Malware

Win32:Rbot-GQO [Trj] malicious file

Malware Removal

The Win32:Rbot-GQO [Trj] is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32:Rbot-GQO [Trj] virus can do?

  • The binary likely contains encrypted or compressed data.

Related domains:

z.whorecord.xyz

How to determine Win32:Rbot-GQO [Trj]?



File Info:

crc32: 4DA0A39C
md5: 13b7a8f62bc12d4010f4602344c3d812
name: 13B7A8F62BC12D4010F4602344C3D812.mlw
sha1: c5ca2acda914c84822af9c91f31cc6745fef5b9a
sha256: dea397845c4b699c0932da8c587dd1603e9def0f5ee5bb9f3a2a5b2c076ad2aa
sha512: 7e645bcfc18cec47ca25fe24980b257c2befdc8ccb5ab25a926e2f40873d4ee11218dbaf183f7393c07c37b927ec0ace5d0a3ace66943e292a009666d5808404
ssdeep: 3072:3HakeCzaEOBDiZXXTHBsn6assOITb0FEdSPDW/9a4rhj1BW6N7Eou6:XqCGTBSThsn6+b0FEdrlBdxT7Eoj
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Win32:Rbot-GQO [Trj] also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
ALYacTrojan.GenericKD.30698550
CylanceUnsafe
CrowdStrikewin/malicious_confidence_100% (D)
Cybereasonmalicious.62bc12
BaiduWin32.Trojan.Kryptik.bh
SymantecW32.IRCBot
APEXMalicious
AvastWin32:Rbot-GQO [Trj]
BitDefenderTrojan.GenericKD.30698550
NANO-AntivirusTrojan.Win32.ModUpx.eksvbz
MicroWorld-eScanTrojan.GenericKD.30698550
TencentWin32.Trojan.Patched.Dygt
Ad-AwareTrojan.GenericKD.30698550
SophosMal/Generic-S
ComodoPacked.Win32.MUPX.Gen@24tbus
BitDefenderThetaGen:NN.ZexaF.34170.imX@aWg5IPp
VIPREBackdoor.IRCBot
McAfee-GW-EditionBehavesLike.Win32.RAHack.cc
FireEyeGeneric.mg.13b7a8f62bc12d40
EmsisoftTrojan.GenericKD.30698550 (B)
SentinelOneStatic AI – Malicious PE
AviraTR/Patched.Ren.Gen
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitTrojan.Generic.D1D46C36
GDataTrojan.GenericKD.30698550
McAfeeArtemis!13B7A8F62BC1
MAXmalware (ai score=94)
PandaTrj/CI.A
IkarusTrojan.Patched
MaxSecurePacked.Klone.bz
FortinetW32/PossibleThreat
AVGWin32:Rbot-GQO [Trj]
Paloaltogeneric.ml

How to remove Win32:Rbot-GQO [Trj]?

Win32:Rbot-GQO [Trj] removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment