Malware

Symmi.69348 removal

Malware Removal

The Symmi.69348 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Symmi.69348 virus can do?

  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Symmi.69348?


File Info:

crc32: DB30DB37
md5: 560d6bbce31cadb519374c9b504cbf09
name: 560D6BBCE31CADB519374C9B504CBF09.mlw
sha1: 75d82d2bfb6b1388ed467fb5e6bd2f6cafae8dff
sha256: dd97990215504b119ec0b6c45b3bda27737544cf1074e99be98f4bb5f473ccdd
sha512: f6af1198cf02c18f5f870bfacd1d30595017ccc56a2ec27983e3f3650efe65629746b56e3c6bacf427833cd2bae42fb7da64e379560ac767852ca5d9958fcf41
ssdeep: 768:ivfNLzvihynhapMXkM+FhCeRclG2Iweejn2AX:iXNfiwaCXkR4eRclUw1yAX
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

LegalCopyright: xa9 Microsoft Corporation. All rights reserved.
InternalName:
FileVersion: 6.1.7600.16385 (win7_rtm.090713-1255)
CompanyName: Microsoft Corporation
ProductName: Microsoftxae Windowsxae Operating System
ProductVersion: 6.1.7600.16385
FileDescription: Windows Portable Device Shell Extension Autoplay Handler
OriginalFilename: WPDShextAutoplay.exe
Translation: 0x0409 0x04b0

Symmi.69348 also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
ALYacGen:Variant.Symmi.69348
CylanceUnsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
Cybereasonmalicious.ce31ca
CyrenW32/Virut.D.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Virut.NBP
APEXMalicious
AvastWin32:Virtu-F [Inf]
BitDefenderGen:Variant.Symmi.69348
MicroWorld-eScanGen:Variant.Symmi.69348
TencentWin32.Trojan.Graftor.Star
Ad-AwareGen:Variant.Symmi.69348
SophosGeneric ML PUA (PUA)
BitDefenderThetaGen:NN.ZexaF.34170.bu0@aq9cRShi
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Virut.mh
FireEyeGeneric.mg.560d6bbce31cadb5
EmsisoftGen:Variant.Symmi.69348 (B)
SentinelOneStatic AI – Malicious PE
AviraTR/Patched.Ren.Gen2
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitTrojan.Symmi.D10EE4
GDataGen:Variant.Symmi.69348
Acronissuspicious
McAfeeArtemis!560D6BBCE31C
MAXmalware (ai score=82)
FortinetW32/CoinMiner.F
AVGWin32:Virtu-F [Inf]
Paloaltogeneric.ml

How to remove Symmi.69348?

Symmi.69348 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment