Trojan

About “Trojan.Agent.DNPQ” infection

Malware Removal

The Trojan.Agent.DNPQ is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Agent.DNPQ virus can do?

  • Executable code extraction
  • Presents an Authenticode digital signature
  • Creates RWX memory
  • Reads data out of its own binary image
  • Installs itself for autorun at Windows startup
  • Collects information about installed applications
  • Creates a hidden or system file
  • Network activity detected but not expressed in API logs
  • Creates a copy of itself
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Trojan.Agent.DNPQ?



File Info:

crc32: E8905FED
md5: eee6b8fff025cafad98579657b7bccd0
name: ssj.jpg
sha1: 78d645bf376a58edc0918ad969787e65a1781e71
sha256: 14e44c02a55de7ba6bce25648ae343104f90213f2f2d2c382e9c738de151cd50
sha512: 46a43d7d1e7604fadcdd23b7188aa89594f628b7c047d672329f3a9473fbf2af75d8cedd633074a0074f06dc5eb31c9bf0b7f73f4504f794acc82e0208f2f908
ssdeep: 24576:yJSlxEJLbyy1BEEmuOdScyLmYBSnMVJKg3WtDI7DG:yJSlR8OdSPL4n6Isq07i
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Trojan.Agent.DNPQ also known as:

BkavW32.AIDetectVM.malware
DrWebTrojan.Encoder.858
MicroWorld-eScanTrojan.Agent.DNPQ
FireEyeGeneric.mg.eee6b8fff025cafa
Qihoo-360Win32/Trojan.Ransom.f3d
McAfeeRansomware-GNS!EEE6B8FFF025
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
CrowdStrikewin/malicious_confidence_100% (W)
BitDefenderTrojan.Agent.DNPQ
K7GWRiskware ( 0040eff71 )
K7AntiVirusRiskware ( 0040eff71 )
TrendMicroRansom.Win32.SHADE.THOABBAI
BitDefenderThetaGen:NN.ZexaF.34106.AnX@a8VQwe
TrendMicro-HouseCallRansom.Win32.SHADE.THOABBAI
AvastWin32:DangerousSig [Trj]
GDataTrojan.Agent.DNPQ
KasperskyHEUR:Trojan.Win32.Generic
AlibabaVirTool:Win32/CeeInject.98f739d2
NANO-AntivirusTrojan.Win32.Encoder.fmbuyr
AegisLabTrojan.Win32.Generic.4!c
RisingRansom.Troldesh!8.5D1 (CLOUD)
Endgamemalicious (high confidence)
SophosTroj/Troldesh-X
ComodoMalware@#379aj3jmn4don
F-SecureTrojan.TR/Crypt.Epack.AJ
ZillyaTrojan.Kryptik.Win32.1566104
Invinceaheuristic
McAfee-GW-EditionRansomware-GNS!EEE6B8FFF025
Trapminemalicious.moderate.ml.score
EmsisoftTrojan-Ransom.Shade (A)
IkarusTrojan-Ransom.Troldesh
CyrenW32/Trojan.NEOM-2525
JiangminTrojan.Shade.pw
WebrootW32.Trojan.Gen
AviraTR/Crypt.Epack.AJ
Antiy-AVLTrojan[Ransom]/Win32.Shade
MicrosoftTrojan:Win32/Emotet.PB
ArcabitTrojan.Agent.DNPQ
ZoneAlarmHEUR:Trojan.Win32.Generic
AhnLab-V3Trojan/Win32.Shade.C2927539
Acronissuspicious
VBA32BScope.Trojan.Zbot.01393
ALYacTrojan.Ransom.Shade
MAXmalware (ai score=100)
Ad-AwareTrojan.Agent.DNPQ
MalwarebytesRansom.Troldesh
PandaTrj/GdSda.A
APEXMalicious
ESET-NOD32a variant of Win32/Kryptik.GOWG
SentinelOneDFI – Malicious PE
eGambitPE.Heur.InvalidSig
FortinetW32/Kryptik.GOJP!tr.ransom
AVGWin32:DangerousSig [Trj]
Cybereasonmalicious.ff025c
Paloaltogeneric.ml
MaxSecureTrojan.Malware.74073963.susgen

How to remove Trojan.Agent.DNPQ?

Trojan.Agent.DNPQ removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment