Trojan-Ransom.Win32.Blocker.mohl removal instruction

Malware Removal

The Trojan-Ransom.Win32.Blocker.mohl is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Trojan-Ransom.Win32.Blocker.mohl virus can do?

  • Unconventionial language used in binary resources: Korean
  • Network activity detected but not expressed in API logs

How to determine Trojan-Ransom.Win32.Blocker.mohl?


File Info:

crc32: BAD842A2
md5: dfe2622555d555e254d9b209f82f9dd1
name: DFE2622555D555E254D9B209F82F9DD1.mlw
sha1: a68e5717ea25d7eb42bbb84592b35ee78e96312d
sha256: f91de02efd64dff351ee21b7bfd3fc1565367a4591f292b48be8aa4e946d1931
sha512: 36446f5db2adc061e0796de81e06d7892a156c7c7539c3b3ebc52294e5239ac1d326ee6403eb38bf0daa5a5d722df4ec7781991a85cc47c59529cfb78ff2d929
ssdeep: 49152:qjQdxmaeAjsxvI9OhCO9f5OT0J3zon7gGDjFBSwEz7A9O:qjcxoLlIghCeTJ387gcFbEz0s
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

LegalCopyright: Copyright (C) J-OneTech. 2003-2007
InternalName: Setup.exe
FileVersion: 1.77
CompanyName: xc81cxc774xc6d0xd14cxd06c
PrivateBuild:
LegalTrademarks:
Comments:
ProductName: xcef4xd4e8xd130 xc0acxc6a9xc2dcxac04 xc81cxd55c xd504xb85cxadf8xb7a8
SpecialBuild:
ProductVersion: 1.77
FileDescription: xc544xb9ac xc124xce58xd504xb85cxadf8xb7a8
OriginalFilename: SetupAri.exe
Translation: 0x0412 0x04b0

Trojan-Ransom.Win32.Blocker.mohl also known as:

LionicTrojan.Win32.Blocker.j!c
CylanceUnsafe
ZillyaAdware.Cinmus.Win32.17607
SangforAdware.Win32.Cinmus.bupg
AlibabaRansom:Win32/Blocker.efe62ac3
Cybereasonmalicious.555d55
SymantecML.Attribute.HighConfidence
AvastFileRepMetagen [Adw]
KasperskyTrojan-Ransom.Win32.Blocker.mohl
BitDefenderGen:Trojan.ShellStartup.vu8@aOnT6xiG
MicroWorld-eScanGen:Trojan.ShellStartup.vu8@aOnT6xiG
TencentWin32.Trojan.Blocker.Wxhq
SophosGeneric PUA KG (PUA)
ComodoMalware@#pi76l6xc6d5h
BitDefenderThetaGen:NN.ZedlaF.34058.eu4@ai2@Frj
VIPREAdware.Cinmus
McAfee-GW-EditionArtemis!Trojan
FireEyeGen:Trojan.ShellStartup.vu8@aOnT6xiG
EmsisoftGen:Trojan.ShellStartup.vu8@aOnT6xiG (B)
JiangminAdware/Cinmus.nbo
KingsoftWin32.Troj.Cinmus.bu.(kcloud)
MicrosoftPUA:Win32/Vigua.A
ArcabitTrojan.ShellStartup.E7EFAF
GDataGen:Trojan.ShellStartup.vu8@ai8VlrcG
McAfeeArtemis!DFE2622555D5
MAXmalware (ai score=89)
VBA32TrojanRansom.Blocker
AVGFileRepMetagen [Adw]
Qihoo-360Win32/Ransom.Blocker.HgIASOUA

How to remove Trojan-Ransom.Win32.Blocker.mohl?

Trojan-Ransom.Win32.Blocker.mohl removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment