Malware

What is “Troj/MSIL-NLV”?

Malware Removal

The Troj/MSIL-NLV is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Troj/MSIL-NLV virus can do?

  • Network activity detected but not expressed in API logs

How to determine Troj/MSIL-NLV?



File Info:

crc32: D9FC4C14
md5: c3ff00c4ef73f01b7f02245d54f50261
name: tkocy.exe
sha1: aeddbeeae53ebc544c27bcab99f9d147b1eb1953
sha256: 0b5a7ea55b149f966645e32ba4c924b70e801eb72b9384f06a30c449dc37ba58
sha512: 2ca5b8fc36243fd7977c1306ad050c415bd62655ba9cb9d6de14231d22dc65068ad43ddada254e86795a431dd1f63c9c8f712f86dd1ee9bb0c45ad1c816b0de4
ssdeep: 24576:AxgInLlfvtx167Pnd6XsOGGanl/Qqx6Dt:qBn91z6+sOfaZQ
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9 2002 - 2019
Assembly Version: 0.0.0.0
InternalName: tkocy.exe
FileVersion: 6.9.11.14
CompanyName: W$y7%r5NE8-c4eG!&
Comments: A&y4iG6%*pR79$jN
ProductName: Ks2!7=tAZo3$%4
ProductVersion: 6.9.11.14
FileDescription: Ks2!7=tAZo3$%4
OriginalFilename: tkocy.exe

Troj/MSIL-NLV also known as:

MicroWorld-eScanTrojan.GenericKD.42216380
McAfeeArtemis!C3FF00C4EF73
CylanceUnsafe
SangforMalware
K7AntiVirusTrojan ( 0055e2ff1 )
BitDefenderTrojan.GenericKD.42216380
K7GWTrojan ( 0055e2ff1 )
CrowdStrikewin/malicious_confidence_100% (W)
ArcabitTrojan.Generic.D2842BBC
SymantecML.Attribute.HighConfidence
ESET-NOD32MSIL/Spy.Agent.AES
APEXMalicious
Paloaltogeneric.ml
KasperskyHEUR:Trojan-Downloader.MSIL.Seraph.gen
AlibabaTrojan:Win32/Kryptik.ali2000016
Endgamemalicious (high confidence)
EmsisoftTrojan.GenericKD.42216380 (B)
F-SecureTrojan.TR/Crypt.ZPACK.rbrjk
DrWebTrojan.PWS.Stealer.27748
McAfee-GW-EditionBehavesLike.Win32.Generic.th
FortinetMSIL/Kryptik.UFN!tr
Trapminemalicious.moderate.ml.score
FireEyeGeneric.mg.c3ff00c4ef73f01b
SophosTroj/MSIL-NLV
SentinelOneDFI – Malicious PE
WebrootW32.Malware.Gen
AviraTR/Crypt.ZPACK.rbrjk
MAXmalware (ai score=80)
MicrosoftTrojan:Win32/Wacatac.B!ml
ZoneAlarmHEUR:Trojan-Downloader.MSIL.Seraph.gen
Ad-AwareTrojan.GenericKD.42216380
IkarusTrojan.MSIL.Crypt
eGambitUnsafe.AI_Score_98%
GDataWin32.Trojan-Stealer.AgentTesla.4VG53N
BitDefenderThetaGen:NN.ZemsilF.33558.rn0@aie1u1c
AVGFileRepMalware
AvastFileRepMalware
Qihoo-360Generic/HEUR/QVM03.0.6717.Malware.Gen

How to remove Troj/MSIL-NLV?

Troj/MSIL-NLV removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment