Malware.AI.4229163366 removal

The Malware.AI.4229163366 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4229163366 virus can do?

The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Malware.AI.4229163366?


File Info:
name: A3514CF40D8CCAA4C590.mlw
path: /opt/CAPEv2/storage/binaries/49b39a6c32ee90560f897187aa0865fc341599c0a60d7d772b3f75cd91d8cd4a
crc32: E901E12D
md5: a3514cf40d8ccaa4c5906f1d10ecaf8a
sha1: 9f9332ffbbab1825d327d42205fb1da7d84394f3
sha256: 49b39a6c32ee90560f897187aa0865fc341599c0a60d7d772b3f75cd91d8cd4a
sha512: 8f1603a13488e999c8acbf56e8f0700d508d675f39edfc56e604b7d1e9d4bd620da4124d97a0d68b384ed5c8105b83e169da9510a89204b716f4aeccbef4a56e
ssdeep: 24576:HCdxte/80jYLT3U1jfH5c7HU/ihjwF4GFlUSOnKQrEzKHrzuw:2w80cTsjP5c70v4GFlQnTVrz
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T17C65DF2273DDC370CB669173BF6A73057EBB78650634B85B2F880D39A950171262DBA3
sha3_384: b3b9406f23b0c4dc4c9b695d01077b22abae6c7c84d58cc450cf51394221deb74579394714f489a3db28fb47a7c2630d
ep_bytes: e8b8d00000e97ffeffffcccccccccccc
timestamp: 2016-11-02 10:20:41

Version Info:
CompanyName: Avira Operations GmbH & Co. KG
FileVersion: 14.0.23.0
LegalCopyright: Copyright 2016 Avira Operations GmbH & Co. KG. All rights reserved.
OriginalFilename: LD_Guard_GavidDBCache.exe
ProductName: Avira Swat Apl Rs
ProductVersion: 14.0.23.0
Translation: 0x0809 0x04b0

Malware.AI.4229163366 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Ramy.4!c
MicroWorld-eScan	AIT.Heur.Ramy.1.7BD1D5FD.Gen
FireEye	Generic.mg.a3514cf40d8ccaa4
ALYac	AIT.Heur.Ramy.1.7BD1D5FD.Gen
Malwarebytes	Malware.AI.4229163366
Sangfor	Trojan.Win32.Agent.Vbeo
CrowdStrike	win/malicious_confidence_100% (W)
Elastic	malicious (high confidence)
APEX	Malicious
BitDefender	AIT.Heur.Ramy.1.7BD1D5FD.Gen
Emsisoft	AIT.Heur.Ramy.1.7BD1D5FD.Gen (B)
VIPRE	AIT.Heur.Ramy.1.7BD1D5FD.Gen
McAfee-GW-Edition	BehavesLike.Win32.TrojanAitInject.tc
Trapmine	malicious.high.ml.score
Sophos	Generic ML PUA (PUA)
SentinelOne	Static AI – Suspicious PE
GData	AIT.Heur.Ramy.1.7BD1D5FD.Gen (2x)
Google	Detected
Antiy-AVL	Trojan[Downloader]/Autoit.Inetget.a
Arcabit	AIT.Heur.Ramy.1.7BD1D5FD.Gen [many]
Microsoft	Program:Win32/Wacapew.C!ml
Cynet	Malicious (score: 100)
VBA32	Trojan.Autoit.Wirus
MAX	malware (ai score=82)
Cylance	unsafe
TrendMicro-HouseCall	TROJ_GEN.R002H09H323
Ikarus	Trojan.SuspectCRC
MaxSecure	Trojan.Malware.214891584.susgen
Fortinet	W32/PossibleThreat
DeepInstinct	MALICIOUS

How to remove Malware.AI.4229163366?

Malware.AI.4229163366 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X