Trojan

Should I remove “Trojan.AgentWDCR.ENI”?

Malware Removal

The Trojan.AgentWDCR.ENI is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.AgentWDCR.ENI virus can do?

  • Creates RWX memory
  • Detected script timer window indicative of sleep style evasion
  • Reads data out of its own binary image
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • A scripting utility was executed
  • A potential decoy document was displayed to the user
  • Installs itself for autorun at Windows startup
  • Stores JavaScript or a script command in the registry, likely for persistence or configuration
  • Creates a hidden or system file
  • Network activity detected but not expressed in API logs
  • Harvests information related to installed mail clients
  • Uses suspicious command line tools or Windows utilities

How to determine Trojan.AgentWDCR.ENI?



File Info:

crc32: 355D2975
md5: 5e59acf240e2881b1c1e2f5586c9ca6f
name: 5E59ACF240E2881B1C1E2F5586C9CA6F.mlw
sha1: 8e0e8da216995f184dccabb23f012b05192c9f1d
sha256: 478d6176fcf3cef7b49dd302581519ba0303b38fd6788dd948a8b367ebed423d
sha512: 7dbb039c2a9d5b64b8465a8b6f65b7e47f8a6d97b07b98884947d062a986869d0dfdb1bb78d306142728158d78a672234df740aa0cc0323501f97c5f83627420
ssdeep: 12288:Qbr2FYUReCTt3PHPWGWRcR6eDt7XjSaAYet:myFxReCdPVXMutbjmt
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

LegalCopyright: 
InternalName: 
FileVersion: 1.1.22.00
ProductName: 
ProductVersion: 1.1.22.00
FileDescription: 
OriginalFilename: 
Translation: 0x0409 0x04b0

Trojan.AgentWDCR.ENI also known as:

BkavW32.AIDetect.malware2
MicroWorld-eScanTrojan.AgentWDCR.ENI
CAT-QuickHealTrojan.MultiInjector
Qihoo-360Win32/Ransom.Blocker.HwsBhvsA
McAfeeGeneric.wy
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
AegisLabTrojan.Win32.Blocker.j!c
SangforTrojan.Win32.Blocker.ec
K7AntiVirusTrojan ( 004c2b1c1 )
BitDefenderTrojan.AgentWDCR.ENI
K7GWTrojan ( 004c2b1c1 )
ArcabitTrojan.AgentWDCR.ENI
CyrenW32/Backdoor.YCLO-3018
SymantecTrojan Horse
APEXMalicious
AvastWin32:Malware-gen
KasperskyTrojan-Ransom.Win32.Blocker.heat
AlibabaRansom:Win32/Blocker.708b68fd
NANO-AntivirusTrojan.Win32.Blocker.dsmmtl
RisingTrojan.Spy.Win32.Blocker.ec (CLASSIC)
Ad-AwareTrojan.AgentWDCR.ENI
EmsisoftTrojan.AgentWDCR.ENI (B)
ComodoMalware@#1qo9kdk9cwjaj
F-SecureTrojan.TR/Houcecut.A.9
DrWebTrojan.Siggen6.37994
ZillyaWorm.Agent.Win32.29750
McAfee-GW-EditionBehavesLike.Win32.Spyware.gc
FireEyeTrojan.AgentWDCR.ENI
SophosMal/Generic-L
IkarusWorm.VBS.Agent
JiangminTrojan/Blocker.npw
WebrootW32.Trojan.Agent.Gen
AviraTR/Houcecut.A.9
MAXmalware (ai score=99)
KingsoftWin32.Troj.Undef.(kcloud)
MicrosoftTrojan:Win32/MultiInjector.A!rfn
ZoneAlarmTrojan-Ransom.Win32.Blocker.heat
GDataWin32.Trojan.Agent.1WECMT
CynetMalicious (score: 85)
AhnLab-V3Malware/Win32.Generic.C924350
ALYacTrojan.AgentWDCR.ENI
VBA32Hoax.Blocker
MalwarebytesMalware.Heuristic.1003
PandaTrj/Chgt.O
ZonerTrojan.Win32.35056
ESET-NOD32VBS/Agent.NDW
TencentWin32.Trojan.Blocker.Sxyn
YandexTrojan.Blocker!0HKVWZQfGcY
FortinetW32/Blocker.HEAT!tr
AVGWin32:Malware-gen
Cybereasonmalicious.240e28
Paloaltogeneric.ml

How to remove Trojan.AgentWDCR.ENI?

Trojan.AgentWDCR.ENI removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment