Ransom • Trojan

Trojan-Ransom.Win32.Blocker.jiid removal

The Trojan-Ransom.Win32.Blocker.jiid is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan-Ransom.Win32.Blocker.jiid virus can do?

Reads data out of its own binary image
Drops a binary and executes it
Unconventionial language used in binary resources: Russian
Network activity detected but not expressed in API logs

How to determine Trojan-Ransom.Win32.Blocker.jiid?


File Info:
crc32: 807EF180
md5: c0f794cfba54fe12ef75a6dfb7b63a10
name: C0F794CFBA54FE12EF75A6DFB7B63A10.mlw
sha1: d7db08ec5aef0a6038ddfd59bc70e18817fccfcb
sha256: 430e1f592a38b1047fabd1912a54a9b83c855211fb46b11fe8eeda720a9ce566
sha512: a6dd595829f809da9ff0e915202e6f220a5906ae3fdec6b72ac006ecd4909a556244a26d2a49a0ef479347eba334385323c75d9fa69a929b6e1d6bec10e8c6c9
ssdeep: 12288:qK2mhAMJ/cPlzuToSCe0OUqX33Pt6N5hVAi4ZwGoHVa:b2O/Glz8/jB316NbVAQHw
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
0: [No Data]

Trojan-Ransom.Win32.Blocker.jiid also known as:

K7AntiVirus	Riskware ( 0040eff71 )
Lionic	Trojan.Win32.Blocker.j!c
DrWeb	Trojan.DownLoader22.4500
Cynet	Malicious (score: 99)
ALYac	Trojan.Rasftuby.Gen.10
Cylance	Unsafe
Sangfor	Suspicious.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	Ransom:Win32/Blocker.17eac8e9
K7GW	Riskware ( 0040eff71 )
Cybereason	malicious.fba54f
Cyren	W32/Fynloski.D.gen!Eldorado
Symantec	Trojan.Gen.MBT
APEX	Malicious
Avast	Win32:Malware-gen
Kaspersky	Trojan-Ransom.Win32.Blocker.jiid
BitDefender	Trojan.Rasftuby.Gen.10
NANO-Antivirus	Trojan.Win32.DarkKomet.eeknxi
MicroWorld-eScan	Trojan.Rasftuby.Gen.10
Tencent	Win32.Trojan.Blocker.Szbj
Ad-Aware	Trojan.Rasftuby.Gen.10
Sophos	Mal/Generic-R + Mal/RarMal-E
VIPRE	Trojan.Win32.Generic!BT
McAfee-GW-Edition	BehavesLike.Win32.Dropper.gc
FireEye	Trojan.Rasftuby.Gen.10
Emsisoft	Trojan.Rasftuby.Gen.10 (B)
Avira	TR/Patched.Gen
Microsoft	TrojanDropper:Win32/Slipafext.A
Arcabit	Trojan.Rasftuby.Gen.10
ZoneAlarm	Trojan.Win32.Agent.gen
GData	Trojan.Rasftuby.Gen.10
McAfee	Artemis!C0F794CFBA54
MAX	malware (ai score=81)
Panda	Trj/CI.A
Ikarus	JS.Agent
MaxSecure	Win.MxResIcn.Heur.Gen
Fortinet	W32/Blocker.E!tr
AVG	Win32:Malware-gen
Paloalto	generic.ml

How to remove Trojan-Ransom.Win32.Blocker.jiid?

Trojan-Ransom.Win32.Blocker.jiid removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X