Ransom Trojan

How to remove “Trojan-Ransom.Win32.Gen.qlw”?

Malware Removal

The Trojan-Ransom.Win32.Gen.qlw is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Ransom.Win32.Gen.qlw virus can do?

  • Authenticode signature is invalid

How to determine Trojan-Ransom.Win32.Gen.qlw?



File Info:

name: E7C2B45F711C21E76194.mlw
path: /opt/CAPEv2/storage/binaries/bc67a27e3b3643a17bd918bc5632e93029e664e3092d8579103f99bf3c81900b
crc32: 489048B6
md5: e7c2b45f711c21e7619422942e2cda34
sha1: 38fb61a886cab5db19b8223d524dce8be9cf4422
sha256: bc67a27e3b3643a17bd918bc5632e93029e664e3092d8579103f99bf3c81900b
sha512: aa45c37c91aa1b14d890a1b59d1b676882081e0d0e0f72c2aaeeac1cb09c558dc07e1ef04577ad979b9be3c3d2974a3943de0367237d2fb3974068bf3a43315e
ssdeep: 1536:+D/DrGKmEfutw5mzIwLyLaIBWUtsOnBEnuhz4UL5vW1C7sVshDENd:U/Dy/EfQbdLacUymEnK4ODAVsK7
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1FA934C12F6D744F1D3026B322C9C3BBADBB2E95D9F255FA313A8DC381562281A43F195
sha3_384: d4e4797143a796088960c2bd88bcf50d3188a86ad74e4374b946d313d5895efb5852a1a8b7201b71b3da9df70b478a44
ep_bytes: 558bec6aff68101441006866f6400064
timestamp: 2012-01-31 22:40:15


Version Info:

FileDescription: XML Extractor
FileVersion: 6, 5, 2, 0
ProductVersion: 6, 5, 2, 0
ProductName: TrustedLink Windows
LegalCopyright: Copyright (c) 2010
LegalTrademarks: 
InternalName: EXTXML
OriginalFilename: EXTXML.EXE
Translation: 0x0409 0x04b0

Trojan-Ransom.Win32.Gen.qlw also known as:

LionicTrojan.Win32.Gen.j!c
MicroWorld-eScanTrojan.GenericKD.38624283
ALYacTrojan.GenericKD.38624283
CylanceUnsafe
AlibabaRansom:Win32/Generic.c11fefdf
APEXMalicious
KasperskyTrojan-Ransom.Win32.Gen.qlw
BitDefenderTrojan.GenericKD.38624283
AvastFileRepMalware [Misc]
Ad-AwareTrojan.GenericKD.38624283
EmsisoftTrojan.GenericKD.38624283 (B)
ComodoMalware@#pu576nem9lml
VIPRETrojan.GenericKD.38624283
TrendMicroRansom_Gen.R002C0PJG22
McAfee-GW-EditionRDN/Ransom
FireEyeTrojan.GenericKD.38624283
SophosMal/Generic-R
JiangminTrojan.Gen.bpa
AviraTR/DelFile.psvbc
Antiy-AVLTrojan[Ransom]/Win32.Gen
ArcabitTrojan.Generic.D24D5C1B
ZoneAlarmTrojan-Ransom.Win32.Gen.qlw
GDataTrojan.GenericKD.38624283
McAfeeRDN/Ransom
MAXmalware (ai score=87)
TrendMicro-HouseCallRansom_Gen.R002C0PJG22
TencentWin32.Trojan.Gen.Psmw
MaxSecureTrojan.Malware.73774235.susgen
AVGFileRepMalware [Misc]
PandaTrj/GdSda.A

How to remove Trojan-Ransom.Win32.Gen.qlw?

Trojan-Ransom.Win32.Gen.qlw removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment