Ransom:Win32/Gpcode.E removal

The Ransom:Win32/Gpcode.E is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Ransom:Win32/Gpcode.E virus can do?

Installs itself for autorun at Windows startup
Network activity detected but not expressed in API logs

How to determine Ransom:Win32/Gpcode.E?


File Info:
crc32: 3770D280
md5: 013ab51fa1d0d85fef9cbcb7cc1c941a
name: 013AB51FA1D0D85FEF9CBCB7CC1C941A.mlw
sha1: 66b7a980d19a107e680317ba1ce8822eebeb76b8
sha256: fd12f642fd45e6e3315eab6bf42ed3ec87cc87dee9d5506cea37ab857a9b71df
sha512: c42074bc49750f9b96b52dcb6f461009398739b4a11664603e3b5ba13aa8b78fe33dbeb397a8a4c1daccde57e24bd4447ce3ee99905ada63b618594b8ae44e48
ssdeep: 3072:s+OYsQRHKPkQwQjMLcC+O97K2QfWl18tXgjEPskFArjRj:+EKPkhncC+O9+RfWX8tQjEpGRj
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
0: [No Data]

Ransom:Win32/Gpcode.E also known as:

K7AntiVirus	Trojan ( 00270fea1 )
DrWeb	Trojan.Encoder
Cynet	Malicious (score: 100)
ALYac	Trojan.Encoder.C
Cylance	Unsafe
Zillya	Trojan.Gpcode.Win32.4
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	Ransom:Win32/Gpcode.f1e021e5
K7GW	Trojan ( 00270fea1 )
Cybereason	malicious.fa1d0d
Cyren	W32/Gpcode.TYUT-0916
Symantec	Trojan.Gpcoder
ESET-NOD32	Win32/Gpcode.AC
APEX	Malicious
Avast	Win32:Trojan-gen
ClamAV	Win.Trojan.Gpcode-6
Kaspersky	Trojan-Ransom.Win32.Gpcode.ac
BitDefender	Trojan.Encoder.C
NANO-Antivirus	Trojan.Win32.Gpcode.eshn
MicroWorld-eScan	Trojan.Encoder.C
Tencent	Win32.Trojan.Gpcode.Bnu
Ad-Aware	Trojan.Encoder.C
Sophos	Mal/Generic-R + Troj/GPCoder-H
Comodo	TrojWare.Win32.Gpcode.AC@27v1
BitDefenderTheta	Gen:NN.ZexaF.34686.imW@auk0Ewk
VIPRE	Trojan.Win32.Generic!BT
McAfee-GW-Edition	GPcoder
FireEye	Generic.mg.013ab51fa1d0d85f
Emsisoft	Trojan.Encoder.C (B)
SentinelOne	Static AI – Suspicious PE
Jiangmin	Trojan/Gpcode.d
Webroot	W32.Trojan.Encoder
Avira	HEUR/AGEN.1133416
Antiy-AVL	Trojan[Ransom]/Win32.Gpcode
Microsoft	Ransom:Win32/Gpcode.E
Arcabit	Trojan.Encoder.C
AegisLab	Trojan.Win32.Gpcode.4!c
ZoneAlarm	Trojan-Ransom.Win32.Gpcode.ac
GData	Trojan.Encoder.C
TACHYON	Ransom/W32.Gpcode.131072
McAfee	GPcoder
MAX	malware (ai score=100)
VBA32	BScope.TrojanRansom.Gpcode
Malwarebytes	Generic.Malware/Suspicious
Panda	Trj/PGPCoder.D
Rising	Trojan.Win32.Gpcode.a (CLOUD)
Yandex	Trojan.GenAsa!hkaIfcOtQu0
Ikarus	Trojan.Win32.Ransom
eGambit	Unsafe.AI_Score_99%
Fortinet	W32/Gpcode.AC
AVG	Win32:Trojan-gen
Paloalto	generic.ml

How to remove Ransom:Win32/Gpcode.E?

Ransom:Win32/Gpcode.E removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X