How to remove “Trojan-Downloader.NSIS.Agent”?

The Trojan-Downloader.NSIS.Agent is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Trojan-Downloader.NSIS.Agent virus can do?

• Creates RWX memory
• Reads data out of its own binary image
• Unconventionial binary language: Chinese (Simplified)
• Unconventionial language used in binary resources: Chinese (Simplified)
• Anomalous binary characteristics

Related domains:

How to determine Trojan-Downloader.NSIS.Agent?

File Info:
crc32: 73A7B744
md5: 11a7cb60ec1750669f881f53466e5a81
name: razorlame.exe
sha1: 0ae5556b8bb8f0c1e84d13d6e68f17c691c7febd
sha256: a58b9516fbf334d778773b3fcef080e62a3b13aafae5f3f7471bec86362b93eb
sha512: d9a3a0d949fc93f9915b5d47186f0da8297cdf680d73b08d6d5922f82b3f749cd4e3077c43721a11fa67c516753d96d199cee421196d7ba1ff6a323b6f9b4155
ssdeep: 12288:7IKETpAqO6CPL4rPe6et+3K7CBwI7/+6/1pLigEKZ4Cux7TzMK1NP9MT:7Iq6CPL4rlet+3oAwsR1pLkvzdd9Y
type: PE32 executable (GUI) Intel 80386, for MS Windows, InstallShield self-extracting archive

Version Info:
LegalCopyright: (C)
ProductName: 
FileVersion: 
FileDescription: Producer oylc
Translation: 0x0804 0x04e4

Trojan-Downloader.NSIS.Agent also known as:

How to remove Trojan-Downloader.NSIS.Agent?

• Download and install GridinSoft Anti-Malware.
• Open GridinSoft Anti-Malware and perform a “Standard scan“.
• “Move to quarantine” all items.
• Open “Tools” tab – Press “Reset Browser Settings“.
• Select proper browser and options – Click “Reset”.
• Restart your computer.