Malware.AI.2140729432 removal guide

The Malware.AI.2140729432 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Malware.AI.2140729432 virus can do?

Executable code extraction
Injection (inter-process)
Injection (Process Hollowing)
Creates RWX memory
A process created a hidden window
The binary likely contains encrypted or compressed data.
Executed a process and injected code into it, probably while unpacking
Creates or sets a registry key to a long series of bytes, possibly to store a binary or malware config
Exhibits behavior characteristic of Nymaim malware
Zeus P2P (Banking Trojan)
Collects information to fingerprint the system

Related domains:

z.whorecord.xyz

a.tomx.xyz

ywdovsevgsix.pw

svngj.in

ucuhdnk.com

kppxbflesjf.net

foqgqdqsr.net

invzip.net

vbcgkn.net

wpudukhqmg.in

wcspy.in

jdpurrjkzkgk.com

fzblwv.pw

omfqa.net

dprksr.net

wcqiaalh.in

dvyezqaxh.com

uqwnuyawxf.pw

knveaqucq.in

gihbokthvssn.com

txpgmqumzysx.pw

yfnaaejlgige.com

ofsivu.in

ercpzkehlby.in

yfmyfhmbxi.pw

dfgqvlpyks.net

faqhruraowd.net

dkgzjthjpoj.in

vzprpo.in

odcpduelqe.com

vnxnmvtzivn.in

qermqzwkab.in

srbuyaqocfu.in

kazif.com

cmcgim.pw

uwyqoplqrdt.net

zsjcrtwdhxop.com

bflqmbg.net

efbhycwgyj.in

fkhksduzospm.pw

tpkjg.in

qqlmujyg.net

How to determine Malware.AI.2140729432?


File Info:
crc32: A334D314
md5: 7f41955790f286278e3f31ff4346b3f3
name: 7F41955790F286278E3F31FF4346B3F3.mlw
sha1: 3f5e87a0aebc8458a704db99bc4e8333e34daca0
sha256: 18642613772b164c387f663bdc9e21d4aa9bddd65f117e8208e9a709b70197db
sha512: 4bc53276d1251aecdaef4c5b77128b52ac405a75718fa1f28f4fa2cc121319efe18f6112f2cd4cdab9c11ed8a32a0740d11129a9849506c3a67678c341f54279
ssdeep: 12288:3mDGIkrUdjqcD0v+/zHMS3sbjFZwolIWyNnOanVw5ITZ/p:3mDGIkriqy0vCHtsDwoV6VhNp
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
0: [No Data]

Malware.AI.2140729432 also known as:

Bkav	W32.AIDetectVM.malware2
Elastic	malicious (high confidence)
DrWeb	Trojan.Inject2.59668
MicroWorld-eScan	Trojan.Downloader.Nymaim.K
FireEye	Generic.mg.7f41955790f28627
CAT-QuickHeal	Trojan.Refinka.YB5
McAfee	Trojan-FOEB!7F41955790F2
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
AegisLab	Trojan.Win32.Refinka.4!c
Sangfor	Malware
K7AntiVirus	Trojan ( 005190011 )
BitDefender	Trojan.Downloader.Nymaim.K
K7GW	Trojan ( 005176201 )
Cybereason	malicious.790f28
BitDefenderTheta	Gen:NN.ZexaF.34804.MuW@a05PrNji
Cyren	W32/S-6c263928!Eldorado
Symantec	Packed.Generic.493
APEX	Malicious
Avast	Win32:Malware-gen
ClamAV	Win.Downloader.Nymaim-9779220-0
Kaspersky	HEUR:Trojan.Win32.Generic
NANO-Antivirus	Trojan.Win32.Kryptik.esvmtc
Rising	Trojan.Kryptik!1.AE8F (CLOUD)
Ad-Aware	Trojan.Downloader.Nymaim.K
Emsisoft	Trojan.Downloader.Nymaim.K (B)
Comodo	TrojWare.Win32.Ransom.Refinka.GL@794hgz
F-Secure	Heuristic.HEUR/AGEN.1111249
Zillya	Trojan.Refinka.Win32.900
TrendMicro	Ransom_CERBER.SMALY0
McAfee-GW-Edition	BehavesLike.Win32.Ransomware.jc
Sophos	ML/PE-A + Mal/Elenoocka-E
Ikarus	Trojan-Downloader.Win32.Nymaim
Jiangmin	Trojan.Refinka.kc
Webroot	W32.Trojan.Gen
Avira	HEUR/AGEN.1111249
Antiy-AVL	Trojan/Win32.Refinka
Microsoft	TrojanDownloader:Win32/Nymaim.K
Arcabit	Trojan.Downloader.Nymaim.K
ZoneAlarm	HEUR:Trojan.Win32.Generic
GData	Trojan.Downloader.Nymaim.K
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win32.Refinka.R209240
Acronis	suspicious
VBA32	Trojan.Refinka
ALYac	Trojan.Downloader.Nymaim.K
MAX	malware (ai score=100)
Malwarebytes	Malware.AI.2140729432
Panda	Trj/Genetic.gen
ESET-NOD32	a variant of Win32/Kryptik.FWVM
TrendMicro-HouseCall	Ransom_CERBER.SMALY0
Tencent	Malware.Win32.Gencirc.10b4059d
Yandex	Trojan.GenAsa!VGSN0W0fWNI
SentinelOne	Static AI – Malicious PE – Downloader
eGambit	Unsafe.AI_Score_63%
Fortinet	W32/Kryptik.GKKB!tr
AVG	Win32:Malware-gen
Paloalto	generic.ml
CrowdStrike	win/malicious_confidence_100% (D)
Qihoo-360	Win32/Trojan.6b0

How to remove Malware.AI.2140729432?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Gridinsoft Anti-Malware

Related domains:

z.whorecord.xyz

a.tomx.xyz

ywdovsevgsix.pw

svngj.in

ucuhdnk.com

kppxbflesjf.net

foqgqdqsr.net

invzip.net

vbcgkn.net

wpudukhqmg.in

wcspy.in

jdpurrjkzkgk.com

fzblwv.pw

omfqa.net

dprksr.net

wcqiaalh.in

dvyezqaxh.com

uqwnuyawxf.pw

knveaqucq.in

gihbokthvssn.com

txpgmqumzysx.pw

yfnaaejlgige.com

ofsivu.in

ercpzkehlby.in

yfmyfhmbxi.pw

dfgqvlpyks.net

faqhruraowd.net

dkgzjthjpoj.in

vzprpo.in

odcpduelqe.com

vnxnmvtzivn.in

qermqzwkab.in

srbuyaqocfu.in

kazif.com

cmcgim.pw

uwyqoplqrdt.net

zsjcrtwdhxop.com

bflqmbg.net

efbhycwgyj.in

fkhksduzospm.pw

tpkjg.in

qqlmujyg.net

How to determine Malware.AI.2140729432?

File Info:

Version Info:

Malware.AI.2140729432 also known as:

How to remove Malware.AI.2140729432?

You may also like

About the author

Paul Valéry

Leave a Comment X