Trojan.Heur3.LPT.9mKfaaZlKEaib removal

The Trojan.Heur3.LPT.9mKfaaZlKEaib is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.Heur3.LPT.9mKfaaZlKEaib virus can do?

The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Trojan.Heur3.LPT.9mKfaaZlKEaib?


File Info:
name: 969F1474D8D964E200CC.mlw
path: /opt/CAPEv2/storage/binaries/e679ebb3dd008190af21a52a730e31eaa75b15cbdff5d529f1412c982f8ecfd7
crc32: C7AB6BD1
md5: 969f1474d8d964e200cc7f9fa441f230
sha1: cd386a4f63c414b36d7695a42f1ce5fba0880668
sha256: e679ebb3dd008190af21a52a730e31eaa75b15cbdff5d529f1412c982f8ecfd7
sha512: 1282e09231b34d8315afb81cc0b5d57ccfd27dad810c8a055dea42cf3566b93d8ebba93d6cc7587ca3c42003053a6aaebd51b1b3aca0a19654a678afdbc90968
ssdeep: 24576:yZ83ETqMeoaKmakGxMxB2A2nRSavr5iqYMtvfHk:ymEsURLEexrgg
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1222513C5BBD88D5DDD1E02B984F3E9358429FAC80CF60A0F26EC3D5A7F679912C8A055
sha3_384: 15144125e5e9216702ff60c2f240ac5a13f6380fdea8638f828134221137d357d2acc4f6c0b8d638c2c2cdd986b92b9b
ep_bytes: 60be00a065008dbe0070daffc787106c
timestamp: 2019-08-02 20:05:20

Version Info:
FileVersion: 6.1.7600.16385
InternalName: flashplayer32
LegalCopyright: Adobe Inc.
ProductVersion: 6.1.7600.16385
ProgramID: 6.1.7600.16385
FileDescription: Adobe Flash Player 
ProductName: Adobe Flash Player
Translation: 0x0409 0x04e4

Trojan.Heur3.LPT.9mKfaaZlKEaib also known as:

Lionic	Trojan.Win32.Vobfus.4!c
MicroWorld-eScan	Gen:Trojan.Heur3.LPT.9mKfaaZlKEaib
McAfee	Artemis!969F1474D8D9
Cylance	Unsafe
Sangfor	Trojan.Win32.Vobfus.gen
K7AntiVirus	Trojan-Downloader ( 005542d31 )
Alibaba	TrojanSpy:Win32/Vobfus.c0657c59
K7GW	Trojan-Downloader ( 005542d31 )
Cybereason	malicious.4d8d96
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Spy.Banker.AEJW
APEX	Malicious
Paloalto	generic.ml
Kaspersky	HEUR:Trojan.Win32.Vobfus.gen
BitDefender	Gen:Trojan.Heur3.LPT.9mKfaaZlKEaib
NANO-Antivirus	Trojan.Win32.Vobfus.fusojf
Avast	Win32:Malware-gen
Ad-Aware	Gen:Trojan.Heur3.LPT.9mKfaaZlKEaib
Sophos	Mal/Generic-S
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	TROJ_GEN.R002C0GGR21
McAfee-GW-Edition	BehavesLike.Win32.Generic.dc
FireEye	Gen:Trojan.Heur3.LPT.9mKfaaZlKEaib
Emsisoft	Gen:Trojan.Heur3.LPT.9mKfaaZlKEaib (B)
GData	Gen:Trojan.Heur3.LPT.9mKfaaZlKEaib
Avira	TR/Vobfus.olrtm
Arcabit	Trojan.Heur3.LPT.9mKfaaZlKEaib
Microsoft	Trojan:Win32/Occamy.CE6
Cynet	Malicious (score: 99)
AhnLab-V3	Trojan/Win32.Generic.C2064350
BitDefenderTheta	AI:Packer.8881B62A21
ALYac	Gen:Trojan.Heur3.LPT.9mKfaaZlKEaib
VBA32	TScope.Trojan.Delf
TrendMicro-HouseCall	TROJ_GEN.R002C0GGR21
Tencent	Win32.Trojan.Vobfus.Hufv
Yandex	Trojan.Vobfus!97ldcBkbTAc
Ikarus	Trojan-Crypt.Xpack
Fortinet	W32/Vobfus!tr
AVG	Win32:Malware-gen
Panda	Trj/GdSda.A
CrowdStrike	win/malicious_confidence_100% (W)
MaxSecure	Trojan.Malware.2015567.susgen

How to remove Trojan.Heur3.LPT.9mKfaaZlKEaib?

Trojan.Heur3.LPT.9mKfaaZlKEaib removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X