Malware

Downloader.Win32.Agent.lwyz removal

Malware Removal

The Downloader.Win32.Agent.lwyz is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Downloader.Win32.Agent.lwyz virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Reads data out of its own binary image
  • Drops a binary and executes it

Related domains:

z.whorecord.xyz
a.tomx.xyz
dpd.securestudies.com

How to determine Downloader.Win32.Agent.lwyz?



File Info:

crc32: 097BC364
md5: b73c5bb7198c8e015c5d9ccda8ef294a
name: mp3converter_8.0.exe
sha1: 7c0a4e9c88a3eee861e55da86f4c9786b8cb14c0
sha256: e91332b1602b16edd96d68b936c4026edeb2972be13af6152ae4eedc2494bd93
sha512: 351ac603f67cee6b8ff6b23b9c20295d3badd3126289e14e70e39fa21f11e591d13cd8f6fb10efa8134f1ac2d5709d6b7c209e9309a511db9bbdf0dd5106df10
ssdeep: 196608:3WJQPHgS4DNngodvY+ZvEJUeRosL8ywrDxcWJfle44I3OJhd:GeungoZUUeRb8ymxJ7Lm
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright 2019 Do2019.com                                                                           
FileVersion:                     
CompanyName:                                                             
Comments: This installation was built with Inno Setup.
ProductName: MP3x97f3x9891x8f6cx6362x901a                                                    
ProductVersion: 8.0                                               
FileDescription: MP3x97f3x9891x8f6cx6362x901a Setup                                              
Translation: 0x0000 0x04b0

Downloader.Win32.Agent.lwyz also known as:

DrWebAdware.Relevant.178
K7AntiVirusAdware ( 004b9d841 )
K7GWAdware ( 004b9d841 )
SymantecML.Attribute.HighConfidence
Paloaltogeneric.ml
Kasperskynot-a-virus:Downloader.Win32.Agent.lwyz
AlibabaDownloader:Win32/DeFile.e9660cf7
NANO-AntivirusRiskware.Win32.Relevant.foobcq
AegisLabRiskware.Win32.Agent.1!c
AvastWin32:Adware-gen [Adw]
SophosGeneric PUA MC (PUA)
F-SecureAdware.ADWARE/Relevant.fykib
McAfee-GW-EditionBehavesLike.Win32.BadFile.wc
AviraADWARE/Relevant.fykib
Endgamemalicious (high confidence)
ZoneAlarmnot-a-virus:Downloader.Win32.Agent.lwyz
MicrosoftPUA:Win32/Bitrepeyp.B
McAfeeArtemis!B73C5BB7198C
VBA32Downloader.Agent
CylanceUnsafe
ESET-NOD32Win32/DeFile.Gen potentially unwanted
TrendMicro-HouseCallTROJ_GEN.R002H07LA19
FortinetW32/DeFile
AVGWin32:Adware-gen [Adw]

How to remove Downloader.Win32.Agent.lwyz?

Downloader.Win32.Agent.lwyz removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment