Should I remove “Trojan.Win32.Propagate.ntx”?

Malware Removal

The Trojan.Win32.Propagate.ntx is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

ribbon

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
THANK YOU!
DOWNLOAD NOW
On Going Offer

What Trojan.Win32.Propagate.ntx virus can do?

  • Executable code extraction
  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Creates RWX memory
  • A process created a hidden window
  • The binary likely contains encrypted or compressed data.
  • Executed a process and injected code into it, probably while unpacking
  • Detects Sandboxie through the presence of a library
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Trojan.Win32.Propagate.ntx?


File Info:

crc32: 142F5884
md5: f3a40092ebc3835c4189ff2e1cddd940
name: socks111atx.exe
sha1: b4aa7b97dc8efa25d40a9aba72aaa3bca6c5dfb9
sha256: c169e80c5bfe8f5a9d9153ac595b5897acc294ead8c3fe11b9d720cd41a90ffd
sha512: 6e24204153b5363e9e26e963f2a10923c8e65dbf855c39c906abfba4972742dd3c886c30a19cc7fed6e284fe271f8af3c6b2f8af55631cee68bc6a629145f70f
ssdeep: 1536:bmkPcriNmN9+qeDur27FQPfhsPu5swm/XaLRlQUiNtPEugs278CbRWCARlEW6:bhYiNg+qDuF2su5CXcQ/UAlC5ARlEW6
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

Translation: 0x0219 0x04e4

Trojan.Win32.Propagate.ntx also known as:

MicroWorld-eScanTrojan.GenericKD.32769060
McAfeeRDN/Generic.grp
CylanceUnsafe
SangforMalware
CrowdStrikewin/malicious_confidence_90% (W)
BitDefenderTrojan.GenericKD.32769060
K7GWRiskware ( 0040eff71 )
K7AntiVirusRiskware ( 0040eff71 )
Invinceaheuristic
SymantecML.Attribute.HighConfidence
APEXMalicious
ClamAVWin.Packed.Tofsee-7413745-0
GDataTrojan.GenericKD.32769060
KasperskyTrojan.Win32.Propagate.ntx
AegisLabTrojan.Multi.Generic.4!c
RisingTrojan.Generic@ML.100 (RDMK:4WOQ1oIMYjulUUmSq4BQWw)
Endgamemalicious (high confidence)
SophosMal/Generic-S
F-SecureTrojan.TR/AD.MalwareCrypter.pfnaf
DrWebTrojan.Siggen8.58532
McAfee-GW-EditionBehavesLike.Win32.PUPXFQ.cm
Trapminemalicious.moderate.ml.score
FireEyeGeneric.mg.f3a40092ebc3835c
IkarusTrojan.Win32.Crypt
CyrenW32/Trojan.GXKM-3703
JiangminTrojanDownloader.Bandit.ayc
WebrootW32.Malware.Gen
AviraTR/AD.MalwareCrypter.pfnaf
MAXmalware (ai score=87)
ArcabitTrojan.Generic.D1F40424
ZoneAlarmTrojan.Win32.Propagate.ntx
MicrosoftTrojan:Win32/GandCrypt.GE!MTB
AhnLab-V3Malware/Win32.Generic.C3605225
Acronissuspicious
VBA32Malware-Cryptor.Limpopo
ALYacTrojan.GenericKD.32769060
Ad-AwareTrojan.GenericKD.32769060
MalwarebytesTrojan.MalPack.GS
PandaTrj/GdSda.A
ESET-NOD32a variant of Win32/Kryptik.GYYN
SentinelOneDFI – Suspicious PE
FortinetW32/Malicious_Behavior.VEX
BitDefenderThetaGen:NN.ZexaF.32515.ku0@aaRZC0n
AVGFileRepMalware
Cybereasonmalicious.7dc8ef
Qihoo-360Win32/Trojan.857

How to remove Trojan.Win32.Propagate.ntx?

Trojan.Win32.Propagate.ntx removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment