Malware

MSIL/Agent.UZR removal tips

Malware Removal

The MSIL/Agent.UZR is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/Agent.UZR virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine MSIL/Agent.UZR?



File Info:

name: 5AD9F13F779CF2898CC0.mlw
path: /opt/CAPEv2/storage/binaries/b3f2474335d9966ddccd62eb6034ed1c8225675d4f576b30d87ba37aa8f11011
crc32: 7C650F82
md5: 5ad9f13f779cf2898cc0603ee712db2e
sha1: 83757ea3fd546d7ce89a4feacaff761a28b31098
sha256: b3f2474335d9966ddccd62eb6034ed1c8225675d4f576b30d87ba37aa8f11011
sha512: 14f848182e0ba8914722ec2325ba5612f2480ea70032d7eb4d0da65b768216dadc99a78421b4ea385c1ad84d23642d31b8d9b88b8cc32d76eedafe5292cc3ff9
ssdeep: 1536:+MsRxXm4/z7dHdbx2ezIofTSpyPMB0L1oKFwuk9UkqqXj0AedIyYZP:gRxW4Z/sofTSckB0LZ23q+0AmKZP
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15FB3E81236865721C5685975D1E3293003F7EB8B3277D7863E4862DA5F023D9CE8EBCA
sha3_384: bc3b74227f5b69c86bbf5f7fe6a8c6a2f5bd0e2a8a42249a1076a7134594e6574462918e72d41068f79e7ca25cfd5a0b
ep_bytes: ff250020400000000000000000000000
timestamp: 2083-12-27 13:49:52


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: Windows Defender
FileVersion: 1.0.0.0
InternalName: Windows Defender.exe
LegalCopyright: Copyright ©  2021
LegalTrademarks: 
OriginalFilename: Windows Defender.exe
ProductName: Windows Defender
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

MSIL/Agent.UZR also known as:

LionicTrojan.Win32.Johnnie.4!c
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
McAfeeRDN/Generic.grp
CylanceUnsafe
BitDefenderGen:Variant.Johnnie.312019
Cybereasonmalicious.f779cf
ESET-NOD32a variant of MSIL/Agent.UZR
APEXMalicious
AvastWin32:Malware-gen
KasperskyHEUR:Trojan.MSIL.Bingoml.gen
AlibabaTrojan:MSIL/Bingoml.ff1d5086
MicroWorld-eScanGen:Variant.Johnnie.312019
Ad-AwareGen:Variant.Johnnie.312019
SophosGeneric ML PUA (PUA)
TrendMicroTROJ_GEN.R002C0WL821
McAfee-GW-EditionRDN/Generic.grp
FireEyeGeneric.mg.5ad9f13f779cf289
EmsisoftGen:Variant.Johnnie.312019 (B)
IkarusTrojan.MSIL.Agent
GDataGen:Variant.Johnnie.312019
AviraHEUR/AGEN.1141120
MAXmalware (ai score=83)
Antiy-AVLTrojan/Generic.ASMalwS.34E677E
GridinsoftRansom.Win32.Sabsik.sa
ArcabitTrojan.Johnnie.D4C2D3
MicrosoftTrojan:Win32/Wacatac.B!ml
VBA32TScope.Trojan.MSIL
ALYacGen:Variant.Johnnie.312019
MalwarebytesTrojan.Agent
TrendMicro-HouseCallTROJ_GEN.R002C0WL821
SentinelOneStatic AI – Malicious PE
eGambitUnsafe.AI_Score_99%
FortinetPossibleThreat
BitDefenderThetaGen:NN.ZemsilF.34084.gm0@a07mpup
AVGWin32:Malware-gen
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_60% (W)

How to remove MSIL/Agent.UZR?

MSIL/Agent.UZR removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment