Downloader.Win32.Agent.lwoq information

The Downloader.Win32.Agent.lwoq is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Downloader.Win32.Agent.lwoq virus can do?

Presents an Authenticode digital signature
Reads data out of its own binary image
Unconventionial binary language: Chinese (Simplified)
Unconventionial language used in binary resources: Chinese (Simplified)

How to determine Downloader.Win32.Agent.lwoq?


File Info:
crc32: 4723A73F
md5: a9f90a10adff29b43b90f642a562e49d
name: honeyview.exe
sha1: 673d4dc0fbea516fbe89697786612c191ae726d4
sha256: 878b24e54c7f12fb03dcafad85db3edb04a32255a96bb61a3a416365da05c70b
sha512: b74fa2411da041cc3a8055f0b734a8e4b30443086bcaa7d435e15ae917bb7ddf735fdb44ac2abbf9d627a1ea31424863c6af2f36f03ec7de35614358401ae1ec
ssdeep: 24576:m9GXBuhrmH5TbNg9ahuixUfVTgCiAN9mAWfTCQ72QHWgjMbdjpPgmgIdlNUwicYv:m90shrmw7bVT7V42lIudZdl/icYv
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: Copyright (C) 2018
InternalName: x667ax80fdx4e0bx8f7dx5668.exe
FileVersion: 4.0.0.920
ProductName: x667ax80fdx4e0bx8f7dx5668.exe
ProductVersion: 4.0.0.920
FileDescription: x667ax80fdx4e0bx8f7dx5668
OriginalFilename: x667ax80fdx4e0bx8f7dx5668.exe
Translation: 0x0804 0x04b0

Downloader.Win32.Agent.lwoq also known as:

Bkav	W32.AIDetectVM.malware2
DrWeb	Adware.Siggen.32927
MicroWorld-eScan	Trojan.GenericKD.32532669
FireEye	Generic.mg.a9f90a10adff29b4
CAT-QuickHeal	Trojan.Mauvaise.SL1
ALYac	Trojan.GenericKD.32532669
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
Sangfor	Malware
K7AntiVirus	Riskware ( 0040eff71 )
BitDefender	Trojan.GenericKD.32532669
K7GW	Riskware ( 0040eff71 )
Cybereason	malicious.0adff2
Invincea	heuristic
F-Prot	W32/S-1671a0f6!Eldorado
Symantec	Trojan.Gen.MBT
TrendMicro-HouseCall	PUA.Win32.Qjwmonkey.HJ
Avast	Win32:AdwareX-gen [Adw]
GData	Trojan.GenericKD.32532669
Kaspersky	not-a-virus:Downloader.Win32.Agent.lwoq
Alibaba	Downloader:Win32/Qjwmonkey.288818e1
NANO-Antivirus	Trojan.Win32.Qjwmonkey.gbbill
Ad-Aware	Trojan.GenericKD.32532669
Sophos	Mal/EncPk-AOT
Comodo	ApplicUnwnt@#k2mgzzvk42nd
F-Secure	Adware.ADWARE/AD.QjwMonkey
Zillya	Adware.Qjwmonkey.Win32.541
TrendMicro	PUA.Win32.Qjwmonkey.HJ
McAfee-GW-Edition	GenericRXJA-TC!A9F90A10ADFF
Emsisoft	Trojan.GenericKD.32532669 (B)
Ikarus	PUA.Qjwmonkey
Cyren	W32/Adware.OFWT-0390
Jiangmin	Downloader.Agent.mgv
Webroot	W32.Adware.Gen
Avira	ADWARE/AD.QjwMonkey.fbdzb
MAX	malware (ai score=99)
Antiy-AVL	GrayWare/Win32.Generic
Endgame	malicious (high confidence)
Arcabit	Trojan.Generic.D1F068BD
SUPERAntiSpyware	Adware.Qjwmonkey/Variant
ZoneAlarm	not-a-virus:Downloader.Win32.Agent.lwoq
Microsoft	Adware:Win32/Qjwmonkey.A!MSR
AhnLab-V3	PUP/Win32.Generic.C3478817
McAfee	GenericRXJA-TC!A9F90A10ADFF
VBA32	Adware.Qjwmonkey
Malwarebytes	Adware.ChinAd
Panda	Trj/Genetic.gen
APEX	Malicious
ESET-NOD32	a variant of Win32/Adware.Qjwmonkey.H
Rising	Adware.Downloader!1.B5B0 (CLOUD)
Yandex	PUA.Downloader!
SentinelOne	DFI – Malicious PE
eGambit	Unsafe.AI_Score_100%
Fortinet	Riskware/Agent
AVG	Win32:AdwareX-gen [Adw]
Paloalto	generic.ml
MaxSecure	Trojan.Malware.121218.susgen

How to remove Downloader.Win32.Agent.lwoq?

Downloader.Win32.Agent.lwoq removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X