I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
Trojan Kazy
Also known as: Trojan ADH, Trojan Agent
SHA256: b5f449618d775caf50ae03642d39c288136aff204f2fa24d9489bfaf5834d16e
SHA1: 763221d3a419bcbd7dae31c53c62299171c203d4
MD5: 17d838c2269bd1fa7ed0c79a1d6502f3
File size: 918797 bytes
Created files:
%Program Files%\crossplat\crossplatn.dll – Trojan Kazy
%Program Files%\crossplat\crossplatndl.exe – Trojan Kazy
%Program Files%\crossplat\crossplats.dll – Trojan Kazy
%Program Files%\crossplat\crossplats.exe – Trojan Kazy
%Program Files%\crossplat\crossplatun.exe – Trojan Kazy
%Program Files%\crossplat\installwin.exe – Trojan Kazy
%Program Files%\crossplat\unst.bat – Trojan Kazy
%SysDir%\INETKO.DLL – Trojan Kazy
%SysDir%\MSINET.OCX – Trojan Kazy
%SysDir%\VB6KO.DLL – Trojan Kazy
Trojan Kazy created autostart registry keys:
HKLM\Software\Classes\CLSID\{9A45286A-DFD2-4AAE-A0B9-521A562804CD}\InprocServer32 : %Program Files%\crossplat\crossplatn.dll
HKLM\Software\Classes\CLSID\{9A45286A-DFD2-4AAE-A0B9-521A562804CD}\InprocServer32\ThreadingModel: Apartment
HKLM\Software\Classes\CLSID\{C214BC95-B361-45CF-B6E0-ACB2E75CF1C3}\InprocServer32 : %Program Files%\crossplat\crossplats.dll
HKLM\Software\Classes\CLSID\{C214BC95-B361-45CF-B6E0-ACB2E75CF1C3}\InprocServer32\ThreadingModel: Apartment