Malware

GenScript.KIR removal

Malware Removal

The GenScript.KIR is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What GenScript.KIR virus can do?

    Related domains:

    z.whorecord.xyz
    a.tomx.xyz

    How to determine GenScript.KIR?

    

    File Info:
    
crc32: AD2F1BDD
    md5: 3fcfeb50bce1f7ff92f1b98a702248fb
    name: upload_file
    sha1: 2ea2e9da6fa8309800c754cf56865e7132fbe7b9
    sha256: 52a9bd05cde43182553fb872699d2595d0a84299ffe4b707c3e1cc25844c8102
    sha512: c2435d669397bc46d79795d3a4c6c952f39140149b636558854c734e97a63834777e02e488459a811b183fa6ec59f18275f3f02e446a25433a9a890d87b165cd
    ssdeep: 1536:oUgKxnqYMoSRNdsLGmXFeLLjn+WOxHxw5NVpCMEqHz/D0J/YZy4ZiSEe:XqToSRKbXFeLLiBw5Dp2qz/D0JwZiSEe
    type: Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, Code page: 1252, Title: Voluptas., Author: Rayan Faure, Template: Normal.dotm, Revision Number: 1, Name of Creating Application: Microsoft Office Word, Create Time/Date: Thu Oct  1 08:06:00 2020, Last Saved Time/Date: Thu Oct  1 08:07:00 2020, Number of Pages: 1, Number of Words: 3436, Number of Characters: 19587, Security: 8
    

    Version Info:
    
0: [No Data]

    GenScript.KIR also known as:

    Elasticmalicious (high confidence)
    MicroWorld-eScanTrojan.GenericKD.43960853
    FireEyeTrojan.GenericKD.43960853
    CAT-QuickHealW97M.Emotet.Heur
    ALYacTrojan.GenericKD.43949907
    AegisLabTrojan.MSWord.Generic.4!c
    K7AntiVirusTrojan ( 0056edf51 )
    K7GWTrojan ( 0056edf51 )
    TrendMicroTrojan.W97M.EMOTET.SMBA
    CyrenW97M/Downldr.IE.gen!Eldorado
    SymantecTrojan.Gen.2
    TrendMicro-HouseCallTrojan.W97M.EMOTET.SMBA
    AvastVBS:Malware-gen
    ClamAVDoc.Downloader.Emotet-9770099-0
    KasperskyHEUR:Trojan.MSOffice.SAgent.gen
    BitDefenderTrojan.GenericKD.43960853
    ViRobotDOC.Z.Agent.154835
    Ad-AwareTrojan.GenericKD.43960853
    EmsisoftTrojan-Downloader.Macro.Generic.BU (A)
    F-SecureMalware.W97M/Agent.5029013
    DrWebExploit.Siggen2.46920
    InvinceaMal/DocDl-K
    McAfee-GW-EditionW97M/Downloader.dbv
    SophosMal/DocDl-K
    SentinelOneDFI – Malicious OLE
    AviraW97M/Agent.5029013
    MAXmalware (ai score=85)
    Antiy-AVLTrojan[Downloader]/MSOffice.Agent.dbv
    MicrosoftTrojanDownloader:O97M/Emotet.CSK!MTB
    ArcabitTrojan.Generic.D29ECA15
    ZoneAlarmHEUR:Trojan.MSOffice.SAgent.gen
    GDataMacro.Trojan-Downloader.Agent.AVL
    CynetMalicious (score: 85)
    AhnLab-V3Downloader/MSOffice.Generic
    McAfeeW97M/Downloader.dbv
    ESET-NOD32GenScript.KIR
    RisingMalware.ObfusVBA@ML.89 (VBA)
    IkarusTrojan.VBA.Agent
    FortinetVBA/Agent.0CCA!tr
    AVGVBS:Malware-gen
    Qihoo-360virus.office.qexvmc.1100

    How to remove GenScript.KIR?

    GenScript.KIR removal tool
    • Download and install GridinSoft Anti-Malware.
    • Open GridinSoft Anti-Malware and perform a “Standard scan“.
    • Move to quarantine” all items.
    • Open “Tools” tab – Press “Reset Browser Settings“.
    • Select proper browser and options – Click “Reset”.
    • Restart your computer.

    You may also like

    About the author

    Paul Valéry

    I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

    View all posts

    Leave a Comment