
Installs itself for autorun at Windows startup
Writes a potential ransom message to disk
Creates a hidden or system file
Attempts to modify proxy settings
Creates a copy of itself
Uses suspicious command line tools or Windows utilities

Related domains:

z.whorecord.xyz

a.tomx.xyz

tele-channel.com

multibrandphone.com

vtechshop.net

sappmtraining.com

shirongfeng.cn

controlfreaknetworks.com

How to determine Graftor.274735?


File Info:
crc32: 3C32BCE9
md5: 769d755972c176deed2e6f1ff0475a69
name: 769D755972C176DEED2E6F1FF0475A69.mlw
sha1: ad974d12224780d3afeb461783e376a89ec5889e
sha256: 6b1387c468c77d254468f6f59db96553c9d78fb41bcf4da0ae7306178a3c2bc7
sha512: 2d3a195f25288e6aa924c860c14b66a52682489f00efdb856d3f743f3520fd885022a25fac3af2ca0e73286c809a67864ab8c07acd19f59732e2a8196af65e73
ssdeep: 3072:m6BPlzCGAAX0Tt/pjJIn82zwAB/qIgkVpvIFPrJP2G8/Ev99EDyJGjuQeDTRpb8:PnyoqIfAlR2H/Ev9qeGjsXb8
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
0: [No Data]

Graftor.274735 also known as:

Bkav	W32.AIDetect.malware1
K7AntiVirus	Trojan ( 004dc0021 )
Elastic	malicious (high confidence)
DrWeb	Trojan.Encoder.4130
Cynet	Malicious (score: 100)
ALYac	Gen:Variant.Graftor.274735
Cylance	Unsafe
Zillya	Trojan.Filecoder.Win32.11218
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_80% (D)
K7GW	Trojan ( 004dc0021 )
Cybereason	malicious.972c17
Symantec	Ransom.TeslaCrypt
ESET-NOD32	a variant of Win32/Filecoder.TeslaCrypt.I
APEX	Malicious
Avast	Win32:Mutex-I [Trj]
ClamAV	Win.Ransomware.Teslacrypt-7344116-0
Kaspersky	UDS:Trojan.Win32.Generic
BitDefender	Gen:Variant.Graftor.274735
NANO-Antivirus	Trojan.Win32.Encoder.eaxzhs
MicroWorld-eScan	Gen:Variant.Graftor.274735
Tencent	Malware.Win32.Gencirc.114bc5c9
Ad-Aware	Gen:Variant.Graftor.274735
Sophos	Mal/Generic-S
BitDefenderTheta	Gen:NN.ZexaF.34686.quW@auBK9uei
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	Ransom_CRYPTESLA.F116KN
McAfee-GW-Edition	BehavesLike.Win32.Emotet.dh
FireEye	Generic.mg.769d755972c176de
Emsisoft	Gen:Variant.Graftor.274735 (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan.Generic.tars
Microsoft	Ransom:Win32/Tescrypt.O
AegisLab	Trojan.Win32.Generic.4!c
GData	Gen:Variant.Graftor.274735
AhnLab-V3	Malware/Win32.RL_Generic.R294463
McAfee	GenericRXIY-GH!769D755972C1
MAX	malware (ai score=100)
VBA32	Hoax.Bitman
Panda	Trj/GdSda.A
TrendMicro-HouseCall	Ransom_CRYPTESLA.F116KN
Rising	Ransom.Tescrypt!8.3AF (CLOUD)
Yandex	Trojan.Agent!NrJ0Tp4OCao
Ikarus	Trojan-Ransom.TeslaCrypt
Fortinet	W32/Kryptik.2240!tr
AVG	Win32:Mutex-I [Trj]
Paloalto	generic.ml

How to remove Graftor.274735?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Graftor.274735 removal instruction