Malware

Jaik.55490 removal

Malware Removal

The Jaik.55490 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Jaik.55490 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Performs HTTP requests potentially not found in PCAP.
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Authenticode signature is invalid
  • Uses Windows utilities for basic functionality
  • Behavioural detection: Injection (inter-process)
  • Attempts to modify proxy settings
  • Harvests cookies for information gathering
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Jaik.55490?



File Info:

name: 47E142DDF53482033B54.mlw
path: /opt/CAPEv2/storage/binaries/3e9e910a589822a4f0cf5fc2f8917ffe13501e42ece5c0edf994a323c490d3d3
crc32: 440F9A41
md5: 47e142ddf53482033b54e62dba92c6cb
sha1: 9f1b94a10be8c05a4fbc2f1d805ba94fa73f5c1d
sha256: 3e9e910a589822a4f0cf5fc2f8917ffe13501e42ece5c0edf994a323c490d3d3
sha512: 8f67072dd6b9bbea27ee724a0e1565e823399525d85615011eecd1a27ca1835d5332bc55dad6bc6643f69666f58010ec1070c795ca7aef873d9c47a8b72c36c6
ssdeep: 12288:pwXMUqU7CTHTlFHjZqkWLVbzGmmpS/6U3hFeN+t/cRR5nWFpPoSikJR:pwcBTHTldjgkoVXGLUFectPbAk7
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T198458D52F592C0B2D6007539D4AE53B59EF4BDC1FAA58F8BA350FE283C3154CEA27219
sha3_384: dcb9946fed5cb0690acca321cdc9421940be4dbc21c57445c11446d0cc6d7b4b34e442ee7107b158514f751360f8873d
ep_bytes: 558bec6aff6838454e0068048d480064
timestamp: 2015-07-13 09:48:44


Version Info:

FileVersion: 1.0.0.0
FileDescription: 造梦西游4邪恶刷图工具
ProductName: 造梦西游4邪恶刷图工具
ProductVersion: 1.0.0.0
CompanyName: QQ:841826206
LegalCopyright: QQ:841826206 版权所有
Comments: 造梦西游4邪恶刷图工具
Translation: 0x0804 0x04b0

Jaik.55490 also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Generic.lwoF
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Jaik.55490
FireEyeGeneric.mg.47e142ddf5348203
McAfeeArtemis!47E142DDF534
MalwarebytesTrojan.MalPack.FlyStudio
ZillyaAdware.FlyStudio.Win32.4497
SangforPUP.Win32.Agent.Viyh
K7AntiVirusTrojan ( 005246d51 )
K7GWTrojan ( 005246d51 )
Cybereasonmalicious.df5348
BitDefenderThetaGen:NN.ZexaF.36250.jr0@aiQnbLkb
CyrenW32/S-1885075c!Eldorado
SymantecML.Attribute.HighConfidence
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/Packed.FlyStudio.AA potentially unwanted
APEXMalicious
ClamAVWin.Malware.Generic-9820446-0
BitDefenderGen:Variant.Jaik.55490
NANO-AntivirusRiskware.Win32.Adw.dwxmmv
AvastWin32:Adware-gen [Adw]
SophosGeneric Reputation PUA (PUA)
VIPREGen:Variant.Jaik.55490
McAfee-GW-EditionBehavesLike.Win32.Generic.th
Trapminesuspicious.low.ml.score
EmsisoftGen:Variant.Jaik.55490 (B)
SentinelOneStatic AI – Malicious PE
GDataWin32.Trojan.PSE.10248TU
GoogleDetected
Antiy-AVLTrojan/Win32.FlyStudio.a
XcitiumWorm.Win32.Dropper.RA@1qraug
ArcabitTrojan.Jaik.DD8C2
MicrosoftTrojan:Win32/Wacatac.A!ml
CynetMalicious (score: 100)
VBA32BScope.Trojan.Downloader
ALYacGen:Variant.Jaik.55490
MAXmalware (ai score=82)
Cylanceunsafe
TrendMicro-HouseCallTROJ_GEN.R002H0CEA23
RisingTrojan.Win32.Generic.1904F8FC (C64:YzY0OlxkZaY//ycT)
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/CoinMiner.PHP!tr
AVGWin32:Adware-gen [Adw]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_60% (D)

How to remove Jaik.55490?

Jaik.55490 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment