RvIp.sys – Trojan Kazy

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

RvIp.sys – Trojan Kazy removal

FileVirus Alias
RvIp.sys Trojan Kazy
RvIp.sys Trojan OnLineGames
RvIp.sys Trojan CI
RvIp.sys Trojan Agent
RvIp.sys Trojan Downloader
RvIp.sys Trojan Generic

Created files:

%WinDir%\system\pp_data0 – Trojan Kazy
%WinDir%\system\RvIp.sys – Trojan Kazy

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\auek\Type: 01000000
HKLM\System\CurrentControlSet\Services\auek\Start: 03000000
HKLM\System\CurrentControlSet\Services\auek\DisplayName: auek
HKLM\System\CurrentControlSet\Services\auek\ImagePath: %WinDir%\System\RvIp.sys

Detected by UnHackMe:

RvIp.sys
Default location: %WinDir%\system\RvIp.sys
Dropper information:
SHA256: 168cf33944fc90a4d720ee42e77b472088bc9c6b72ebc7c38cbc477ea0ec2551
SHA1: aaa95fdf6e2fdaccecf4de71b61841f67b171255
MD5: c51d40b86a5952da85c93794dcc9d3ac
File size: 109568 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images