Trojan

How to remove “Trojan-Downloader.Win32.Agent.hgbk”?

Malware Removal

The Trojan-Downloader.Win32.Agent.hgbk is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Downloader.Win32.Agent.hgbk virus can do?

  • Authenticode signature is invalid
  • Attempts to modify proxy settings

How to determine Trojan-Downloader.Win32.Agent.hgbk?



File Info:

name: 0A1C8A12108419A13DB6.mlw
path: /opt/CAPEv2/storage/binaries/aa5e53bfba143777cd5effcb3efdd41b982b55fe2bf2096e8a128380ad7d5a0d
crc32: F210E5C5
md5: 0a1c8a12108419a13db658827e79e21b
sha1: 3be8fef10973ca92eefbe64526250d60ca06789c
sha256: aa5e53bfba143777cd5effcb3efdd41b982b55fe2bf2096e8a128380ad7d5a0d
sha512: 860ceee15e68b40e85b7283b6f4b992ae51f8e626c2bef7172934e1b7b233b3fc1cbbd65425ca6d316b00480579a3828c62045eb1b8b85a59393a31a55a94f89
ssdeep: 1536:pTuy+sAEwlMuGZsjG3YNKKaPm6Phruxm2pIGCUD6ntK+kqPJRKMV7KxJVujIg:du+QMiI6C+GxuxrpHvWV6ejIg
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T19BA39E2334E0D472D59221328965EBE15AFEF8332A708A8B739C163D5F607D0EB65397
sha3_384: 36db3fb245fd729cab91d1423791c9b38aa59a68c55c2816e3551d031fe8e1e99b077cb11f28abb6cca859a0ff066622
ep_bytes: e8ba4e0000e989feffff8bff558bec83
timestamp: 2015-09-15 05:39:03


Version Info:

0: [No Data]

Trojan-Downloader.Win32.Agent.hgbk also known as:

LionicTrojan.Win32.Zbot.mAzp
FireEyeGeneric.mg.0a1c8a12108419a1
CAT-QuickHealPua.Convertad.20011
CylanceUnsafe
CrowdStrikewin/grayware_confidence_100% (W)
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Adware.ConvertAd.ZM
APEXMalicious
CynetMalicious (score: 100)
KasperskyTrojan-Downloader.Win32.Agent.hgbk
AlibabaAdWare:Win32/ConvertAd.78c740de
NANO-AntivirusTrojan.Win32.Agent.dxdbxj
TencentMalware.Win32.Gencirc.114c8c36
SophosGeneric PUA DL (PUA)
ComodoApplicUnwnt@#2hdskhre7620r
F-SecureHeuristic.HEUR/AGEN.1224231
DrWebAdware.ClickMeIn.2966
VIPREGen:Variant.Adware.ConvertAd.125
Trapminemalicious.high.ml.score
EmsisoftGen:Variant.Adware.ConvertAd.125 (B)
SentinelOneStatic AI – Suspicious PE
WebrootW32.Adware.Gen
AviraHEUR/AGEN.1224231
Antiy-AVLTrojan[Downloader]/Win32.Agent
ArcabitTrojan.Adware.ConvertAd.125
ViRobotTrojan.Win32.Agent.102400.DV
ZoneAlarmTrojan-Downloader.Win32.Agent.hgbk
AhnLab-V3PUP/Win32.ConvertAd.C1094056
Acronissuspicious
McAfeeArtemis!0A1C8A121084
TACHYONTrojan-Downloader/W32.Agent.102400.OW
VBA32BScope.Adware.Pokavampo
PandaTrj/Genetic.gen
RisingTrojan.Generic@AI.100 (RDMK:m8qlOnrVcbZ/ZUzUlssLeQ)
YandexTrojan.GenAsa!FKLk+Nv/5mE
IkarusPUA.ConvertAd
FortinetW32/Agent.HGBK!tr.dldr
AVGWin32:Dropper-gen [Drp]
AvastWin32:Dropper-gen [Drp]

How to remove Trojan-Downloader.Win32.Agent.hgbk?

Trojan-Downloader.Win32.Agent.hgbk removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment