Trojan

MSIL/TrojanDownloader.Agent.GWV removal

Malware Removal

The MSIL/TrojanDownloader.Agent.GWV is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/TrojanDownloader.Agent.GWV virus can do?

  • Presents an Authenticode digital signature
  • Network activity detected but not expressed in API logs

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine MSIL/TrojanDownloader.Agent.GWV?



File Info:

crc32: CE3A95EF
md5: b38da63125504acc8e034a8feadc6000
name: upload_file
sha1: ab058cd799f3945d394ab88abff4f237eb5cd54d
sha256: 2bf089ca557a9f45614b8c69d1e99c2865ccce16d5623d43f058421ddd16e3e4
sha512: 615eab733d030d2d51b450e408c70449b0e0483274982c227e6fb27c4917ff5b2fce2e6f919a9e6e449b008d5304614444a86daf61a95a85999acb5411c7895f
ssdeep: 768:bwDja4+EBXPF8ozYeU+68jO0hIQGNK/2/iGgGiMkIKbQQZZKdM8sScR9ApqcAfR6:WxK+nTGNaG29AqSjpPeRUfZ
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

LegalCopyright: Copyright 1984-2020.Adobe Systems Incorporated and its licensors. All rights reserved.
Assembly Version: 4.856.935.39
FileVersion: 4.856.935.39
CompanyName: Adobe Systems Incorporated
LegalTrademarks: Adobe Systems Incorporated
Comments: Adobe Systems Incorporated
ProductName: Adobe Acrobat Reader DC
ProductVersion: 4.856.935.39
FileDescription: Adobe Acrobat Reader DC 
OriginalFilename: Adobe Acrobat Reader DC.exe
Translation: 0x0409 0x0514

MSIL/TrojanDownloader.Agent.GWV also known as:

Elasticmalicious (high confidence)
McAfeeArtemis!B38DA6312550
CylanceUnsafe
SangforMalware
K7GWTrojan-Downloader ( 00570f6b1 )
BitDefenderThetaGen:NN.ZemsilF.34566.Bm1@aSAhtKbi
SymantecTrojan.Gen.2
APEXMalicious
KasperskyHEUR:Backdoor.MSIL.NanoBot.gen
McAfee-GW-EditionArtemis!Trojan
SentinelOneDFI – Malicious PE
MicrosoftTrojan:Win32/Woreflint.A!cl
ZoneAlarmHEUR:Backdoor.MSIL.NanoBot.gen
GDataWin32.Trojan.Agent.NXQGBQ
ESET-NOD32a variant of MSIL/TrojanDownloader.Agent.GWV
IkarusWin32.SuspectCrc
FortinetMSIL/Agent.GWV!tr.dldr
AVGFileRepMalware
Paloaltogeneric.ml
Qihoo-360Generic/Backdoor.BO.5c9

How to remove MSIL/TrojanDownloader.Agent.GWV?

MSIL/TrojanDownloader.Agent.GWV removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment