Trojan

Trojan.Win32.Agent.xaxfpv removal

Malware Removal

The Trojan.Win32.Agent.xaxfpv is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Agent.xaxfpv virus can do?

  • Sample contains Overlay data
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Unconventionial language used in binary resources: Russian
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Trojan.Win32.Agent.xaxfpv?



File Info:

name: 4AF8AD635F7B8E1674D9.mlw
path: /opt/CAPEv2/storage/binaries/879b8a23dcbb80386f4430c363214bd9f02da7f69d0b3817e4e427bde2b8dfcf
crc32: 3D83761C
md5: 4af8ad635f7b8e1674d9862622d83a66
sha1: f8fa73bfa98a0c46a055b8083fa03a545a5705b0
sha256: 879b8a23dcbb80386f4430c363214bd9f02da7f69d0b3817e4e427bde2b8dfcf
sha512: 5a9282e647ee1636970fbf5d4de1aaa9e91a4cd966f60bc129e35d9a50fca7b3f1f226ab6a0b4fb3a4e10ab091465e6ce6368a5fd2f681b966033f3775cbaf17
ssdeep: 98304:KAp+lerYBsMVL7NQtjK3UCFBuTYsxxCsf3I7VoH8hDX2hEryFP99zTl:BUMUsS7N4+xCnxxCs47VXpEEryJzzTl
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15B463394B5A285BFE0D28D30891E43B1BA37FB8C6B65E1DAB3E55E1C8D3318536D4381
sha3_384: 95ffc9d09b7a8d5e7d4b9225f72fdfb35f8fb125d0300dfe28f5b66aa638320f2133f3e3ce79494e0858acbb40ea5aca
ep_bytes: 558bec83c4f0b888534200e824f2fdff
timestamp: 1992-06-19 22:22:17


Version Info:

Comments: 
CompanyName: dts音效大师                                                     
FileDescription: dts音效大师 V21.26 Installation                                 
FileVersion: V21.26              
LegalCopyright: dts音效大师                                                                                             
Translation: 0x0409 0x04e4

Trojan.Win32.Agent.xaxfpv also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Agent.Y!c
Elasticmalicious (high confidence)
McAfeeArtemis!4AF8AD635F7B
Cylanceunsafe
SangforPUP.Win32.Agent.Vly0
CrowdStrikewin/malicious_confidence_60% (W)
AlibabaTrojan:Win32/Tonmye.1fad0d7f
CyrenW32/ABRisk.WEBN-7260
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Packed.FlyStudio.AA potentially unwanted
APEXMalicious
CynetMalicious (score: 100)
KasperskyTrojan.Win32.Agent.xaxfpv
NANO-AntivirusVirus.Win32.Agent.dvixmz
AvastWin32:TrojanX-gen [Trj]
RisingTrojan.Tonmye!8.510 (TFE:5:mpg2j0iV6xN)
F-SecureTrojan.TR/Agent.pzajq
McAfee-GW-EditionBehavesLike.Win32.Dropper.tc
SophosGeneric Reputation PUA (PUA)
AviraTR/Agent.pzajq
ZoneAlarmTrojan.Win32.Agent.xaxfpv
MicrosoftPUA:Win32/Caypnamer.A!ml
GoogleDetected
MalwarebytesGeneric.Malware/Suspicious
TrendMicro-HouseCallTROJ_GEN.R002H07EK23
TencentWin32.Trojan.Agent.Lajl
MaxSecureTrojan.Malware.208755954.susgen
FortinetRiskware/Application
AVGWin32:TrojanX-gen [Trj]
Cybereasonmalicious.fa98a0
DeepInstinctMALICIOUS

How to remove Trojan.Win32.Agent.xaxfpv?

Trojan.Win32.Agent.xaxfpv removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment