The Backdoor.NanoCore file is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.
What Backdoor.NanoCore virus can do?
- Freezing computer.
- New home page in browsers.
- Ads and pop-ups on desktop and browser.
- Very slow loading speed of webpages.
- Computer work slower then usual.
How to determine Backdoor.NanoCore?
General:
Operating System: Windows 7 / 8 / 8.1 / 10 Virus Name: TR/Kryptik.yygbe
File Info:
Name: whe.exe
Size: 531456
Type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5: efef0da6aac427057ed640e5569624f2
SHA1: d8e7e2215cca45dff347ae71fa8d03b59e4cc37e
SH256: 832a3c6120a8a5f3f00ce8de17a9d81da51a986455d554344177afa71ddd27a2
Version Info:
[No Data]
Backdoor.NanoCore also known as:
| ALYac | Spyware.AgentTesla |
| APEX | Malicious |
| AVG | Win32:CrypterX-gen [Trj] |
| Acronis | suspicious |
| Ad-Aware | Trojan.GenericKD.42023458 |
| AegisLab | Trojan.MSIL.Agensla.i!c |
| AhnLab-V3 | Trojan/Win32.MSIL.R297531 |
| Alibaba | TrojanPSW:MSIL/Kryptik.30f38037 |
| Antiy-AVL | Trojan[PSW]/MSIL.Agensla |
| Arcabit | Trojan.Generic.D2813A22 |
| Avast | Win32:CrypterX-gen [Trj] |
| Avira | TR/Kryptik.yygbe |
| BitDefender | Trojan.GenericKD.42023458 |
| BitDefenderTheta | Gen:NN.ZemsilF.32250.Gm0@a8u!F2g |
| CAT-QuickHeal | Trojanpws.Msil |
| Comodo | Malware@#2sg3jr68jcjrf |
| CrowdStrike | win/malicious_confidence_90% (W) |
| Cylance | Unsafe |
| Cyren | W32/Trojan.SW.gen!Eldorado |
| DrWeb | Trojan.Siggen8.53479 |
| ESET-NOD32 | a variant of MSIL/Kryptik.TOC |
| Endgame | malicious (high confidence) |
| F-Prot | W32/Trojan.SW.gen!Eldorado |
| F-Secure | Trojan.TR/Kryptik.yygbe |
| FireEye | Generic.mg.efef0da6aac42705 |
| Fortinet | MSIL/Kryptik.TPQ!tr |
| GData | Trojan.GenericKD.42023458 |
| Ikarus | Trojan.Inject |
| Invincea | heuristic |
| Jiangmin | Trojan.PSW.MSIL.ltd |
| K7AntiVirus | Trojan ( 0055adfc1 ) |
| K7GW | Trojan ( 0055adfc1 ) |
| Kaspersky | HEUR:Trojan-PSW.MSIL.Agensla.gen |
| MAX | malware (ai score=100) |
| Malwarebytes | Backdoor.NanoCore |
| McAfee | RDN/Generic PWS.y |
| McAfee-GW-Edition | BehavesLike.Win32.Generic.hc |
| MicroWorld-eScan | Trojan.GenericKD.42023458 |
| Microsoft | Trojan:MSIL/AgentTesla.PA!MTB |
| NANO-Antivirus | Trojan.Win32.Agensla.gfwsio |
| Paloalto | generic.ml |
| Panda | Trj/GdSda.A |
| Qihoo-360 | Win32/Trojan.PSW.374 |
| Rising | Dropper.Generic!8.35E (TFE:C:EWRKlqqx0AK) |
| SentinelOne | DFI – Suspicious PE |
| Sophos | Mal/Generic-S |
| Symantec | Trojan Horse |
| Trapmine | malicious.high.ml.score |
| TrendMicro | TROJ_GEN.R002C0WK519 |
| TrendMicro-HouseCall | TROJ_GEN.R002C0WK519 |
| VBA32 | TScope.Trojan.MSIL |
| Webroot | W32.Trojan.Gen |
| Zillya | Trojan.Kryptik.Win32.1829499 |
| ZoneAlarm | HEUR:Trojan-PSW.MSIL.Agensla.gen |
How to remove Backdoor.NanoCore?
- Download and install GridinSoft Anti-Malware.
- Open GridinSoft Anti-Malware and perform a “Standard scan“.
- “Move to quarantine” all items.
- Open “Tools” tab – Press “Reset Browser Settings“.
- Select proper browser and options – Click “Reset”.
- Restart your computer.
Leave a Comment