If you’ve spotted on your computer an app or a process with the name Trojan:Win32/Malgent!MTB (or another similar name – Malgent or Trojan:Win32/Vigorf.A) you should act quickly because this is most likely a Trojan Horse. Security reports and our own research suggest that this malware can be harmful to your system and digital privacy, so swift removal is the recommended response in this situation.
The malware most likely got inside your PC through file bundles and then gained enough access and privileges to carry out a wide range of harmful activities.
Depending on the attackersโ objective in your current case, Trojan:Win32/Malgent!MTB may steal personal data, weaken your systemโs security, install additional malware, use your machine for resource-heavy tasks like cryptomining, and perform other similar harmful tasks.
We tested that SpyHunter successfully removes Trojan:Win32/Malgent!MTB* and we recommend using it. It will block Trojan:Win32/Malgent!MTB from reinstalling itself and it will make sure your device is clean from any malware.
Try Free For 7 Days*
Buy now15% OFF if you buy straight without trial.
OFFERThe good news it’s totally possible to remove it, and if you are careful and don’t take too long, there shouldn’t be any lasting harm.
The first method to remove it is by following the guide below, but this is only recommended for users who already have some troubleshooting experience. For everyone else, our advice is to use the professional removal tool – SpyHunter 5 – that’s included on this page
Trojan:Win32/Malgent!MTB Removal Guide
Start with the shorter set of steps below, because it covers the most common signs and leftovers and may solve the problem quickly. If Trojan:Win32/Malgent!MTB is still present after the restart check, continue with the full guide afterward for a deeper cleanup of processes, files, scheduled tasks, and registry entries.
Quick Steps to Remove Trojan:Win32/Malgent!MTB
- 1.1First, go to your downloads folder (This PC > Downloads), sort the items there by date, and see if any suspicious files have been downloaded recently. Found anything fishy? Delete it before continuing.
- 1.2Next, go to the Start Menu, navigate to Settings (the gear icon), and then to Apps.
- 1.3You’ll see all installed programs listed on that page – sort them by installation date and look for Trojan:Win32/Malgent!MTB or anything else that looks suspicious, unfamiliar, or unwanted.
- 1.4If you find Trojan:Win32/Malgent!MTB or another sketchy app, select it and start the uninstallation process. Be careful when following the uninstallation prompts so that you don’t let anything linked to the program remain on your PC.
-
1.5Afterward, look for the installation directory. You’ll often find it at
C:\UserNames\UserName\AppData\Local\Programs\, but it might also be elsewhere. - 1.6If you find the malware folder, remove it together with any leftover files that might still be in it.
Restart the computer now and check whether the suspicious app is still present. If it is, that does not mean the first attempt was useless – it usually means deeper components are still active, so continue with the advanced instructions below to finish the cleanup.
SUMMARY:
| Name | Trojan:Win32/Malgent!MTB |
| Type | Trojan |
| Detection Tool |
Some threats reinstall themselves if you don’t delete their core files. We recommend downloading SpyHunter to remove harmful programs for you. This may save you hours and ensure you don’t harm your system by deleting the wrong files. |
How to Fully Get Rid of Trojan:Win32/Malgent!MTB
The full guide begins with two preparation steps that make the rest of the removal process possible: showing hidden files and folders and installing a tool that can force-delete locked items. Complete both before moving on, because Trojan:Win32/Malgent!MTB may keep some of its components hidden or blocked while it is still active.
1. Preparing for the Trojan:Win32/Malgent!MTB Removal
- 1.1
The first preparatory step you must perform is to enable the visibility of hidden files and folders.
Do this by searching for Folder Options in the Start Menu and selecting the View tab. Then activate “Show hidden files and folders” and save the change by clicking Apply and then OK. - 1.2Next, you’ll need to download and install a free utility called LockHunter It’s crucial because it lets you delete files locked by malicious processes.
We know many readers prefer not to install extra software and would rather do everything manually. In this case, though, this utility can be important because some malicious files stay locked while their related processes are running, and that can prevent the rest of the cleanup from working properly.
LockHunter is free, quick to install, and does not require an account. Most people can set it up in a couple of minutes, use it for the locked-file steps in this guide, and then decide afterward whether they want to keep it installed.
Remove Trojan:Win32/Malgent!MTB Processes From the Task Manager
This step is about finding the active processes that keep Trojan:Win32/Malgent!MTB running. The process name can vary from one case to another, so do not rely on a perfect name match. Use your judgment instead by checking the name, resource usage, file location, and whether the process makes sense for the programs on your PC.
2. How to Delete Trojan:Win32/Malgent!MTB Processes in the Task Manager
-
2.1This is done through the Task Manager which you can open by pressing
Ctrl + Shift + Esc. - 2.2If it shows a simplified view, click More Details to expand it and see all running processes.
- 2.3
Sort the list of processes by how much Memory or CPU they are using. Then look out for any that are using unusually large amounts of either resource type and yet don’t seem related to any legitimate programs that you have on your PC.Note: Don’t expect to find a rogue process named “Trojan:Win32/Malgent!MTB“. Most forms of malware will hide their processes under innocent-looking names.
- 2.4For each dubious process, right-click it and select Open file location. This will lead you to a folder where the data used by this process is stored.
- 2.5You must delete that entire folder, but you’ll likely get an error when you attempt to do that because some of the files there are in use by the malware. The workaround is to use LockHunter: right-click the folder, select “What’s locking this folder?” from the context menu, and click Delete in the next window.
- 2.6After removing the files, go back to Task Manager, write down the name of the rogue process (you’ll need it later), then click it, and click the End Task button to quit it.
Delete Trojan:Win32/Malgent!MTB Virus Files
After you stop the active process, you still need to search for the remaining files that support Trojan:Win32/Malgent!MTB. They can be spread across several system and user folders, including startup locations, so take your time, check each path carefully, and be thorough before you assume the infection is fully gone.
3. How to Get Rid of Trojan:Win32/Malgent!MTB Files
-
3.1Start by examining the Startup folders at:
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartupC:\Users\*Your Username*\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup -
3.2Search them for suspicious files, but if you aren’t what files are rogue, just delete everything in those folders except for the
desktop.inifile, which is a standard system file. -
3.3Next, inspect the
Program FilesandProgram Files (x86)in yourC:drive. Some malware apps will create folders there, so look for anything that looks linked to Trojan:Win32/Malgent!MTB or that is otherwise unrecognized or out-of-place folders. Delete anything suspicious you may find. -
3.4Three other locations you must check are:
C:\Users\%user%\AppData\Local\C:\Users\%user%\AppData\Local\Programs\C:\Users\%user%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\
Again, if you notice anything fishy in them, it must be deleted. And if there’s a folder you aren’t sure about, it’s probably best to get rid of it. At worst, it will be something harmless linked to a legitimate program in your system. However, if you didn’t recognize its name right away, chances are it’s something you either don’t need or something that’s outright unwanted (like Trojan:Win32/Malgent!MTB). -
3.5
Finally, remember to clear the Temp folder. It’s located atC:\Users\YourUsername\AppData\Local\Temp.
It stores only temporary files, which are all okay to delete. So, to save yourself some time spent looking for malware files, just Ctrl + A to select everything, and then press Delete from your keyboard to delete all of the folder’s contents.
Get Rid of Trojan:Win32/Malgent!MTB Scheduled Tasks
Scheduled tasks are easy to overlook, but they are important because a leftover task can start Trojan:Win32/Malgent!MTB again or restore parts of it after a reboot. Many users delete the files and processes first, then wonder why the problem returns, so do not skip this check.
4. Eliminate Trojan:Win32/Malgent!MTB Scheduled Tasks
- 4.1
Open the Task Scheduler by searching for it in the Start Menu search bar. Then, one by one, review the scheduled tasks in the Task Scheduler Library. -
4.2For each task, double-click it and open the Actions tab, where you can learn what it is that the task is set to perform. Look for tasks that run unfamiliar executables, scripts, or anything located in the
AppDataorRoamingdirectories. - 4.3If you come across a task that executes anything suspicious, write down its file path, then right-click the task, and select Delete.
- 4.4After that, go to the file path you saved and delete the file that the task was set to run.
Uninstall the Trojan:Win32/Malgent!MTB Malware App Through the Windows Registry
The registry step matters because leftover startup entries and references can help Trojan:Win32/Malgent!MTB return even after its files are removed. At the same time, editing the registry carelessly can affect legitimate software or Windows settings, so move slowly. If you are not comfortable doing that, SpyHunter 5 is a safer alternative for this stage.
5. Remove Trojan:Win32/Malgent!MTB Through the Registry
- 5.1Type “regedit” in the Start Menu and hit Enter to go to the Registry Editor.
- 5.2Then click Edit > Find to open the search box and then type the exact name of whatever program you tried to uninstall during the quick steps at the start of the guide.
- 5.3Click Find Next and if a result comes up, click the registry key (folder) in the left panel that contains it and delete that key. Perform another search after each deleted key until there are no more results for that search query.
- 5.4Next, search for the name of any other programs you attempted to delete. Also search for the names of processes you ended in the Task Manager earlier in the guide.
-
5.5After you’ve deleted all relevant entries, manually navigate to these registry keys:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunHKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceHKLM\Software\Microsoft\Windows\CurrentVersion\RunHKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceHKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\RunHKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\RunHKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServicesHKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServicesOnceHKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\SetupHKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services - 5.6Select each of these keys to reveal their contents in the right panel. Then look for values referencing Trojan:Win32/Malgent!MTB or any unknown applications. Delete only the specific values linked to the malware and leave the keys that contain them intact.
