What is "Trojan.Agent.FVA"?

The Trojan.Agent.FVA is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Trojan.Agent.FVA virus can do?

Drops a binary and executes it
Uses Windows utilities for basic functionality
Deletes its original binary from disk
Attempts to repeatedly call a single API many times in order to delay analysis time
Installs itself for autorun at Windows startup
Creates a copy of itself
Uses suspicious command line tools or Windows utilities

Related domains:

z.whorecord.xyz

a.tomx.xyz

hk.hackjerry.xyz

shenguiling.com

How to determine Trojan.Agent.FVA?


File Info:
crc32: 00A15B79
md5: c33c6f7e9528f5bf2ee21a623cf0a32c
name: QT.exe
sha1: 831f4feb362c838ddf09a0cb4a99d43f1f2a2baf
sha256: d6477d25c07c4704ffb98f2c668637b14e40ddc5862bc7494c554afe1229513c
sha512: 6baf176ddb4babd5ea14c2294cada33059487df1a84417e34170057d6de88542de8906543149bcdc49c54c9b0aadfcfcc78112c9acf14f4d82d62acbf564f2cb
ssdeep: 384:x2pVGbBXbiUQ4Q9G3qz9nvO1R5XnisuwwBgpzwVhN2VjqnW4tsj8mloOOuK+Yy+:ApeXbyBnvk5XtQN2VjX4tk8mIy+q
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
0: [No Data]

Trojan.Agent.FVA also known as:

Bkav	W32.ServStartV.Trojan
MicroWorld-eScan	Generic.ServStart.A.B7483007
FireEye	Generic.mg.c33c6f7e9528f5bf
CAT-QuickHeal	Trojan.ServStart.A
McAfee	Trojan-FHNO!C33C6F7E9528
ALYac	Generic.ServStart.A.B7483007
Cylance	Unsafe
VIPRE	Trojan.Win32.Nitol.b (v)
Sangfor	Malware
K7AntiVirus	Trojan ( 0051b1671 )
BitDefender	Generic.ServStart.A.B7483007
K7GW	Trojan ( 0051b1671 )
Cybereason	malicious.e9528f
TrendMicro	WORM_NITOL.SMB
Baidu	Win32.Trojan.ServStart.j
F-Prot	W32/QQhelper.C.gen!Eldorado
TotalDefense	Win32/Nitol.A!generic
APEX	Malicious
Avast	Win32:Malware-gen
ClamAV	Win.Malware.Dinwod-6803712-0
Kaspersky	Trojan.Win32.ServStart.cqi
Alibaba	Trojan:Win32/ServStart.117a2fb2
NANO-Antivirus	Trojan.Win32.ServStart.flstbq
ViRobot	Trojan.Win32.Agent.29696.EK
AegisLab	Trojan.Win32.Magania.kYU4
Tencent	Malware.Win32.Gencirc.10b3aac6
Endgame	malicious (high confidence)
Emsisoft	Generic.ServStart.A.B7483007 (B)
Comodo	TrojWare.Win32.GameThief.Magania.~NWABI@1775fs
F-Secure	Worm.WORM/Rbot.Gen
DrWeb	DDoS.Attack.342
Invincea	heuristic
McAfee-GW-Edition	BehavesLike.Win32.Backdoor.mm
Fortinet	W32/ServStart.AS!tr
Trapmine	malicious.high.ml.score
Sophos	Troj/Dloadr-DNE
Ikarus	Trojan.Win32.Agent
Cyren	W32/QQhelper.C.gen!Eldorado
Jiangmin	Trojan/Generic.beqse
Webroot	W32.Trojan.Rincux
Avira	WORM/Rbot.Gen
eGambit	Trojan.Generic
MAX	malware (ai score=80)
Antiy-AVL	Trojan/Win32.AGeneric
Arcabit	Generic.ServStart.A.BD722E7F
SUPERAntiSpyware	Trojan.Agent/Gen-Downloader
ZoneAlarm	Trojan.Win32.ServStart.cqi
Microsoft	DDoS:Win32/Nitol.B
AhnLab-V3	Trojan/Win32.Nitol.R136612
Acronis	suspicious
VBA32	BScope.Backdoor.Zegost
Ad-Aware	Generic.ServStart.A.B7483007
Malwarebytes	Trojan.Agent.FVA
Panda	Trj/Genetic.gen
ESET-NOD32	a variant of Win32/ServStart.DT
TrendMicro-HouseCall	WORM_NITOL.SMB
Rising	Backdoor.Agent!1.BA06 (CLOUD)
SentinelOne	DFI – Malicious PE
MaxSecure	Trojan.Malware.7164915.susgen
GData	Generic.ServStart.A.B7483007
BitDefenderTheta	AI:Packer.31F7B3361E
AVG	Win32:Malware-gen
Paloalto	generic.ml
CrowdStrike	win/malicious_confidence_100% (W)
Qihoo-360	Win32/Trojan.fd8

How to remove Trojan.Agent.FVA?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

What is “Trojan.Agent.FVA”?