Spy

Should I remove “MSIL/Spy.Agent.EIV”?

Malware Removal

The MSIL/Spy.Agent.EIV is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What MSIL/Spy.Agent.EIV virus can do?

  • Authenticode signature is invalid
  • Anomalous .NET characteristics

How to determine MSIL/Spy.Agent.EIV?


File Info:

name: B99B72FE16C7CE615B0E.mlw
path: /opt/CAPEv2/storage/binaries/ea14a344d4bfc41395b06e213ab837da4665115a41fbccf37c7a1ba1e5a6397b
crc32: D60DD45C
md5: b99b72fe16c7ce615b0e355f143915f6
sha1: 49c372d2665fd5817637e9a7b8f21414cbc65b0b
sha256: ea14a344d4bfc41395b06e213ab837da4665115a41fbccf37c7a1ba1e5a6397b
sha512: ae2edd8561596ab29743d0e9d99874e671d257fc62c43aa881ebac95666a0ce52411bb4fff2203c384c9f26483ac28a2f8a2bc13f815aa97a20fc639c8a59025
ssdeep: 192:mq8hhSAhnkKgJ+H7UEjkYcDaV8IUM4s1n:mq8hhSAt8YHguklaOIgs1
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T16CF1D855B3E48A30E8FE877984B303512271F6835C13EF1C2C9C55AAAD33B659EA3365
sha3_384: 9bffd2cdabb2112058ebfcb8c2d05a0c8086f1f213f12dd31a8b041b245f1f6bf626683e4e2bf9894161b335e456d572
ep_bytes: ff250020400000000000000000000000
timestamp: 2023-03-03 02:08:31

Version Info:

Translation: 0x0000 0x04b0
FileDescription:
FileVersion: 0.0.0.0
InternalName: supersex_8f5d49117ae81aa89017c68bd2b880f06f38981bb4e8c1072e53c933d643e1d8.exe
LegalCopyright:
OriginalFilename: supersex_8f5d49117ae81aa89017c68bd2b880f06f38981bb4e8c1072e53c933d643e1d8.exe
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

MSIL/Spy.Agent.EIV also known as:

LionicTrojan.Win32.Disco.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanIL:Trojan.MSILZilla.25316
MalwarebytesSpyware.DiscordStealer.MSIL
SangforInfostealer.Msil.Disco.Vbvf
K7AntiVirusSpyware ( 0059fa951 )
VirITTrojan.Win32.SpyLoad.LM
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Spy.Agent.EIV
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 99)
AlibabaTrojanPSW:Win32/Disco.2a24a661
ViRobotTrojan.Win.Z.Agent.8192.OG
AvastWin32:SpywareX-gen [Trj]
SophosTroj/Disteal-AB
IkarusTrojan.MSIL.Spy
AviraTR/Spy.Agent.bqdxs
Antiy-AVLTrojan[PSW]/Win32.Disco
MicrosoftTrojan:Win32/Wacatac.B!ml
GoogleDetected
AhnLab-V3Trojan/Win.MSILZilla.R560215
TACHYONTrojan-PWS/W32.DN-Disco.8192.C
TrendMicro-HouseCallTROJ_GEN.R002H0CC323
TencentWin32.Trojan-QQPass.QQRob.Bwnw
MaxSecureTrojan.Malware.121218.susgen
FortinetMSIL/Agent.ZIL!tr.spy
AVGWin32:SpywareX-gen [Trj]
PandaTrj/GdSda.A
CrowdStrikewin/malicious_confidence_100% (W)

How to remove MSIL/Spy.Agent.EIV?

MSIL/Spy.Agent.EIV removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment