Malware.AI.4220816561 removal tips

The Malware.AI.4220816561 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Malware.AI.4220816561 virus can do?

Executable code extraction
Creates RWX memory
The binary likely contains encrypted or compressed data.
Attempts to repeatedly call a single API many times in order to delay analysis time
Network activity detected but not expressed in API logs
Anomalous binary characteristics

Related domains:

z.whorecord.xyz

a.tomx.xyz

How to determine Malware.AI.4220816561?


File Info:
crc32: 8812560D
md5: 5fb572091c58721e7c152fa4ca66d215
name: 5FB572091C58721E7C152FA4CA66D215.mlw
sha1: 6ee683890358045636f4b4544847daf090522fad
sha256: 158a6fde1ff14aa2d833445547da59353226732041f129f7f5f6275eb2be22f4
sha512: ae7fb373151350aad0e8819a3de1518e07ca906aad02c57443cb4b908280c42f10bddfc5a096ef4c4b8ccf1cb0b392dfdce98aa921bac50e71c44a5cb5072aac
ssdeep: 3072:QyVuh1XWViVSBxykI0CDbjVpAT+Q562C4c/4cv3B:FuS8MqknIR6h562C3/3
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
Translation: 0x0409 0x04b0
LegalCopyright: Copyright xa9 2001-2004 Glen Sawyer
InternalName: MP3GainGUI
FileVersion: 1.02.0005
CompanyName: Snelg Enterprises
ProductName: MP3Gain GUI
ProductVersion: 1.02.0005
FileDescription: MP3Gain GUI
OriginalFilename: MP3GainGUI.exe

Malware.AI.4220816561 also known as:

Bkav	W32.AIDetect.malware2
K7AntiVirus	Trojan ( 0051e00a1 )
Lionic	Trojan.Win32.Zbot.l!c
Elastic	malicious (high confidence)
DrWeb	Trojan.Siggen8.40548
Cynet	Malicious (score: 100)
ALYac	Trojan.Zbot.Gen
Cylance	Unsafe
Zillya	Trojan.Zbot.Win32.198494
Sangfor	Trojan.Win32.Zbot.MTB
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	TrojanSpy:Win32/Kryptik.85a4833b
K7GW	Trojan ( 0051e00a1 )
Cybereason	malicious.91c587
Cyren	W32/Trojan.NROE-5749
Symantec	Ransom.Kovter
ESET-NOD32	a variant of Win32/Kryptik.FJBP
APEX	Malicious
Avast	Win32:Trojan-gen
ClamAV	Win.Trojan.Agent-1816980
Kaspersky	Trojan-Spy.Win32.Zbot.ziua
BitDefender	Gen:Variant.Zusy.210678
NANO-Antivirus	Trojan.Win32.Kryptik.fghzay
ViRobot	Trojan.Win32.S.Zbot.102400
MicroWorld-eScan	Gen:Variant.Zusy.210678
Tencent	Malware.Win32.Gencirc.114b1836
Ad-Aware	Gen:Variant.Zusy.210678
Sophos	Mal/Generic-S
Comodo	Malware@#2hus68rfynw31
BitDefenderTheta	Gen:NN.ZexaF.34266.gy0@aioBPOp
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	TROJ_KRYPTIK.QGG
McAfee-GW-Edition	Trojan-FKDU!5FB572091C58
FireEye	Generic.mg.5fb572091c58721e
Emsisoft	Gen:Variant.Zusy.210678 (B)
SentinelOne	Static AI – Suspicious PE
Jiangmin	TrojanSpy.Zbot.fogr
Webroot	W32.Trojan.Gen
Avira	HEUR/AGEN.1109543
Antiy-AVL	Trojan/Generic.ASMalwS.1C2F92F
Kingsoft	Win32.Troj.Zbot.xj.(kcloud)
Microsoft	PWS:Win32/Zbot!MTB
GData	Gen:Variant.Zusy.210678
TACHYON	Trojan-Spy/W32.ZBot.102400.BV
AhnLab-V3	Dropper/Win32.Necurs.R189821
McAfee	Trojan-FKDU!5FB572091C58
MAX	malware (ai score=100)
VBA32	TrojanSpy.Zbot
Malwarebytes	Malware.AI.4220816561
Panda	Trj/GdSda.A
TrendMicro-HouseCall	TROJ_KRYPTIK.QGG
Rising	Trojan.Generic@ML.98 (RDML:oEHFjhyghGN97D0T+3HPEg)
Yandex	Trojan.GenAsa!bE3TjMpeJ8o
Ikarus	Trojan.Win32.Krypt
Fortinet	W32/Kryptik.FJBP!tr
AVG	Win32:Trojan-gen
Paloalto	generic.ml

How to remove Malware.AI.4220816561?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Malware.AI.4220816561 removal tips