Malware.AI.1869766829 removal guide

The Malware.AI.1869766829 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1869766829 virus can do?

The binary likely contains encrypted or compressed data.
Network activity detected but not expressed in API logs

How to determine Malware.AI.1869766829?


File Info:
crc32: 150D196D
md5: 46e9327ef64eda78ec35bf78cdac58ab
name: 46E9327EF64EDA78EC35BF78CDAC58AB.mlw
sha1: ece3470cef5d066a1015a93e86355ef0a954d883
sha256: cde12c27ae541272d3657a407159ef9f5a5d7a000d7e889118e5042c0ff03d40
sha512: ed1f3fb1c83d0cdccc4776865fe40a7766c9b16a7a7e9584e703d7cec5ae04a7312a54fb9c55b47f1d2acc8414ad800573e1bbb7b2606e6acca995fa8b4fb322
ssdeep: 12288:BDjc3jtB0ukX7dJblTZOBHvzIAvVuE9uQCCGs6A2dhhEQVU0s2etO7:DrdJbqBPkq9uQRGO2MVt
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: xa9 LAYVUUXNA. All rights reserved.
InternalName: oesga
FileVersion: 8.20.77.38326
CompanyName: LAYVUUXNA
ProductName: Ukovayc
ProductVersion: 8.20.77.38326
FileDescription: Iuroqr Kzausic aomogarfa
OriginalFilename: oesga.exe
Translation: 0x0409 0x04b0

Malware.AI.1869766829 also known as:

Bkav	W32.AIDetect.malware1
K7AntiVirus	Adware ( 00576d941 )
Lionic	Adware.Win32.Hpdefender.2!c
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
ALYac	Gen:Variant.Adware.Symmi.90089
Cylance	Unsafe
Zillya	Adware.Hpdefender.Win32.6
CrowdStrike	win/malicious_confidence_90% (D)
Alibaba	AdWare:Win32/Hpdefender.00800d68
Cybereason	malicious.ef64ed
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	Win32/Adware.HPDefender.BGE
APEX	Malicious
Avast	Win32:Adware-gen [Adw]
Kaspersky	not-a-virus:AdWare.Win32.Hpdefender.lta
BitDefender	Gen:Variant.Adware.Symmi.90089
NANO-Antivirus	Riskware.Win32.Hpdefender.esboyr
MicroWorld-eScan	Gen:Variant.Adware.Symmi.90089
Tencent	Win32.Adware.Hpdefender.Pfjt
Ad-Aware	Gen:Variant.Adware.Symmi.90089
Sophos	Generic PUA OM (PUA)
Comodo	ApplicUnwnt@#1qqlvo47vpls4
F-Secure	Heuristic.HEUR/AGEN.1103314
BitDefenderTheta	Gen:NN.ZexaF.34266.Ry0@aGJuJBci
VIPRE	Adware.Win32.Hpdefender
TrendMicro	TROJ_GEN.R002C0PJS21
McAfee-GW-Edition	BehavesLike.Win32.Generic.jh
FireEye	Generic.mg.46e9327ef64eda78
Emsisoft	Gen:Variant.Adware.Symmi.90089 (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	AdWare.Hpdefender.ht
Webroot	W32.Trojan.Gen
Avira	HEUR/AGEN.1103314
Antiy-AVL	GrayWare[AdWare]/Win32.Hpdefender
Microsoft	Trojan:Win32/Occamy.CCD
Arcabit	Trojan.Adware.Symmi.D15FE9
ZoneAlarm	not-a-virus:AdWare.Win32.Hpdefender.lta
GData	Gen:Variant.Adware.Symmi.90089
AhnLab-V3	Adware/Win32.Hpdefender.C2185395
Acronis	suspicious
McAfee	PUP-XFQ-BZ
MAX	malware (ai score=66)
VBA32	Adware.Hpdefender
Malwarebytes	Malware.AI.1869766829
Panda	Trj/GdSda.A
TrendMicro-HouseCall	TROJ_GEN.R002C0PJS21
Rising	Trojan.Generic@ML.100 (RDML:cOVQXoCZ3K1QaVe5JwHtvw)
Yandex	Trojan.GenAsa!TZfuZekyojc
Ikarus	PUA.HPDefender
Fortinet	Riskware/HPDefender
AVG	Win32:Adware-gen [Adw]
Paloalto	generic.ml

How to remove Malware.AI.1869766829?

Malware.AI.1869766829 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X