Trojan

Trojan.Agent.Dofoil removal tips

Malware Removal

The Trojan.Agent.Dofoil is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Agent.Dofoil virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Network activity detected but not expressed in API logs

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Trojan.Agent.Dofoil?



File Info:

crc32: C1140A25
md5: 310f175ef3484c2af64ec1582bbb6e8a
name: 310F175EF3484C2AF64EC1582BBB6E8A.mlw
sha1: 9d8ad43605282a2fd58bd5f81891855b6d77ce1a
sha256: ead61d932684264a2ad44fbe097c7ad8639230c5dccb6db32a70610fbb936bb2
sha512: ce540df42c9fac4e6f2269781f3705e368c1fd807603e7e52303e437cbe691f5450518124e75ee3852173e63b01e3fd80cac595ee57fadd74436cc544e1587de
ssdeep: 24576:AyIIZjLox0UGPn302pqa5ugHd+XfyaqPaD8eoSg1vpADsv:Ayxu0UA302pcgHd+X6FPaPwvpF
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright:                                                                                                     
FileVersion:                     
CompanyName: RearRips                                                    
Comments: This installation was built with Inno Setup.
ProductName: RearRips                                                    
ProductVersion: 14.31                                             
FileDescription: RearRips Setup                                              
Translation: 0x0000 0x04b0

Trojan.Agent.Dofoil also known as:

BkavW32.AIDetectVM.malware1
Elasticmalicious (high confidence)
ALYacTrojan.Agent.Dofoil
CylanceUnsafe
K7AntiVirusRiskware ( 0040eff71 )
AlibabaTrojan:Win32/Dofoil.fd7a681b
K7GWRiskware ( 0040eff71 )
SymantecSMG.Heur!gen
APEXMalicious
Paloaltogeneric.ml
KasperskyUDS:DangerousObject.Multi.Generic
ComodoTrojWare.Win32.UMal.vwwwc@0
F-SecureTrojan.TR/Dropper.Gen
InvinceaMal/Generic-S
McAfee-GW-EditionBehavesLike.Win32.AdwareFileTour.dc
SophosMal/Generic-S
IkarusTrojan.Dofoil
WebrootW32.Trojan.Gen
AviraTR/Dropper.Gen
MicrosoftTrojan:Win32/Ymacco.AAEA
AegisLabTrojan.Multi.Generic.4!c
ZoneAlarmUDS:DangerousObject.Multi.Generic
CynetMalicious (score: 85)
McAfeeArtemis!310F175EF348
PandaPUP/DownloadAssistant
FortinetW32/Propagate.NYJ!tr
AVGWin32:Malware-gen
AvastWin32:Malware-gen

How to remove Trojan.Agent.Dofoil?

Trojan.Agent.Dofoil removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment