Ransom Trojan

Trojan-Ransom.Win32.Blocker.kxto removal instruction

Malware Removal

The Trojan-Ransom.Win32.Blocker.kxto is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Ransom.Win32.Blocker.kxto virus can do?

  • Network activity detected but not expressed in API logs

How to determine Trojan-Ransom.Win32.Blocker.kxto?



File Info:

crc32: A10A1122
md5: 8b9f06e94379f2aabd64035ce49b6cf0
name: 8B9F06E94379F2AABD64035CE49B6CF0.mlw
sha1: c88d5801f6578dc2f12d030a08208f992e5b35d0
sha256: 1450fee2b43c54dac03b3437b469516e0d13b7515b130447009e7662856fd75b
sha512: 8154287f986382b9a7e9f6342bd4631ebf217d634e731ecde9d02b19d7216a091c85283f560403bcbf396eb38e99f5a01f1ed15f5caa8138e2920729d55ea5fc
ssdeep: 6144:NxrmidG8D4fVRWKSPLqIBlI9I2i2CqhfiOLBjBEDN:N1m8zKQLdy9GAhKsjBa
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright 2018 BitslerScriptBot . All rights reserved.
Assembly Version: 11.0.10.32
InternalName: Bitslerbot2018.exe
FileVersion: 11.0.10.32
CompanyName: 
LegalTrademarks: 
Comments: 
ProductName: BitslerBot2018
ProductVersion: 11.0.10.32
FileDescription: BitslerBot2018
OriginalFilename: Bitslerbot2018.exe

Trojan-Ransom.Win32.Blocker.kxto also known as:

K7AntiVirusTrojan ( 700000121 )
Elasticmalicious (high confidence)
DrWebTrojan.Coinbit.51
CAT-QuickHealTrojan.GenericFC.S6050645
ALYacGen:Variant.MSIL.Lynx.48
CylanceUnsafe
CrowdStrikewin/malicious_confidence_100% (D)
K7GWTrojan ( 700000121 )
Cybereasonmalicious.94379f
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/PSW.CoinStealer.W
APEXMalicious
AvastWin32:PWSX-gen [Trj]
ClamAVWin.Trojan.SatoshiBypass-6853426-0
KasperskyTrojan-Ransom.Win32.Blocker.kxto
BitDefenderGen:Variant.MSIL.Lynx.48
NANO-AntivirusTrojan.Win32.Blocker.ebulvp
MicroWorld-eScanGen:Variant.MSIL.Lynx.48
TencentWin32.Trojan.Blocker.Edel
Ad-AwareGen:Variant.MSIL.Lynx.48
SophosMal/Generic-R + Mal/CoinSteal-C
ComodoMalware@#efmugrw33h0w
BitDefenderThetaGen:NN.ZemsilF.34126.ym0@amgWyim
VIPRETrojan.Win32.Generic!BT
TrendMicroTSPY_COINSTEAL.SM2
McAfee-GW-EditionGenericRXEI-EZ!8B9F06E94379
FireEyeGeneric.mg.8b9f06e94379f2aa
EmsisoftGen:Variant.MSIL.Lynx.48 (B)
SentinelOneStatic AI – Malicious PE
AviraHEUR/AGEN.1132047
eGambitUnsafe.AI_Score_99%
Antiy-AVLTrojan/Generic.ASMalwS.252524C
MicrosoftTrojan:Win32/Tiggre!rfn
GDataMSIL.Trojan.ClipBanker.C
AhnLab-V3Trojan/Win32.CoinStealer.C2451323
McAfeeGenericRXEI-EZ!8B9F06E94379
MAXmalware (ai score=98)
PandaTrj/GdSda.A
TrendMicro-HouseCallTSPY_COINSTEAL.SM2
RisingSpyware.ClipBanker!1.B627 (CLASSIC)
YandexTrojan.Blocker!uN+y0Nbu0Ck
IkarusTrojan.MSIL.ClipBanker
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/CoinStealer.W!tr
AVGWin32:PWSX-gen [Trj]
Paloaltogeneric.ml

How to remove Trojan-Ransom.Win32.Blocker.kxto?

Trojan-Ransom.Win32.Blocker.kxto removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment