Trojan

Should I remove “NSIS/TrojanDownloader.Agent.NZR”?

Malware Removal

The NSIS/TrojanDownloader.Agent.NZR is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What NSIS/TrojanDownloader.Agent.NZR virus can do?

  • Attempts to connect to a dead IP:Port (3 unique times)
  • A process attempted to delay the analysis task.
  • Reads data out of its own binary image
  • Performs some HTTP requests
  • Attempts to modify proxy settings
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz
meron.kanoga-apps.com
apps.identrust.com

How to determine NSIS/TrojanDownloader.Agent.NZR?



File Info:

crc32: 1F47C533
md5: 3bc886fa5cc6385102255d13b6c307a7
name: 3BC886FA5CC6385102255D13B6C307A7.mlw
sha1: ce325933300084c508115b3cb97bc63aa155abfe
sha256: 90150fd943a8dc0e991dbd97071e13c6f2b2601f8289b34979464a7798c656d7
sha512: 99e614a8d9c6040bf1881f35d3ff8be60deea1d474221e4e5af6a69883cd870aac75b400fa6ff4bb6252ec152b89f2c6202d2ec14f21896503ee35bb5d83ef84
ssdeep: 3072:of1BDZ0kVB67Duw9AMckIm2haSGtkLxJ0yd:o9X0G8Im2ISLd
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

FileVersion: 1.5.48.572
ProductVersion: 1.5.20.677
Translation: 0x0409 0x04e4

NSIS/TrojanDownloader.Agent.NZR also known as:

K7AntiVirusTrojan-Downloader ( 0058ab1f1 )
LionicTrojan.Win32.Adload.a!c
DrWebAdware.Downware.20015
CylanceUnsafe
AlibabaAdWare:Win32/AdLoad.34a01731
K7GWTrojan-Downloader ( 0058ab1f1 )
CyrenW32/Adload.GF.gen!Eldorado
SymantecTrojan.Gen.MBT
ESET-NOD32NSIS/TrojanDownloader.Agent.NZR
APEXMalicious
AvastNSIS:DropperX-gen [Drp]
KasperskyHEUR:Trojan-Downloader.Win32.Adload.gen
SophosMal/Generic-S
McAfee-GW-EditionBehavesLike.Win32.BadFile.fz
AviraTR/Downloader.muocz
MicrosoftTrojan:Script/Phonzy.A!ml
GridinsoftRansom.Win32.Sabsik.sa
GDataWin32.Trojan.Agent.QQUV0U
AhnLab-V3Dropper/Win.DropperX-gen.C4785887
McAfeeArtemis!3BC886FA5CC6
VBA32suspected of Trojan.Downloader.gen
MalwarebytesTrojan.Dropper.NSIS
TrendMicro-HouseCallTROJ_GEN.R06CH0DKL21
FortinetNSIS/Agent.NZR!tr.dldr
AVGNSIS:DropperX-gen [Drp]

How to remove NSIS/TrojanDownloader.Agent.NZR?

NSIS/TrojanDownloader.Agent.NZR removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment