Should I remove “Trojan:Win32/Agent.KO”?

The Trojan:Win32/Agent.KO is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan:Win32/Agent.KO virus can do?

Presents an Authenticode digital signature
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Trojan:Win32/Agent.KO?


File Info:
name: 31951986B6058304A7FB.mlw
path: /opt/CAPEv2/storage/binaries/9fcba2baf086ae46ec3da3f9f8d770da4335fb17dfd4f89764491780c5fd60ad
crc32: 8A6DDF67
md5: 31951986b6058304a7fb4d9b13c94f9b
sha1: a120e8d9029b470e55477ed3125149cef1552a2d
sha256: 9fcba2baf086ae46ec3da3f9f8d770da4335fb17dfd4f89764491780c5fd60ad
sha512: b669ce0bf5bb54e401689710a1ad406b512144e61e2dff91e65b6bd551296aef84fda66a8fca083e7dd6cc6d50951e18387055dcb043eed727d470a7c4741443
ssdeep: 384:uOCMrdjwoaY2HfLv2aAYjIWXPo38Z3auiO:uP6Eoz2HDXAYciws15
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16C828DD9B7A88CEEC55CE63B765E78073901035B911843D3A70AB943497D3AC8758F63
sha3_384: e7a6247c2b65e87d51ca4540cee598a78549bb6c02b171facf1580e40e57b2eaf3ad0ed909808797885b5c87e97c6fc8
ep_bytes: e8ad0c0000e8960c000033c050e8940c
timestamp: 2011-11-23 09:21:48

Version Info:
0: [No Data]

Trojan:Win32/Agent.KO also known as:

Bkav	W32.AIDetect.malware2
Lionic	Trojan.Win32.Generic.lrhh
Elastic	malicious (high confidence)
DrWeb	Trojan.MulDrop3.45231
MicroWorld-eScan	Gen:Variant.Kazy.8023
FireEye	Generic.mg.31951986b6058304
ALYac	Gen:Variant.Kazy.8023
Cylance	Unsafe
Zillya	Trojan.Agent2.Win32.19861
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Trojan ( 00071a9a1 )
Alibaba	Trojan:Win32/Kryptik.ec6c1820
K7GW	Trojan ( 00071a9a1 )
CrowdStrike	win/malicious_confidence_100% (W)
BitDefenderTheta	Gen:NN.ZexaF.34212.buX@a01XdDbi
VirIT	Trojan.Win32.Zyx.JS
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Kryptik.AEBC
TrendMicro-HouseCall	TROJ_DORVEN.A
Paloalto	generic.ml
ClamAV	Win.Trojan.Agent-680465
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	Gen:Variant.Kazy.8023
NANO-Antivirus	Trojan.Win32.Drop.vuxpv
SUPERAntiSpyware	Trojan.Agent/Gen-Dlg
Avast	Win32:Crypt-MJP [Trj]
Rising	Trojan.Agent!8.B1E (CLOUD)
Ad-Aware	Gen:Variant.Kazy.8023
Sophos	Mal/Generic-R + Mal/EncPk-AEU
Comodo	TrojWare.Win32.Kryptik.AECA@4pvxhz
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	TROJ_DORVEN.A
McAfee-GW-Edition	GenericRXCF-LI!31951986B605
Emsisoft	Gen:Variant.Kazy.8023 (B)
GData	Gen:Variant.Kazy.8023
Jiangmin	Trojan/Agent.fuov
Webroot	W32.Trojan.Gen
Avira	TR/Dropper.Gen
MAX	malware (ai score=83)
Antiy-AVL	Trojan/Generic.ASMalwS.14C848
Kingsoft	Win32.Troj.Generic.a.(kcloud)
Gridinsoft	Ransom.Win32.Zbot.sa
ViRobot	Trojan.Win32.S.Scar.19144
ZoneAlarm	HEUR:Trojan.Win32.Generic
Microsoft	Trojan:Win32/Agent.KO
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win32.Scar.C63452
McAfee	GenericRXCF-LI!31951986B605
VBA32	BScope.TrojanDownloader.Totem
Malwarebytes	Malware.AI.4046274989
APEX	Malicious
Tencent	Malware.Win32.Gencirc.114cc9e1
Yandex	Trojan.GenAsa!qs9CbIOaqqE
Ikarus	Trojan-Downloader.Win32.Injecter
MaxSecure	Trojan.Malware.3916797.susgen
Fortinet	W32/Zbot.AAC!tr
AVG	Win32:Crypt-MJP [Trj]
Cybereason	malicious.6b6058
Panda	Trj/Genetic.gen

How to remove Trojan:Win32/Agent.KO?

Trojan:Win32/Agent.KO removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X