Trojan:Win32/Bluether.A!dha removal tips

The Trojan:Win32/Bluether.A!dha is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Trojan:Win32/Bluether.A!dha virus can do?

Executable code extraction
Creates RWX memory
Drops a binary and executes it
Deletes its original binary from disk
Installs itself for autorun at Windows startup
Creates a hidden or system file
Creates a copy of itself
Anomalous binary characteristics

Related domains:

blognews.onmypc.org

ametoy.acmetoy.com

How to determine Trojan:Win32/Bluether.A!dha?


File Info:
crc32: E1B18C6D
md5: 4bcb99623c05fc2abaa1b4090b0bee6c
name: 4BCB99623C05FC2ABAA1B4090B0BEE6C.mlw
sha1: 76244e06e6a1eee5b3db15ca00b1896f0fc53dd4
sha256: a384e6d697740465196bdb53ed47e31e4ddae5fcbd7543406456acbe1c00882a
sha512: 97356d4c8933e5ae2cde9b00450a619f2ae84bf81b73969d9f2a4dd5f043d8251c8b0bec22e709828718b1726fe623c917a8a9bf0eca59845c70ac9cc0192f26
ssdeep: 384:TS4mQCzNgIyU91N1FpCmdoXemuanYDddFmHUi85FSG3S/YxmszE/ZiJI:TXCJghiN1h+XeZZg0bSwY8YY
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: 
InternalName: Bluthmon.exe
FileVersion: 3, 7, 5, 13
CompanyName: Mototech.co
PrivateBuild: 
LegalTrademarks: 
Comments: 
ProductName: Bluetooth Monitor
SpecialBuild: 
ProductVersion: 3, 7, 5, 13
FileDescription: Bluetooth Monitor
OriginalFilename: Motomon.exe
Translation: 0x0409 0x04b0

Trojan:Win32/Bluether.A!dha also known as:

Bkav	W32.AIDetect.malware2
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Ser.Mikey.1391
FireEye	Generic.mg.4bcb99623c05fc2a
McAfee	GenericRXEX-WK!4BCB99623C05
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
Sangfor	Trojan.Win32.Bluether.A
K7AntiVirus	Trojan ( 0055e3dd1 )
BitDefender	Gen:Variant.Ser.Mikey.1391
K7GW	Trojan ( 0055e3dd1 )
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
Avast	Win32:Malware-gen
Kaspersky	Trojan-Ransom.Win32.Blocker.fwvh
Alibaba	Trojan:Win32/Blocker.f454d9af
NANO-Antivirus	Trojan.Win32.Agent.dgrlml
AegisLab	Trojan.Win32.Blocker.j!c
Rising	Trojan.Bluether!8.1E8D (TFE:5:wgs0Nqp92wR)
Ad-Aware	Gen:Variant.Ser.Mikey.1391
Sophos	Mal/Generic-S + Troj/Bluether-B
Comodo	Malware@#30v74ifpz5pag
F-Secure	Heuristic.HEUR/AGEN.1111002
DrWeb	Trojan.DownLoader11.40674
Zillya	Trojan.Blocker.Win32.25518
TrendMicro	BKDR_PLEAD.SMZTDK-C
McAfee-GW-Edition	GenericRXEX-WK!4BCB99623C05
Emsisoft	Gen:Variant.Ser.Mikey.1391 (B)
Ikarus	Trojan-Ransom.Blocker
Jiangmin	Trojan.Blocker.d
Avira	HEUR/AGEN.1111002
MAX	malware (ai score=100)
Antiy-AVL	Trojan[Ransom]/Win32.Blocker
Kingsoft	Win32.Troj.Undef.(kcloud)
Microsoft	Trojan:Win32/Bluether.A!dha
Arcabit	Trojan.Ser.Mikey.D56F
ZoneAlarm	Trojan-Ransom.Win32.Blocker.fwvh
GData	Gen:Variant.Ser.Mikey.1391
Cynet	Malicious (score: 85)
AhnLab-V3	Malware/Win32.Generic.C636715
BitDefenderTheta	Gen:NN.ZexaF.34590.cq0@aSM@Vcli
ALYac	Gen:Variant.Ser.Mikey.1391
VBA32	Hoax.Blocker
Malwarebytes	Generic.Malware/Suspicious
Panda	Trj/Chgt.H
ESET-NOD32	a variant of Win32/Agent.VBQ
TrendMicro-HouseCall	BKDR_PLEAD.SMZTDK-C
Tencent	Win32.Trojan.Blocker.Pgnj
Yandex	Trojan.Blocker!jebDcCoRy/4
Fortinet	W32/Agent.WMZ!tr
AVG	Win32:Malware-gen
Cybereason	malicious.23c05f
Paloalto	generic.ml
Qihoo-360	Win32/Ransom.Blocker.HwcB0i8A

How to remove Trojan:Win32/Bluether.A!dha?

Trojan:Win32/Bluether.A!dha removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Trojan:Win32/Bluether.A!dha removal tips