Trojan

Trojan.Win32.Agent.xaitgu removal tips

Malware Removal

The Trojan.Win32.Agent.xaitgu is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Agent.xaitgu virus can do?

  • Reads data out of its own binary image
  • A process created a hidden window
  • Drops a binary and executes it
  • Network activity detected but not expressed in API logs
  • Creates a copy of itself

How to determine Trojan.Win32.Agent.xaitgu?



File Info:

crc32: 39858D95
md5: 44691dc686c5ff1f1c6878863c86a68d
name: 44691DC686C5FF1F1C6878863C86A68D.mlw
sha1: 02f694ad4fe6381a1240f6d18aa7d5f76aa258dc
sha256: 2c591e5f54c07ba88c4aa90e42b1617d8f5fdca5d209ebd1cf7154e326cc54a3
sha512: bc56d00f9d8b28accdb1eeb260484f860034070eca373caf5905a4ba55c62ced97daf9df5de6f3a05cafaa1ae8472ce77119a865fdab20f86f0e84ced05a565b
ssdeep: 12288:zzNB0JfiwSdYSui8zZH94I3H1v1tLCR2otVdzzLnd3:vNsfiTdYSuVzZH9tH1v1tLCRtVVzLnR
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright 2019 Payet Masse SAS S.A.
InternalName: setup
FileVersion: 2.4.6.84
CompanyName: Payet Masse SAS S.A.
ProductName: whale specify 2.4.6.84
ProductVersion: 2.4.6.84
FileDescription: whale specify 2.4.6.84
OriginalFilename: install.exe
Translation: 0x0409 0x04e4

Trojan.Win32.Agent.xaitgu also known as:

LionicTrojan.Win32.Agent.4!c
ALYacTrojan.GenericKD.37688742
CylanceUnsafe
SangforTrojan.Win32.Agent.xaitgu
AlibabaTrojan:Win32/Generic.836c5a73
AvastWin32:Malware-gen
CynetMalicious (score: 99)
KasperskyTrojan.Win32.Agent.xaitgu
BitDefenderTrojan.GenericKD.37688742
MicroWorld-eScanTrojan.GenericKD.37688742
TencentWin32.Trojan.Agent.Pbph
Ad-AwareTrojan.GenericKD.37688742
McAfee-GW-EditionBehavesLike.Win32.BadFile.jh
FireEyeTrojan.GenericKD.37688742
EmsisoftTrojan.GenericKD.37688742 (B)
AviraTR/Agent.ktkya
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitTrojan.Generic.D23F15A6
GDataTrojan.GenericKD.37688742
McAfeeArtemis!44691DC686C5
MAXmalware (ai score=85)
TrendMicro-HouseCallTROJ_GEN.R002H0CIT21
FortinetW32/Agent.XAITGU!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml

How to remove Trojan.Win32.Agent.xaitgu?

Trojan.Win32.Agent.xaitgu removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment