MSIL/TrojanDownloader.Agent.HKW removal tips

Malware Removal

The MSIL/TrojanDownloader.Agent.HKW is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What MSIL/TrojanDownloader.Agent.HKW virus can do?

  • Presents an Authenticode digital signature
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine MSIL/TrojanDownloader.Agent.HKW?


File Info:

crc32: 0D61647B
md5: d07202f00cdb87be779717d161dac178
name: D07202F00CDB87BE779717D161DAC178.mlw
sha1: ba9b65e90bae54442abb1ecfb68c339322b5a7b1
sha256: badf31d977ae00d0c4886883d2b9722ae7250939bc5d75566d9ffd0dd59fd171
sha512: c4c6772b06616ac4547442cef1ca9875ed2ac4dc256d13ecef4dcd15cb1d2e1ffeba25601b67472c14b76c0ca5ec501bef715b05fbe36935b73b2374f850e005
ssdeep: 384:VRtehpab6Hbep3x6YlTKu2ieewQGi/o/BbG/vhs:VrehpzH6eYlTv2JQGigZSXhs
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:

LegalCopyright: Copyright 2022 xa9 SrJwMHYf. All rights reserved.
Assembly Version: 1.0.2.0
InternalName: VlTnpSyf.exe
FileVersion: 0.5.6.6
CompanyName: KYGLxOuD
LegalTrademarks: JptNEgdU
Comments: QhpyMFpo
ProductName: VlTnpSyf
ProductVersion: 1.0.2.0
FileDescription: BGdjrNbZ
OriginalFilename: VlTnpSyf.exe
Translation: 0x0409 0x0514

MSIL/TrojanDownloader.Agent.HKW also known as:

Elasticmalicious (high confidence)
ALYacTrojan.GenericKD.36374333
SangforTrojan.Win32.Save.a
BitDefenderTrojan.GenericKD.36374333
Cybereasonmalicious.90bae5
ArcabitTrojan.Generic.D22B073D
SymantecML.Attribute.HighConfidence
APEXMalicious
CynetMalicious (score: 85)
KasperskyHEUR:Trojan-Downloader.MSIL.BaseLoader.gen
AlibabaTrojanDownloader:MSIL/BaseLoader.9fca206e
MicroWorld-eScanTrojan.GenericKD.36374333
Ad-AwareTrojan.GenericKD.36374333
SophosMal/Generic-S + W32/Neshta-H
ComodoMalware@#13fupqjtk69zn
F-SecureTrojan.TR/Dldr.Agent.ybljl
DrWebTrojan.Starter.6222
TrendMicroTrojanSpy.MSIL.EMOTET.THBBOBA
McAfee-GW-EditionArtemis!Trojan
FireEyeGeneric.mg.d07202f00cdb87be
EmsisoftTrojan.GenericKD.36374333 (B)
AviraTR/Dldr.Agent.ybljl
MAXmalware (ai score=87)
KingsoftWin32.Heur.KVM019.a.(kcloud)
MicrosoftTrojan:Win32/Ymacco.AABA
ZoneAlarmHEUR:Trojan-Downloader.MSIL.BaseLoader.gen
GDataTrojan.GenericKD.36374333
AhnLab-V3Trojan/Win32.RL_Inject.C4342598
McAfeeArtemis!D07202F00CDB
MalwarebytesGeneric.Malware/Suspicious
PandaTrj/GdSda.A
ESET-NOD32MSIL/TrojanDownloader.Agent.HKW
TrendMicro-HouseCallTrojanSpy.MSIL.EMOTET.THBBOBA
RisingDownloader.Agent!8.B23 (CLOUD)
IkarusTrojan-Downloader.MSIL.Agent
FortinetMalicious_Behavior.SB
BitDefenderThetaGen:NN.ZemsilF.34574.bm1@ayeP!0bi
AVGWin32:DangerousSig [Trj]
AvastWin32:DangerousSig [Trj]
Qihoo-360Win32/Backdoor.Rat.HgIASPYA

How to remove MSIL/TrojanDownloader.Agent.HKW?

MSIL/TrojanDownloader.Agent.HKW removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment