SNUPDATER.EXE – Trojan Kazy

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

SNUPDATER.EXE – Trojan Kazy removal

File MD5 Virus Alias
SNUPDATER.EXE 1c9c30ef5c2baa04e006252271b7d3c5 Trojan Kazy
SNUPDATER.EXE 1c9c30ef5c2baa04e006252271b7d3c5 Trojan BadReputation
SNUPDATER.EXE 1c9c30ef5c2baa04e006252271b7d3c5 Trojan Generic
SNUPDATER.EXE 1c9c30ef5c2baa04e006252271b7d3c5 Trojan Click
SNUPDATER.EXE 1c9c30ef5c2baa04e006252271b7d3c5 Trojan Agent

SNUPDATER.EXE size: 16384 bytes
SNUPDATER.EXE hash: 1C9C30EF5C2BAA04E006252271B7D3C5

Created files:

%Program Files%\K14R\snupdater.exe
%Program Files%\K14R\uvname.conf
%Program Files%\K14R\WindowsService.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\ReputationAlertUpdaterService\Type: 10000000
HKLM\System\CurrentControlSet\Services\ReputationAlertUpdaterService\Start: 02000000
HKLM\System\CurrentControlSet\Services\ReputationAlertUpdaterService\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\ReputationAlertUpdaterService\ImagePath: %Program Files%\K14R\WindowsService.exe

Detected by UnHackMe:

SNUPDATER.EXE
Default location: %PROGRAM FILES%\K14R\SNUPDATER.EXE

Dropper information:
MD5: 8058483f59f870ec913fc9dbe6d03eb0
File size: 45431 bytes

Leave a Reply