Malware.AI.3407841412 removal tips

The Malware.AI.3407841412 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3407841412 virus can do?

The binary likely contains encrypted or compressed data.
Network activity detected but not expressed in API logs

How to determine Malware.AI.3407841412?


File Info:
crc32: DC294984
md5: b3d8574a20c22e2c2cf0cfa6783c3609
name: B3D8574A20C22E2C2CF0CFA6783C3609.mlw
sha1: 432ded5332aa04810b817acf162e0ebe06871d24
sha256: 60333b9138bb30f9a4d5d48a699ad137fe46646b276b55e1dbec71f8cf1b1d2c
sha512: d723c419c133d4bf512b2be0909402376f32036c019dfcea9aa6c6a42cad7c76c955450d714ea6395da17ae7465ffabe3ffd6fbdbf02ff9b5c5a88f2777e32db
ssdeep: 12288:hDciVuNmzX/Ctyr8ZxJXTeBXQIEPGxcb7uVlSk0:hDciVuIFWL0gIEe06jSk0
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:
Translation: 0x0000 0x04b0
LegalCopyright: (C) 2020 NVIDIA Corporation. All rights reserved.
Assembly Version: 3.23.0.74
InternalName: nvsphelper647.exe
FileVersion: 3.23.0.74
CompanyName: NVIDIA Corporation
LegalTrademarks: 
Comments: NVIDIA ShadowPlay Helper
ProductName: NVIDIA GeForce Experience
ProductVersion: 3.23.0.74
FileDescription: NVIDIA ShadowPlay Helper
OriginalFilename: nvsphelper647.exe

Malware.AI.3407841412 also known as:

K7AntiVirus	Trojan ( 005813b11 )
Lionic	Trojan.MSIL.Seraph.a!c
Elastic	malicious (high confidence)
DrWeb	Trojan.Inject4.15713
ALYac	Trojan.GenericKD.37446263
Malwarebytes	Malware.AI.3407841412
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	TrojanDownloader:MSIL/Seraph.a1ad8249
K7GW	Trojan ( 005813b11 )
Cybereason	malicious.332aa0
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/Kryptik.ACNG
APEX	Malicious
Avast	Win32:CrypterX-gen [Trj]
Cynet	Malicious (score: 100)
Kaspersky	HEUR:Trojan-Downloader.MSIL.Seraph.gen
BitDefender	Trojan.GenericKD.37446263
MicroWorld-eScan	Trojan.GenericKD.37446263
Tencent	Msil.Trojan-downloader.Seraph.Pgmq
Ad-Aware	Trojan.GenericKD.37446263
Sophos	Mal/Generic-S
BitDefenderTheta	Gen:NN.ZemsilF.34104.Cm0@ai4BRJi
TrendMicro	TROJ_GEN.R002C0WHN21
McAfee-GW-Edition	Artemis!Trojan
FireEye	Trojan.GenericKD.37446263
Emsisoft	Trojan.GenericKD.37446263 (B)
Avira	TR/Kryptik.xiloi
Microsoft	Trojan:Win32/AgentTesla!ml
Arcabit	Trojan.Generic.D23B6277
GData	Trojan.GenericKD.37446263
AhnLab-V3	Trojan/Win.Generic.C4599663
McAfee	Artemis!B3D8574A20C2
MAX	malware (ai score=87)
VBA32	TScope.Trojan.MSIL
Panda	Trj/GdSda.A
TrendMicro-HouseCall	TROJ_GEN.R002C0WHN21
Ikarus	Trojan.Inject
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/Seraph.ACNG!tr.dldr
AVG	Win32:CrypterX-gen [Trj]
Paloalto	generic.ml

How to remove Malware.AI.3407841412?

Malware.AI.3407841412 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X