Malware.AI.3538804106 removal guide

The Malware.AI.3538804106 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3538804106 virus can do?

Unconventionial language used in binary resources: Russian
The executable is compressed using UPX
Anomalous binary characteristics

How to determine Malware.AI.3538804106?


File Info:
crc32: 8F85E717
md5: 7f935c3cf73d781d0d24d2c3df0f0cbd
name: 7F935C3CF73D781D0D24D2C3DF0F0CBD.mlw
sha1: a97d0e8406fa305f1d860d562ed1e92a6c96dbeb
sha256: ab4cfa24c792d34e334bff2cf1d460c7cae34f0a4548f0c9ff99e441b558be9a
sha512: 2f1db25f168131cfaef1db93aae6e1913b5686ef483d36d9b1595981085de54530c22c1a1203dd85cb497ff30d69e347cc09a3f40fb163d291746e7779542b22
ssdeep: 3072:nDytZTBSJ0WvgUM3GcXG9jOC+yj0BqigdKlaQBqyjU:mbfWIIc29f0siMxQMyj
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed

Version Info:
LegalCopyright: WhdvOodWM
InternalName: lq1Qvi.4K
FileVersion: ZdHSNlkOl
CompanyName: FokO.IO9w
ProductName: HJD4 sj8M
ProductVersion: D8g0MhFbo
FileDescription: KfB6mvooD
OriginalFilename: FSld5H4mU
Translation: 0x0000 0x0000

Malware.AI.3538804106 also known as:

Bkav	W32.AIDetect.malware1
Elastic	malicious (high confidence)
DrWeb	Trojan.Packed.20312
ClamAV	Win.Trojan.Generic-42
ALYac	Gen:Heur.VIZ.2
Cylance	Unsafe
Zillya	Trojan.Kryptik.Win32.89759
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (D)
Alibaba	Worm:Win32/Palevo.5f7055a7
K7GW	Trojan ( 004bcce41 )
K7AntiVirus	Trojan ( 004bcce41 )
Cyren	W32/Rimecud.I.gen!Eldorado
Symantec	W32.Pilleuz!gen6
ESET-NOD32	a variant of Win32/Kryptik.SQK
APEX	Malicious
Avast	Win32:CrumPX [Cryp]
Cynet	Malicious (score: 100)
Kaspersky	P2P-Worm.Win32.Palevo.jub
BitDefender	Gen:Heur.VIZ.2
NANO-Antivirus	Trojan.Win32.Katusha.bwicz
MicroWorld-eScan	Gen:Heur.VIZ.2
Tencent	Win32.Worm-p2p.Palevo.Alst
Ad-Aware	Gen:Heur.VIZ.2
Sophos	ML/PE-A + Mal/EncPk-ZC
Comodo	MalCrypt.Indus!@1qrzi1
BitDefenderTheta	AI:Packer.948A0CD61F
VIPRE	Packed.Win32.Crum (v)
TrendMicro	WORM_PALEVO.SMDI
McAfee-GW-Edition	W32/Palevo.gen.a
FireEye	Generic.mg.7f935c3cf73d781d
Emsisoft	Gen:Heur.VIZ.2 (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Worm/Palevo.jub
Avira	TR/Crypt.XPACK.Gen
Antiy-AVL	Trojan/Generic.ASMalwS.F194AE
Microsoft	Trojan:Win32/Wacatac.B!ml
Arcabit	Trojan.VIZ.2
SUPERAntiSpyware	Trojan.Agent/Gen-Kryptik
ZoneAlarm	HEUR:Trojan.Win32.Generic.Cds.a
GData	Gen:Heur.VIZ.2
AhnLab-V3	Worm/Win32.Palevo.R1783
Acronis	suspicious
McAfee	W32/Palevo.gen.a
MAX	malware (ai score=100)
VBA32	Malware-Cryptor.Limpopo
Malwarebytes	Malware.AI.3538804106
Panda	Trj/Rimecud.a
TrendMicro-HouseCall	WORM_PALEVO.SMDI
Yandex	Trojan.Kryptik!n8TsFaGNCFQ
Ikarus	P2P-Worm.Win32.Palevo
MaxSecure	Trojan.Malware.1337535.susgen
Fortinet	W32/Palevo.SMDI!tr
AVG	Win32:CrumPX [Cryp]
Paloalto	generic.ml

How to remove Malware.AI.3538804106?

Malware.AI.3538804106 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X