MSIL/TrojanDownloader.Agent.FYI removal instruction

The MSIL/TrojanDownloader.Agent.FYI is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What MSIL/TrojanDownloader.Agent.FYI virus can do?

Presents an Authenticode digital signature
Network activity detected but not expressed in API logs
Anomalous binary characteristics

How to determine MSIL/TrojanDownloader.Agent.FYI?


File Info:
crc32: EE9CA000
md5: 3c382626e06cd7360c6c50a9c339bca3
name: host.exe
sha1: 67f6c17cc7a7cc12b212c4ab07dd5b96835f72f9
sha256: eedc9ba522fef11996ce68796e0e3c588ec0289f5be374246e55094c067ae508
sha512: b47f60fdc4e2df38b98067ba6a9ae153bd2fe60379e3171b1e8db8d355411327f91f79cea769c1e11c3ed5c6dc3b6a4383690effcb961d6e212d792bba517f23
ssdeep: 768:QGttZ4KJHoiyfHixzBQJVkSlplSW4KgF:oKJSKNCjkKW
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:
LegalCopyright: Copyright (c) 2013 AVAST Software
InternalName: aswDld
FileVersion: 9.0.2021.515
CompanyName: AVAST Software
ProductName: avast! Antivirus 
ProductVersion: 9.0.2021.515
FileDescription: aswDld Dynamic Link Library
OriginalFilename: aswDld.dll
Translation: 0x0405 0x04b0

MSIL/TrojanDownloader.Agent.FYI also known as:

MicroWorld-eScan	Gen:Variant.Razy.600750
FireEye	Gen:Variant.Razy.600750
Qihoo-360	Generic/Trojan.3bf
ALYac	Gen:Variant.Razy.600750
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
K7AntiVirus	Trojan-Downloader ( 0055f2e71 )
BitDefender	Gen:Variant.Razy.600750
K7GW	Trojan-Downloader ( 0055f2e71 )
CrowdStrike	win/malicious_confidence_80% (W)
BitDefenderTheta	Gen:NN.ZemsilF.34090.bm2@aiLao0mi
ESET-NOD32	a variant of MSIL/TrojanDownloader.Agent.FYI
TrendMicro-HouseCall	TROJ_GEN.R002C0PBG20
Avast	Win32:TrojanX-gen [Trj]
GData	Gen:Variant.Razy.600750
Kaspersky	HEUR:Trojan.MSIL.Crypt.gen
Alibaba	Trojan:MSIL/byplp.bf048aaf
AegisLab	Trojan.MSIL.Crypt.4!c
Ad-Aware	Gen:Variant.Razy.600750
Emsisoft	Gen:Variant.Razy.600750 (B)
F-Secure	Trojan.TR/Dldr.Agent.byplp
McAfee-GW-Edition	Downloader-FBWY!3C382626E06C
SentinelOne	DFI – Suspicious PE
Trapmine	malicious.moderate.ml.score
Sophos	Mal/Generic-S
APEX	Malicious
Avira	TR/Dldr.Agent.byplp
Arcabit	Trojan.Razy.D92AAE
ZoneAlarm	HEUR:Trojan.MSIL.Crypt.gen
Microsoft	Trojan:Win32/Wacatac.D!ml
Acronis	suspicious
McAfee	Downloader-FBWY!3C382626E06C
MAX	malware (ai score=86)
Panda	Trj/GdSda.A
Tencent	Msil.Trojan-downloader.Agent.Lknw
Ikarus	Trojan-Downloader.MSIL.Agent
eGambit	PE.Heur.InvalidSig
Fortinet	MSIL/Agent.FYI!tr.dldr
AVG	Win32:TrojanX-gen [Trj]
Cybereason	malicious.cc7a7c
Paloalto	generic.ml

How to remove MSIL/TrojanDownloader.Agent.FYI?

MSIL/TrojanDownloader.Agent.FYI removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X