How to remove “Malware.AI.1306609717”?

The Malware.AI.1306609717 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1306609717 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Dynamic (imported) function loading detected
Authenticode signature is invalid
Network activity detected but not expressed in API logs

How to determine Malware.AI.1306609717?


File Info:
name: 94154A8E7F85C59AF155.mlw
path: /opt/CAPEv2/storage/binaries/d6e4f96a99dcacacf824f1d74c5ef459b8cdc3338da106d255bc33b69b954160
crc32: F1ECD193
md5: 94154a8e7f85c59af15527143d642d95
sha1: 37005bd2dec5bf27c033330e2d52f14f0a638a26
sha256: d6e4f96a99dcacacf824f1d74c5ef459b8cdc3338da106d255bc33b69b954160
sha512: e43c51fc8d9b35dda9d2ff6f43ff613204885b94dc5e455c7ac0672c125451b07ce3b6b98e860a84bbaf99c1f60ac604fcb1257cee39202e56e68e4bb8a3cc56
ssdeep: 6144:CSoPbFIUMvxVA7a8udlXiIi7IpbUzenafQLV6sKKRQ:UbFIUMpW7a8szpvnlLVZFRQ
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T19C847D12B7918A37E76342320ED6C766BB78ED204F238747739C7B0CAF756B02A26155
sha3_384: 5a8e963ba9775f5e429728b09a954b787168ee1f52ec576c0928f6428383f79be5e0e18df4eba4bffc95925ad1d41f58
ep_bytes: 558bec6aff68102e430068704c410064
timestamp: 2005-03-18 06:11:23

Version Info:
Comments: 
CompanyName: 
FileDescription: FTLINK MFC Application
FileVersion: 1, 0, 0, 1
InternalName: FTLINK
LegalCopyright: Copyright (C) 2001-2002 Federal Technologies Limited
LegalTrademarks: 
OriginalFilename: FTLINK.EXE
PrivateBuild: 
ProductName: FTLINK Application
ProductVersion: 1, 0, 0, 1
SpecialBuild: 
Translation: 0x0409 0x04b0

Malware.AI.1306609717 also known as:

Lionic	Trojan.Win32.Generic.4!c
MicroWorld-eScan	Trojan.GenericKD.47032241
FireEye	Generic.mg.94154a8e7f85c59a
ALYac	Trojan.GenericKD.47032241
Cylance	Unsafe
Zillya	Trojan.Refroso.Win32.55740
Sangfor	Trojan.Win32.Wacatac.B
CrowdStrike	win/malicious_confidence_100% (W)
Symantec	ML.Attribute.HighConfidence
TrendMicro-HouseCall	TROJ_GEN.R002C0PIO21
Paloalto	generic.ml
BitDefender	Trojan.GenericKD.47032241
NANO-Antivirus	Trojan.Win32.Refroso.btveta
Avast	Win32:Malware-gen
Ad-Aware	Trojan.GenericKD.47032241
DrWeb	BackDoor.Bifrost.27421
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	TROJ_GEN.R002C0PIO21
McAfee-GW-Edition	GenericR-LNF!94154A8E7F85
Emsisoft	Trojan.GenericKD.47032241 (B)
GData	Trojan.GenericKD.47032241
Jiangmin	Trojan/Refroso.aibr
Avira	TR/Agent.itddz
ViRobot	Trojan.Win32.A.Refroso.270336.CK
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 99)
McAfee	GenericR-LNF!94154A8E7F85
MAX	malware (ai score=80)
VBA32	Trojan.Refroso
Malwarebytes	Malware.AI.1306609717
Rising	Trojan.Generic@ML.81 (RDML:eqvOWavfX2IlDcTvWwIcmA)
Yandex	Trojan.GenAsa!AN7GJk3fQKw
Fortinet	PossibleThreat
Webroot	W32.Malware.Gen
AVG	Win32:Malware-gen

How to remove Malware.AI.1306609717?

Malware.AI.1306609717 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X