Trojan

How to remove “Trojan.Win32.DiskWriter.ghp”?

Malware Removal

The Trojan.Win32.DiskWriter.ghp is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.DiskWriter.ghp virus can do?

  • A process attempted to delay the analysis task.
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Attempts to modify desktop wallpaper
  • Attempts to restart the guest VM
  • Network activity detected but not expressed in API logs

How to determine Trojan.Win32.DiskWriter.ghp?



File Info:

crc32: E848B73A
md5: e20720557c6fe04a292805e5c2f3d8ad
name: E20720557C6FE04A292805E5C2F3D8AD.mlw
sha1: 6793e5c010b07daa766f6f8309aaa9cc75d97ac5
sha256: 32adbcbd80295c1ff51a5dee8167cefb56e8178db6579ef7c2bb4650b24247d4
sha512: 707ba0d8aec3bab75b430f259e679ea40cd836ba77992fc72ccfe5b041e8523af13fad4f862b276860f0dcb5eae5a3a19e848b20dc16bc4eda65eb22d03a3780
ssdeep: 3072:Cn1/uEAgDPdkBlyFZ+ScjaiKWbETBquAEXlqsTN6yTqR6IK1LVkTc8o4PzlpEZL1:C1OgDPdkBAFZWjadD4s5JTqRpuLGZYR
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright (c) 1999-2010 Igor Pavlov
InternalName: 7zS.sfx
FileVersion: 9.20
CompanyName: Igor Pavlov
ProductName: 7-Zip
ProductVersion: 9.20
FileDescription: 7z Setup SFX
OriginalFilename: 7zS.sfx.exe
Translation: 0x0409 0x04b0

Trojan.Win32.DiskWriter.ghp also known as:

K7AntiVirusRiskware ( 0040eff71 )
CynetMalicious (score: 99)
ALYacDropped:Trojan.GenericKD.46658465
CylanceUnsafe
SangforTrojan.Win32.Save.a
AlibabaTrojan:Win32/DiskWriter.79c9732c
K7GWRiskware ( 0040eff71 )
SymantecTrojan.Gen.MBT
APEXMalicious
AvastWin32:Malware-gen
KasperskyTrojan.Win32.DiskWriter.ghp
BitDefenderDropped:Trojan.GenericKD.46658465
MicroWorld-eScanDropped:Trojan.GenericKD.46658465
Ad-AwareDropped:Trojan.GenericKD.46658465
SophosMal/Generic-S
BitDefenderThetaGen:NN.ZexaF.34050.d0Y@ay3D@Df
McAfee-GW-EditionRDN/Generic.dx
FireEyeDropped:Trojan.GenericKD.46658465
EmsisoftDropped:Trojan.GenericKD.46658465 (B)
JiangminTrojan.Diple.amki
AviraTR/DiskWriter.xgaji
eGambitUnsafe.AI_Score_99%
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataDropped:Trojan.GenericKD.46658465
AhnLab-V3Trojan/Win.Generic.C4562733
McAfeeRDN/Generic.dx
MAXmalware (ai score=83)
VBA32Trojan.DiskWriter
PandaTrj/CI.A
FortinetW32/DiskWriter.GHP!tr
AVGWin32:Malware-gen
Qihoo-360Win32/Ransom.DiskWriter.HyoDwbsA

How to remove Trojan.Win32.DiskWriter.ghp?

Trojan.Win32.DiskWriter.ghp removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment