Malware.AI.4279833116 removal guide

The Malware.AI.4279833116 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4279833116 virus can do?

The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.4279833116?


File Info:
name: 86A9289353C0FD907525.mlw
path: /opt/CAPEv2/storage/binaries/990c5a7f36e598790bee59b2397c92dd7d7e3ac72d32e1223cbdfb60e2fbb9b7
crc32: 69BFC696
md5: 86a9289353c0fd907525da6019ac21a7
sha1: 036e8611a019d51d2c7f2610007c7453b85119d0
sha256: 990c5a7f36e598790bee59b2397c92dd7d7e3ac72d32e1223cbdfb60e2fbb9b7
sha512: 3d332e1d300f56156abf47e8b437f6c6ea8639dbdb50729d199f7070a9adbf384bdc9db112e92647ce4ea76b9de9252b1201efcb430d3cd7667c76c0c0cb57ca
ssdeep: 12288:vXt6LxsOdZb0vhVcYUFVK4BBn5rky5+qjAShE1qack+7ypw0GmC/GR:/t6LxzbEhVu+qjAShEwah+GSUC/G
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T153D48D6C36F46AD5E0035A3F902025A6E6CD605D70B1DE387F3F1B25C17429B0EB6E9A
sha3_384: e44fbbafd68366e3ca1dd64b5e037465bc6d570899552f8121ead566817fa004b5231f24c394164f1cd0c03e628c02af
ep_bytes: 90554889e55648ffce57415441554156
timestamp: 2008-11-08 16:22:40

Version Info:
CompanyName: Microsoft Corporation
FileDescription: SNMP Trap
FileVersion: 10.0.17134.1 (WinBuild.160101.0800)
InternalName: snmptrap.exe
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: snmptrap.exe
ProductName: Microsoft® Windows® Operating System
ProductVersion: 10.0.17134.1
Translation: 0x0409 0x04b0

Malware.AI.4279833116 also known as:

Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
FireEye	Generic.mg.86a9289353c0fd90
McAfee	W64/Expiro.a
Cylance	Unsafe
Zillya	Virus.Expiro.Win64.34
K7AntiVirus	Virus ( 0040f8071 )
K7GW	Virus ( 0040f8071 )
Cybereason	malicious.353c0f
Baidu	Win64.Virus.Expiro.r
Cyren	W64/Expiro.D!gen
Symantec	W64.Xpiro.F
ESET-NOD32	Win64/Expiro.AG
APEX	Malicious
Kaspersky	Virus.Win64.Expiro.g
BitDefender	Win64.Expiro.Gen.3
NANO-Antivirus	Virus.Win64.Expiro.dtfhve
MicroWorld-eScan	Win64.Expiro.Gen.3
Avast	Win32:Expiro-DD
Tencent	Virus.Win64.Expiro.ad
Ad-Aware	Win64.Expiro.Gen.3
Emsisoft	Win64.Expiro.Gen.3 (B)
DrWeb	Win64.Expiro.108
VIPRE	Virus.Win64.Expiro.gen.a (v)
McAfee-GW-Edition	W64/Expiro.a
Sophos	ML/PE-A + W64/Expiro-S
SentinelOne	Static AI – Malicious PE
GData	Win64.Expiro.Gen.3
eGambit	Unsafe.AI_Score_99%
Avira	W64/Expiro.AF
Antiy-AVL	Trojan/Generic.ASVirus.311
Arcabit	Win64.Expiro.Gen.3
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
TACHYON	Virus/W64.Expiro.C
AhnLab-V3	Win64/Expiro2.Gen
Acronis	suspicious
ALYac	Win64.Expiro.Gen.3
MAX	malware (ai score=86)
Malwarebytes	Malware.AI.4279833116
TrendMicro-HouseCall	PE64_EXPIRO.AR
Rising	Virus.Expiro!1.A140 (CLASSIC)
Ikarus	Virus.Win32.Expiro
MaxSecure	virus.win64.expiro.gen
Fortinet	W64/Expiro.Q
AVG	Win32:Expiro-DD
Panda	W32/Expiro.gen
CrowdStrike	win/malicious_confidence_100% (D)

How to remove Malware.AI.4279833116?

Malware.AI.4279833116 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X