Malware.AI.2283426488 removal guide

The Malware.AI.2283426488 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2283426488 virus can do?

Unconventionial binary language: Chinese (Simplified)
Unconventionial language used in binary resources: Chinese (Simplified)
Authenticode signature is invalid

How to determine Malware.AI.2283426488?


File Info:
name: 805EDB60A9B21F4FF807.mlw
path: /opt/CAPEv2/storage/binaries/14c4961f5266f838f6241eb5c0f67c3cdfb2a215de98b34b0dee36fce0b05bb8
crc32: 594B3292
md5: 805edb60a9b21f4ff80754c6d11a293d
sha1: 26dce09da78e0f275350a2e7e5538a09a319255c
sha256: 14c4961f5266f838f6241eb5c0f67c3cdfb2a215de98b34b0dee36fce0b05bb8
sha512: 2bd50487d4e7021d7a4d2b93dfd7d50cc3ebca5dafca7f04fd47a3aeb3f4b3a9272ab58a1a71907e3e416c9a3d860a1cd04a71fa3e8c6c489528da9429a920c8
ssdeep: 49152:1bVeGPptFdWTJIqUv5khOqYC7lNh3d3p7Y7Ip/VfuT+L16DPP:1bVeGNdWT6vyQ/Ut3p7YcVly
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15EE59D0DB7D585B1E5AF077843624E6A89F2BE11472481CFAB903D1D4F306D1FA3B2A6
sha3_384: d575845292f856bf91b923a33512bcafe65b0ace1d6334ac59fdba0b6c215c5a23edde016cc17485cbf3483dbc07eb4d
ep_bytes: e847a40000e917feffff558bec568b75
timestamp: 2019-04-11 08:26:57

Version Info:
CompanyName: 智能云五笔输入法
FileDescription: 智能云五笔输入法
InternalName: 智能云五笔输入法
LegalCopyright: Copyright (C) 2019
OriginalFilename: SCWBWizard.exe
ProductName: 智能云五笔输入法
ProductVersion: 1.4.4.10228
Translation: 0x0804 0x04b0

Malware.AI.2283426488 also known as:

Bkav	W32.AIDetect.malware1
Lionic	Adware.Win32.Burden.2!c
Elastic	malicious (high confidence)
FireEye	Generic.mg.805edb60a9b21f4f
Cylance	Unsafe
VIPRE	Virus.Win32.Sality.atbh (v)
Sangfor	Trojan.Win32.Sabsik.FL
K7AntiVirus	Adware ( 0056a7511 )
K7GW	Adware ( 0056a7511 )
Cybereason	malicious.da78e0
VirIT	Win32.Sality.BI
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Softcnapp.BD potentially unwanted
TrendMicro-HouseCall	PE_SALITY.ER
Kaspersky	not-a-virus:HEUR:AdWare.Win32.Burden.gen
Alibaba	AdWare:Win32/Softcnapp.183872f2
NANO-Antivirus	Virus.Win32.Virut-Gen.bwpxnc
Tencent	Pua:AdWare.Win32.Burden.16000073
Sophos	Generic PUA CG (PUA)
Zillya	Adware.Burden.Win32.6667
TrendMicro	PE_SALITY.ER
McAfee-GW-Edition	BehavesLike.Win32.PUP.vh
SentinelOne	Static AI – Malicious PE
APEX	Malicious
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
Malwarebytes	Malware.AI.2283426488
Rising	Virus.Sality/Debris!1.A12C (CLASSIC)
MaxSecure	Adware.not-a-virus.WIN32.AdWare.Burden.gen_a_192413
Fortinet	Adware/Softcnapp.BD
AVG	Win32:Sality [Inf]
Avast	Win32:Sality [Inf]

How to remove Malware.AI.2283426488?

Malware.AI.2283426488 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X