IL:Trojan.MSILZilla.22192 removal instruction

The IL:Trojan.MSILZilla.22192 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What IL:Trojan.MSILZilla.22192 virus can do?

CAPE extracted potentially suspicious content
Authenticode signature is invalid

How to determine IL:Trojan.MSILZilla.22192?


File Info:
name: 0900C3319E4C46FF9478.mlw
path: /opt/CAPEv2/storage/binaries/8f9a45ba73c67ba9c4958ea49508c350a0e1c3caf476ccab2fb8cb3049e3ba46
crc32: 95113744
md5: 0900c3319e4c46ff9478e3e1fa9528a1
sha1: 92b2fca9e265cc6e32319e708ec010f8f7b80f0a
sha256: 8f9a45ba73c67ba9c4958ea49508c350a0e1c3caf476ccab2fb8cb3049e3ba46
sha512: 10c4574ac43137b959da0ab560068b919e6cae232fa492ef3764be54f0af6f013f37cecb4e88df759e88bd71ff8c25c4fd1d451aaa5069780e94ac7096207a14
ssdeep: 1536:AcnV05PuhAFa8Z5YzxlweRxRSOW0izl6ipnwritFCvvHzB+T1KxUg9GpEI+TR0YM:AuVluFaA5Yz8eRaciJyMCzB+JKxUg9Gl
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1DF939E4877F88765C9FE867EA53262410338F152EA43E70E2ED550EA28E33D04E467E7
sha3_384: ff11b448ed98a7a8d93638d322bc2c2f072b1857d40b842cfbddcf0d643700e9f4afb2236ef06945bc70583f812b4063
ep_bytes: ff250020400000000000000000000000
timestamp: 2013-06-18 00:37:55

Version Info:
Translation: 0x0000 0x04b0
CompanyName: Microsoft
FileDescription: Client Server Runtime Process
FileVersion: 1.0.0.0
InternalName: netscp.exe
LegalCopyright: Copyright © Microsoft 2009
OriginalFilename: netscp.exe
ProductName: NetScp
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

IL:Trojan.MSILZilla.22192 also known as:

Lionic	Trojan.MSIL.Tnzbt.m!c
Elastic	malicious (high confidence)
MicroWorld-eScan	IL:Trojan.MSILZilla.22192
ClamAV	Win.Trojan.TinyZBot-1
ALYac	Trojan.Agent.TzeeBot
Cylance	Unsafe
Sangfor	Backdoor.MSIL.Tzeebot.B
CrowdStrike	win/malicious_confidence_60% (W)
Alibaba	Backdoor:MSIL/Tnzbt.960f4fde
K7GW	Spyware ( 0048ae0e1 )
K7AntiVirus	Spyware ( 0048ae0e1 )
VirIT	Trojan.Win32.MSIL.DGY
Cyren	W32/MSIL_TZBot.A.gen!Eldorado
Symantec	Trojan.Gen
ESET-NOD32	MSIL/Spy.TzeeBot.A
APEX	Malicious
Paloalto	generic.ml
Cynet	Malicious (score: 99)
BitDefender	IL:Trojan.MSILZilla.22192
NANO-Antivirus	Trojan.Win32.Tnzbt.dvsmqc
Avast	MSIL:Agent-CIU [Trj]
Tencent	Msil.Backdoor.Tnzbt.Dkq
Ad-Aware	IL:Trojan.MSILZilla.22192
Comodo	Malware@#3ai4ocbtjah0i
F-Secure	Trojan.TR/Spy.Gen8
DrWeb	Trojan.KillFiles.17493
VIPRE	IL:Trojan.MSILZilla.22192
McAfee-GW-Edition	Trojan-FFJT!0900C3319E4C
Sophos	Mal/Generic-R + Troj/Bckdr-RSL
SentinelOne	Static AI – Suspicious PE
Webroot	W32.Trojan.Gen
Avira	TR/Spy.Gen8
Antiy-AVL	Trojan[Backdoor]/MSIL.Tnzbt.v
Kingsoft	Win32.Troj.Generic_a.a.(kcloud)
Arcabit	IL:Trojan.MSILZilla.D56B0
ViRobot	Trojan.Win32.S.Agent.96768.DA
ZoneAlarm	Backdoor.MSIL.Tnzbt.v
Google	Detected
AhnLab-V3	Trojan/Win32.FakeMS.R127237
Acronis	suspicious
TrendMicro-HouseCall	BKDR_TZEEBOT.SM23
Rising	Virus.Undefined!8.23 (CLOUD)
Ikarus	Trojan.MSIL.Spy
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/TzeeBot.A!tr.spy
BitDefenderTheta	Gen:NN.ZemsilF.34592.fm0@amfeese
AVG	MSIL:Agent-CIU [Trj]
Panda	Generic Malware

How to remove IL:Trojan.MSILZilla.22192?

IL:Trojan.MSILZilla.22192 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X