Trojan:Win32/Genbhv removal tips

Malware Removal

The Trojan:Win32/Genbhv is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Trojan:Win32/Genbhv virus can do?

  • Creates RWX memory
  • A process attempted to delay the analysis task.
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • A potential decoy document was displayed to the user
  • Installs itself for autorun at Windows startup
  • Collects information about installed applications
  • Creates a hidden or system file
  • Harvests information related to installed mail clients
  • Collects information to fingerprint the system
  • Uses suspicious command line tools or Windows utilities

How to determine Trojan:Win32/Genbhv?


File Info:

crc32: 764337B3
md5: 3b58e122d9e17121416b146daab4db9d
name: 3B58E122D9E17121416B146DAAB4DB9D.mlw
sha1: bd7b5c56f58db4a94c3097e8d7f78eaf51dbf335
sha256: 8f939e65e9ffedd16ae86687e154adbe607d56950d082778300039283f2f8330
sha512: ec052231e906259955d41816506fa8965c4e105d36e5e605e8abfb396bba2315998611760a9c3e9280edb51c94de3907ad2c2a4b5245e824e4bad5357fa75586
ssdeep: 6144:nc0h522p3l04ZMSmIp3Uy28uhyrgWUar3CearZan:Phxp3lZnT9bDffr3CeIan
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

0: [No Data]

Trojan:Win32/Genbhv also known as:

BkavW32.AIDetect.malware2
Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.Autoruns.GenericKDS.32580665
FireEyeGeneric.mg.3b58e122d9e17121
McAfeeRDN/Generic PWS.y
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
AegisLabTrojan.Win32.Malicious.4!e
SangforTrojan.Win32.Save.a
K7AntiVirusRiskware ( 0040eff71 )
BitDefenderTrojan.Autoruns.GenericKDS.32580665
K7GWRiskware ( 0040eff71 )
Cybereasonmalicious.2d9e17
BitDefenderThetaGen:NN.ZexaF.34590.emW@ae5iZ6g
CyrenW32/Blocker.XXGE-7141
SymantecTrojan.Gen.2
ESET-NOD32Win32/Spy.Agent.PHK
APEXMalicious
AvastWin32:Malware-gen
KasperskyTrojan-Ransom.Win32.Blocker.kiaf
AlibabaRansom:Win32/Blocker.483ef187
NANO-AntivirusTrojan.Win32.Mlw.etkeyq
ViRobotTrojan.Win32.S.Agent.311800
RisingSpyware.Agent!8.C6 (CLOUD)
Ad-AwareTrojan.Autoruns.GenericKDS.32580665
EmsisoftTrojan.Autoruns.GenericKDS.32580665 (B)
ComodoMalware@#2498hkkrnosiq
F-SecureTrojan.TR/Dropper.Gen
DrWebTrojan.PWS.Spy.21531
ZillyaTrojan.Agent.Win32.911721
TrendMicroTrojan.Win32.ZAPCHAST.E
McAfee-GW-EditionBehavesLike.Win32.AdwareLinkury.fh
SophosMal/Generic-S
IkarusTrojan-Spy.Agent
JiangminTrojan.Zapchast.of
AviraTR/Dropper.Gen
Antiy-AVLTrojan/Win32.TSGeneric
KingsoftWin32.Troj.Generic_a.a.(kcloud)
MicrosoftTrojan:Win32/Genbhv
ArcabitTrojan.Autoruns.GenericS.D1F12439
AhnLab-V3Trojan/Win32.Blocker.C1702255
ZoneAlarmTrojan-Ransom.Win32.Blocker.kiaf
GDataTrojan.Autoruns.GenericKDS.32580665
CynetMalicious (score: 100)
TotalDefenseWin32/FakeDoc_i
VBA32suspected of Trojan.Downloader.gen.h
ALYacTrojan.Ransom.Blocker.gen
MalwarebytesTrojan.Downloader
PandaTrj/CI.A
TrendMicro-HouseCallTrojan.Win32.ZAPCHAST.E
TencentWin32.Trojan.Blocker.Lkxs
YandexTrojanSpy.Agent!2HmBnH/Ypx0
MAXmalware (ai score=100)
FortinetW32/Mosaic.KIAF!tr
WebrootW32.Trojan.Gen
AVGWin32:Malware-gen
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_100% (W)
Qihoo-360Win32/Ransom.Blocker.HgIASOkA

How to remove Trojan:Win32/Genbhv?

Trojan:Win32/Genbhv removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment