How to remove "Trojan.Generic.15596559"?

The Trojan.Generic.15596559 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Trojan.Generic.15596559 virus can do?

Executable code extraction
Attempts to connect to a dead IP:Port (1 unique times)
Creates RWX memory
Starts servers listening on 127.0.0.1:0
Reads data out of its own binary image
Performs some HTTP requests
Steals private information from local Internet browsers
Harvests credentials from local FTP client softwares
Harvests information related to installed instant messenger clients

Related domains:

redirector.gvt1.com

r4—sn-4g5ednss.gvt1.com

How to determine Trojan.Generic.15596559?


File Info:
crc32: F75BD66D
md5: 018647c239c9e23a05e48aedcd35a311
name: 2.exe
sha1: e1769d5541dc36bb3e1efd1338c08998d76c75e4
sha256: 658dbee429915b938e7672c38dd7206939358dbb511290fd8df6e1a0bf35df40
sha512: 2010fbe4546b157c319ecec5aa862249a3ef2354daac224857e51e5ba5cf31b1418587424fee7bed64cf8657ee15bcdff73b81fc13c676e89ce0d35cec0a6576
ssdeep: 3072:LA1wctAHKZRX9k8KvdoItwUeQzpnGlRuu4KXIzPCyZXK0lNOzzzzzYZt1xrWfeM:M1ltAHKZRX9YmuVeopnGh4zRZ/FZRdM
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:
0: [No Data]

Trojan.Generic.15596559 also known as:

MicroWorld-eScan	Trojan.Generic.15596559
FireEye	Generic.mg.018647c239c9e23a
McAfee	GenericRXFM-ZK!018647C239C9
Malwarebytes	Trojan.Downloader.CH
Zillya	Trojan.Agent.Win32.356360
Sangfor	Malware
K7AntiVirus	Spyware ( 0055e3ec1 )
BitDefender	Trojan.Generic.15596559
K7GW	Spyware ( 0055e3ec1 )
Invincea	heuristic
F-Prot	W32/A-43f94793!Eldorado
Symantec	SMG.Heur!gen
APEX	Malicious
Avast	MSIL:KillAV-B [Trj]
ClamAV	Win.Trojan.Generic-6295774-0
GData	MSIL.Trojan-Spy.Keylogger.I
Kaspersky	HEUR:Trojan.Win32.Generic
Alibaba	TrojanDownloader:MSIL/Genmaldow.ffee5f25
NANO-Antivirus	Trojan.Win32.Agent.dzuroz
AegisLab	Trojan.Win32.Generic.lLFV
Rising	Backdoor.MSIL.Bladabindi!1.9E49 (CLASSIC)
Endgame	malicious (high confidence)
Emsisoft	Trojan.Generic.15596559 (B)
F-Secure	Trojan.TR/ATRAPS.Gen
DrWeb	Trojan.PWS.Siggen1.45539
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	TROJ_TOAUTA_EK2501E9.UVPM
McAfee-GW-Edition	GenericRXFM-ZK!018647C239C9
Trapmine	malicious.high.ml.score
Sophos	Mal/MSIL-GM
SentinelOne	DFI – Malicious PE
Cyren	W32/A-43f94793!Eldorado
Jiangmin	Trojan/Generic.bbumf
Webroot	W32.Malware.Gen
Avira	TR/ATRAPS.Gen
eGambit	RAT.VirusRat
Antiy-AVL	Trojan/Win32.Unknown
Microsoft	TrojanDownloader:MSIL/Genmaldow.AE!bit
Arcabit	Trojan.Generic.DEDFC0F
SUPERAntiSpyware	Trojan.Agent/Gen-MSIL
ZoneAlarm	HEUR:Trojan.Win32.Generic
AhnLab-V3	Trojan/Win32.Spnr.R65861
VBA32	TScope.Trojan.MSIL
ALYac	Trojan.Generic.15596559
MAX	malware (ai score=80)
Ad-Aware	Trojan.Generic.15596559
Cylance	Unsafe
ESET-NOD32	MSIL/Spy.Agent.QN
TrendMicro-HouseCall	TROJ_TOAUTA_EK2501E9.UVPM
Tencent	Malware.Win32.Gencirc.10b32d4e
Yandex	Trojan.Agent!uQByzeHmSCY
Ikarus	Worm.Win32.Msil
Fortinet	MSIL/SpyPSW.AVQ!tr
BitDefenderTheta	Gen:NN.ZemsilF.34108.lm1@aiRVIRk
AVG	MSIL:KillAV-B [Trj]
Cybereason	malicious.239c9e
Paloalto	generic.ml
Qihoo-360	Generic/Trojan.5b2

How to remove Trojan.Generic.15596559?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

How to remove “Trojan.Generic.15596559”?