Malware

PowerShell/Agent.RJ removal tips

Malware Removal

The PowerShell/Agent.RJ is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What PowerShell/Agent.RJ virus can do?

  • The executable is likely packed with VMProtect
  • Anomalous binary characteristics

How to determine PowerShell/Agent.RJ?



File Info:

crc32: FC763BD5
md5: 13f393154afcfb1185a3dd114068718c
name: 13F393154AFCFB1185A3DD114068718C.mlw
sha1: 3a3625b0f000a49836958f8f69942ae612702869
sha256: 988d95abeabbcd76c7a1d68a27a27c37092c78cf3567ac418275f769d2f862f8
sha512: d9b63c8b170b71e0192bc808be31cbce9d288c12667c73ab3fde2abce9741cdcd2ec76a3f3fbb9367c163b0979aa7ec90147f45135ce46dc6a022596cb167fc6
ssdeep: 384:KPbOG3haABfm6Jid8mw/GOrwwJYgoo1kFVxLtW0fwLCocvYcl:MqIzkbditwwoRW0fwgv
type: PE32+ executable (console) x86-64, for MS Windows


Version Info:

0: [No Data]

PowerShell/Agent.RJ also known as:

K7AntiVirusTrojan ( 0057eb031 )
ALYacTrojan.GenericKD.37158066
CrowdStrikewin/malicious_confidence_60% (W)
AlibabaTrojanSpy:Win32/Generic.9ac4cae8
K7GWTrojan ( 0057eb031 )
Cybereasonmalicious.0f000a
CyrenW64/Trojan2.QXBD
SymantecTrojan.Gen.MBT
ESET-NOD32PowerShell/Agent.RJ
APEXMalicious
AvastWin64:Trojan-gen
KasperskyTrojan-Spy.Win32.Noon.bbgz
BitDefenderTrojan.GenericKD.37158066
MicroWorld-eScanTrojan.GenericKD.37158066
Ad-AwareTrojan.GenericKD.37158066
SophosMal/Generic-S
ComodoMalware@#1qcu98l2g62ew
VIPRETrojan.Win32.Generic!BT
TrendMicroTROJ_GEN.R002C0PG121
McAfee-GW-EditionRDN/Generic PWS.y
FireEyeGeneric.mg.13f393154afcfb11
EmsisoftTrojan.GenericKD.37158066 (B)
WebrootW32.Trojan.Gen
KingsoftWin32.Troj.Noon.bb.(kcloud)
MicrosoftTrojan:Win32/Wacatac.B!ml
AegisLabTrojan.Win32.Noon.l!c
GDataTrojan.GenericKD.37158066
McAfeeRDN/Generic PWS.y
MAXmalware (ai score=82)
VBA32TrojanSpy.Noon
PandaTrj/CI.A
TrendMicro-HouseCallTROJ_GEN.R002C0PG121
IkarusTrojan.PS.Agent
FortinetW32/Noon.BBGZ!tr
AVGWin64:Trojan-gen
Qihoo-360Win32/TrojanSpy.Noon.HgEASXYA

How to remove PowerShell/Agent.RJ?

PowerShell/Agent.RJ removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment