Malware.AI.4245428295 removal instruction

The Malware.AI.4245428295 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4245428295 virus can do?

Behavioural detection: Executable code extraction – unpacking
Dynamic (imported) function loading detected
Authenticode signature is invalid

How to determine Malware.AI.4245428295?


File Info:
name: F189656DEFCC0C5BCF2F.mlw
path: /opt/CAPEv2/storage/binaries/6a48a7c649b4bf38fce8276ee01f911bc69088ee8f7c4bf5dbcb945ed5e614e2
crc32: AA5F755C
md5: f189656defcc0c5bcf2f48f8d2e42ff1
sha1: 268d9559c12a97270310972e7730298607d389c3
sha256: 6a48a7c649b4bf38fce8276ee01f911bc69088ee8f7c4bf5dbcb945ed5e614e2
sha512: 0f70c76a39d70df62d6a440b323b679f3cc39c34af6074749c5b218bf719b1e129164a5939ca757db99db9eb5ebc9e011fb9e66039b25e03e7039a8ba4064848
ssdeep: 3072:hlvXOjAnQUBxkMj4hLqkQ+M23gKWmA4Xytv9QCTe0+9qLngRG:3POjAnQUBxkMj4hLLMfKWUXMvOCTe0+0
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T134D36C37E660145AE752C0B00C3599B9342ABE368A50AD5732C5DF3929379D3BAF270F
sha3_384: 4b2588fd973d8829af46ccd62957783e60268322fbeb513bb08e35ee72a33eed548f462f336caa6169c4b26fb2006cff
ep_bytes: 68a4254000e8eeffffff000000000000
timestamp: 2010-04-02 09:08:29

Version Info:
Translation: 0x0409 0x04b0
Comments: Клиентский модуль системы тестирования учащихся
CompanyName: Euro Desht Com, Kazakh Soft
FileDescription: Tester
LegalCopyright: http://www.ks.kz
LegalTrademarks: АСТРА.Тестирование
ProductName: Tester
FileVersion: 1.00.0011
ProductVersion: 1.00.0011
InternalName: TESTER
OriginalFilename: TESTER.exe

Malware.AI.4245428295 also known as:

Lionic	Trojan.Win32.Generic.4!c
MicroWorld-eScan	Gen:Variant.Johnnie.86924
FireEye	Gen:Variant.Johnnie.86924
CAT-QuickHeal	Trojan.JohnnieVMF.S20619639
ALYac	Gen:Variant.Johnnie.86924
Cylance	Unsafe
Sangfor	Trojan.Win32.Generic.8
Alibaba	TrojanDropper:Win32/Generic.7a095291
Cybereason	malicious.defcc0
TrendMicro-HouseCall	TROJ_GEN.R002H0CLB21
BitDefender	Gen:Variant.Johnnie.86924
Avast	Win32:Malware-gen
Rising	Dropper.Generic!8.35E (CLOUD)
Ad-Aware	Gen:Variant.Johnnie.86924
Emsisoft	Gen:Variant.Johnnie.86924 (B)
Comodo	Malware@#1gkijgm08f7yl
VIPRE	Trojan.Win32.Generic!BT
McAfee-GW-Edition	BehavesLike.Win32.BadFile.ch
Sophos	Mal/Generic-S (PUA)
Ikarus	Trojan.Dropper
Webroot	W32.Malware.Gen
Avira	TR/Dropper.Gen
Antiy-AVL	Trojan/Generic.ASMalwS.18CB795
Gridinsoft	Ransom.Win32.Wacatac.sa
Microsoft	PUA:Win32/Presenoker
GData	Gen:Variant.Johnnie.86924
Cynet	Malicious (score: 99)
McAfee	Artemis!F189656DEFCC
MAX	malware (ai score=86)
Malwarebytes	Malware.AI.4245428295
APEX	Malicious
Tencent	Win32.Trojan.Dropper.Ebqf
AVG	Win32:Malware-gen

How to remove Malware.AI.4245428295?

Malware.AI.4245428295 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X