Virus

Virus:Win95/CIH.1133 removal instruction

Malware Removal

The Virus:Win95/CIH.1133 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Virus:Win95/CIH.1133 virus can do?

  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Virus:Win95/CIH.1133?


File Info:

crc32: CCAD602A
md5: fe69dc9aedee6fc81b422327bcfe5a12
name: FE69DC9AEDEE6FC81B422327BCFE5A12.mlw
sha1: f326e0b93b27efa85c88ea6aeec0cd701860b14b
sha256: 5af6ac5ec9dd8ca20cf7cd75ee65645c41a04b744bfd597c9c914e465a30d729
sha512: 02ab523c4d1a31d5ee7a7d92fb218909e9ad6ed4d986109d78359c22aab143eb602ed9c532e54a2aa8b135adf83b6b16f195076c1ce2c3fd9a906876ea1bae3b
ssdeep: 3072:HTUNx8grg+BhlCPUN3g3ioZWOKaC/yqeC2f+LqL7+5akX6rmRyOmL9jg2LSwny:HTWQ+XlyUNCTKaC/yqeC2WyDkOmwOyL
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

LegalCopyright: Copyright (C) 1999
InternalName: tst1
FileVersion: 1, 0, 0, 1
CompanyName:
LegalTrademarks:
ProductName: tst1 Application
ProductVersion: 1, 0, 0, 1
FileDescription: tst1 MFC Application
OriginalFilename: tst1.EXE
Translation: 0x0409 0x04b0

Virus:Win95/CIH.1133 also known as:

Elasticmalicious (high confidence)
DrWebTrojan.Siggen3.43745
CynetMalicious (score: 100)
CMCGeneric.Win32.fe69dc9aed!MD
CAT-QuickHealCIH.1003.b
ALYacWin32.Worm.Mtx.D
CylanceUnsafe
ZillyaVirus.CIH.Win32.14
SangforVirus.Win32.CIH.1133
CrowdStrikewin/malicious_confidence_90% (W)
AlibabaVirus:Win32/Banof.da75bf5a
Cybereasonmalicious.aedee6
CyrenW32/CIH.10xx
SymantecW95.CIH
ESET-NOD32a variant of Generik.BQOFOX
APEXMalicious
AvastWin32:Banof-E [Wrm]
ClamAVWin.Trojan.CIH-1
KasperskyVirus.Win9x.CIH.1133
BitDefenderWin32.Worm.Mtx.D
NANO-AntivirusVirus.Win32.CIH.fmzf
SUPERAntiSpywareWorm.Tuareg
MicroWorld-eScanWin32.Worm.Mtx.D
TencentMalware.Win32.Gencirc.10b9d156
Ad-AwareWin32.Worm.Mtx.D
SophosMal/Generic-R + W95/CIH-10xx
ComodoWorm.Win32.CTXDam.10@1pxos7
BitDefenderThetaGen:NN.ZexaF.34692.mu0@ayUon5hi
VIPRETrojan.Win32.Generic!BT
TrendMicroPE_CIH.1133
McAfee-GW-EditionW95/CIH.1133
FireEyeGeneric.mg.fe69dc9aedee6fc8
EmsisoftWin32.Worm.Mtx.D (B)
SentinelOneStatic AI – Suspicious PE
JiangminWin95/CIH.a
WebrootVirus:Win95/CIH.1133
AviraWORM/CTX.Dam.1
eGambitUnsafe.AI_Score_99%
MicrosoftVirus:Win95/CIH.1133
ArcabitWin32.Worm.Mtx.D
AegisLabVirus.Win9x.CIH.kZ8W
GDataWin32.Worm.Mtx.D
TACHYONTrojan/W32.Agent.202240.DX
AhnLab-V3Win95/CIH.Unknown
McAfeeW95/CIH.1133
MAXmalware (ai score=100)
VBA32Trojan.Bitrep
PandaW95/CIH
TrendMicro-HouseCallPE_CIH.1133
RisingWin32.CIH (CLOUD)
YandexTrojan.GenAsa!R9DC2v6LVAM
IkarusVirus.CIH
MaxSecureVirus.W9X.CIH
FortinetW95/CIH.fam
AVGWin32:Banof-E [Wrm]

How to remove Virus:Win95/CIH.1133?

Virus:Win95/CIH.1133 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment