Malware.AI.3785679347 removal guide

The Malware.AI.3785679347 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Malware.AI.3785679347 virus can do?

A process attempted to delay the analysis task.
Reads data out of its own binary image
A process created a hidden window
Drops a binary and executes it
A scripting utility was executed
Uses Windows utilities for basic functionality
Attempts to modify desktop wallpaper
Installs itself for autorun at Windows startup
Exhibits possible ransomware file modification behavior
Creates a hidden or system file
Harvests information related to installed mail clients
Uses suspicious command line tools or Windows utilities

Related domains:

z.whorecord.xyz

a.tomx.xyz

How to determine Malware.AI.3785679347?


File Info:
crc32: 38464119
md5: 9c178c87561fe518a3034e78e0041b3f
name: 9C178C87561FE518A3034E78E0041B3F.mlw
sha1: 070ff51cf5d69f61e0b51c963d83a42611f43194
sha256: d6e44edef14d894b837019be4235b6d0d61e2526cf6e088f6955c8fd0c7d4230
sha512: efa6d31bcce220c79f771cd491db6a5dcaae18dd8ea2f42c181491ae68b95a96c9ab1aff4fe0616f728cc8c8f8ba243a37986f83bcfb13f0e495b190f48980f2
ssdeep: 12288:Dk5L2FqPboE9GToedDtgs71EFXJcMkntzlJcX7ekiJ8Q2:D2yQPboESo+DtgsC3WgrefO
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: xa9 Microsoft Corporation. All rights reserved.
InternalName: explorer
FileVersion: 6.1.7601.23537 (win7sp1_ldr.160829-0600)
CompanyName: Microsoft Corporation
ProductName: Microsoftxae Windowsxae Operating System
ProductVersion: 6.1.7601.23537
FileDescription: Windows Explorer
OriginalFilename: EXPLORER.EXE
Translation: 0x0409 0x04b0

Malware.AI.3785679347 also known as:

K7AntiVirus	Trojan ( 005246d51 )
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (high confidence)
DrWeb	Trojan.MulDrop7.51349
Cynet	Malicious (score: 99)
CAT-QuickHeal	Risktool.Flystudio.17514
ALYac	Trojan.Ransom.UselessFiles
Cylance	Unsafe
Alibaba	Worm:Win32/Diztakun.4860e7ef
K7GW	Trojan ( 005246d51 )
Cybereason	malicious.7561fe
Cyren	W32/OnlineGames.HI.gen!Eldorado
Symantec	Ransom.Enciphered
ESET-NOD32	multiple detections
APEX	Malicious
Avast	Win32:Malware-gen
ClamAV	Win.Trojan.Agent-6527677-0
Kaspersky	Trojan.Win32.Diztakun.bioi
BitDefender	Trojan.GenericKD.40506954
NANO-Antivirus	Trojan.Win32.FlyStudio.fatwyf
MicroWorld-eScan	Trojan.GenericKD.40506954
Tencent	Win32.Trojan.Diztakun.Htlv
Ad-Aware	Trojan.GenericKD.40506954
Sophos	Generic ML PUA (PUA)
Comodo	Malware@#13e8ohrmi50i
BitDefenderTheta	Gen:NN.ZexaF.34170.umGfa8uRQbab
VIPRE	Trojan.Win32.OnlineGames
TrendMicro	Ransom_USELESS.THEODAH
FireEye	Trojan.GenericKD.40506954
Emsisoft	Trojan.GenericKD.40506954 (B)
Jiangmin	Trojan.Banker.Banbra.cnm
Avira	TR/Muldrop.sqhkb
Antiy-AVL	Trojan/Generic.ASCommon.FA
Kingsoft	Win32.Troj.Undef.(kcloud)
Microsoft	Trojan:Win32/Occamy.C
GData	Win32.Trojan.PSE.11B5R9D
AhnLab-V3	Trojan/Win32.Siggen.C197991
McAfee	Artemis!9C178C87561F
MAX	malware (ai score=97)
VBA32	Trojan-Banker.Banbra
Malwarebytes	Malware.AI.3785679347
Panda	Trj/CI.A
TrendMicro-HouseCall	Ransom_USELESS.THEODAH
Yandex	Trojan.Diztakun!YbEygng65Gs
Ikarus	Trojan.Hosts
Fortinet	Riskware/Application
AVG	Win32:Malware-gen
Paloalto	generic.ml

How to remove Malware.AI.3785679347?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Malware.AI.3785679347 removal guide