Should I remove “Malware.AI.4168849349”?

The Malware.AI.4168849349 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4168849349 virus can do?

Reads data out of its own binary image
Drops a binary and executes it
Network activity detected but not expressed in API logs
Anomalous binary characteristics

How to determine Malware.AI.4168849349?


File Info:
crc32: 42040852
md5: 7000c97ef50adb95991991483a1c5976
name: 7000C97EF50ADB95991991483A1C5976.mlw
sha1: 54242cd3165a72a9fbd5fca859de6aceecc88dbe
sha256: 971e58fd7e08c3e308625fb482bd37913a7ddcc003569bc8e7817823cf7b4096
sha512: 2fdaafaa9f5f7549aefd6d138e9304dd148dfff5711ee11bea82892e759d44d33d8c4ad1bd103d6d528a0d5a26204fb224cc3ec0d131db82ae9ab4a9584ba4f6
ssdeep: 24576:esSzlEqF+hVcOcFnU19GWJb3VHR1E6CeisMk9IetJ+6TrcOH/LazP4TmOiPPKFR:wl8eOkUbGWJLYw9vhTrBLKwTzwPKH
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: Setup Engine Copyright xa9 2004 Indigo Rose Corporation
InternalName: suf70_launch
FileVersion: 7.0.1.0
CompanyName: 
PrivateBuild: 
LegalTrademarks: Setup Factory is a trademark of Indigo Rose Corporation.
Comments: Created with Setup Factory 7.0
ProductName: Setup Factory 7.0 Runtime
SpecialBuild: 
ProductVersion: 7.0.1.0
FileDescription: Setup Application
OriginalFilename: suf70_launch.exe
Translation: 0x0409 0x04e4

Malware.AI.4168849349 also known as:

Lionic	Adware.Win32.Agent.2!c
Elastic	malicious (high confidence)
DrWeb	Trojan.DownLoader11.30631
ALYac	Trojan.GenericKD.34363461
Cylance	Unsafe
Alibaba	AdWare:Win32/Generic.4a3a793d
K7GW	Adware ( 0050718d1 )
K7AntiVirus	Adware ( 0050718d1 )
Cyren	W32/OnlineGames.HI.gen!Eldorado
ESET-NOD32	a variant of Win32/Packed.FlyStudio.AA potentially unwanted
APEX	Malicious
Avast	Win32:PUP-gen [PUP]
Cynet	Malicious (score: 99)
Kaspersky	not-a-virus:UDS:AdWare.Win32.Agent.gen
BitDefender	Trojan.GenericKD.43657084
NANO-Antivirus	Trojan.Win32.Dwn.dskdvv
MicroWorld-eScan	Trojan.GenericKD.43657084
Ad-Aware	Trojan.GenericKD.43657084
Sophos	Mal/Generic-S
BitDefenderTheta	Gen:NN.ZexaF.34218.Wy0baCKx8qob
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	TROJ_FRS.0NA103ES20
McAfee-GW-Edition	Artemis
FireEye	Trojan.GenericKD.43657084
Emsisoft	Trojan.GenericKD.43657084 (B)
Webroot	W32.Malware.Gen
Avira	TR/Agent.1746189
eGambit	Unsafe.AI_Score_87%
Microsoft	Trojan:Win32/Occamy.C97
GData	Trojan.GenericKD.34363461
McAfee	Artemis!7000C97EF50A
MAX	malware (ai score=96)
VBA32	AdWare.Agent
Malwarebytes	Malware.AI.4168849349
Panda	Trj/CI.A
TrendMicro-HouseCall	TROJ_FRS.0NA103ES20
Ikarus	Trojan.Agent
MaxSecure	Virus.W32.Parite.a
Fortinet	Riskware/Agent
AVG	Win32:PUP-gen [PUP]
Paloalto	generic.ml

How to remove Malware.AI.4168849349?

Malware.AI.4168849349 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X