Trojan Kazy – MSWINSCK.OCX – 511a6bbeb51db027b1bf349de876f63c

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Kazy
Also known as: Trojan Generic
SHA256: dbd74667979d6b623d4db5c6f4215a06b3db58c1f848ae88597104c2a6394544
SHA1: 9836cf695798e79907a0775e6660e7757ccd6c34
MD5: 511a6bbeb51db027b1bf349de876f63c
File size: 778336 bytes

Created files:

C:\MSWINSCK.OCX – Trojan Kazy
%Program Files%\WinApps\cmss.exe – Trojan Kazy
%Program Files%\WinApps\comres.exe – Trojan Kazy
%Program Files%\WinApps\msmsgs.exe – Trojan Kazy
%Program Files%\WinApps\RDS.exe – Trojan Kazy
%WinDir%\ntfsv.dll – Trojan Kazy
%WinDir%\refsdm.dll – Trojan Kazy
%SysDir%\ieobject.dll – Trojan Kazy
%Temp%\Compress0\ass.dll – Trojan Kazy
%Temp%\Compress0\ccsvchst.exe – Trojan Kazy
%Temp%\Compress0\ccsvchst1.exe – Trojan Kazy
%Temp%\Compress0\comres.exe – Trojan Kazy
%Temp%\Compress0\delkl.dll – Trojan Kazy
%Temp%\Compress0\dete.dll – Trojan Kazy
%Temp%\Compress0\dunin.dll – Trojan Kazy
%Temp%\Compress0\emdc.dll – Trojan Kazy
%Temp%\Compress0\emfz.dll – Trojan Kazy
%Temp%\Compress0\emfzb.dll – Trojan Kazy
%Temp%\Compress0\emine.dll – Trojan Kazy
%Temp%\Compress0\eminu.dll – Trojan Kazy
%Temp%\Compress0\emon.dll – Trojan Kazy
%Temp%\Compress0\emoo.dll – Trojan Kazy
%Temp%\Compress0\ftde.dll – Trojan Kazy
%Temp%\Compress0\ften.dll – Trojan Kazy
%Temp%\Compress0\ftin.dll – Trojan Kazy
%Temp%\Compress0\ftpa.dll – Trojan Kazy
%Temp%\Compress0\ftps.dll – Trojan Kazy
%Temp%\Compress0\ftsv.dll – Trojan Kazy
%Temp%\Compress0\fttx.dll – Trojan Kazy
%Temp%\Compress0\ftus.dll – Trojan Kazy
%Temp%\Compress0\inmsg.dll – Trojan Kazy
%Temp%\Compress0\inter.dll – Trojan Kazy
%Temp%\Compress0\inuser.dll – Trojan Kazy
%Temp%\Compress0\mail.dll – Trojan Kazy
%Temp%\Compress0\mailkl.dll – Trojan Kazy
%Temp%\Compress0\mailsc.dll – Trojan Kazy
%Temp%\Compress0\msmsgs.exe – Trojan Kazy
%Temp%\Compress0\MSWINSCK.OCX – Trojan Kazy
%Temp%\Compress0\ntfsv.dll – Trojan Kazy
%Temp%\Compress0\oem.dll – Trojan Kazy
%Temp%\Compress0\picture.dll – Trojan Kazy
%Temp%\Compress0\port.dll – Trojan Kazy
%Temp%\Compress0\pwhost.dll – Trojan Kazy
%Temp%\Compress0\RDS.exe – Trojan Kazy
%Temp%\Compress0\refsdm.dll – Trojan Kazy
%Temp%\Compress0\resu.dll – Trojan Kazy
%Temp%\Compress0\rmdesk.dll – Trojan Kazy
%Temp%\Compress0\rvhost.dll – Trojan Kazy
%Temp%\Compress0\rvport.dll – Trojan Kazy
%Temp%\Compress0\rwce.dll – Trojan Kazy
%Temp%\Compress0\rwci.dll – Trojan Kazy
%Temp%\Compress0\rwcs.dll – Trojan Kazy
%Temp%\Compress0\scan.dll – Trojan Kazy
%Temp%\Compress0\sccle.dll – Trojan Kazy
%Temp%\Compress0\scday.dll – Trojan Kazy
%Temp%\Compress0\scen.dll – Trojan Kazy
%Temp%\Compress0\scint.dll – Trojan Kazy
%Temp%\Compress0\scint2.dll – Trojan Kazy
%Temp%\Compress0\scloc.dll – Trojan Kazy
%Temp%\Compress0\seek.dll – Trojan Kazy
%Temp%\Compress0\seekil.dll – Trojan Kazy
%Temp%\Compress0\sid2.dll – Trojan Kazy
%Temp%\Compress0\ssap.dll – Trojan Kazy
%Temp%\Compress0\type.dll – Trojan Kazy
%Temp%\Compress0\unin.dll – Trojan Kazy
%Temp%\Compress0\update.dll – Trojan Kazy
%Temp%\Compress0\user.dll – Trojan Kazy
%Temp%\Compress0\ushost.dll – Trojan Kazy
%Temp%\Compress0\weben.dll – Trojan Kazy
%Temp%\Compress0\winsyst32.exe – Trojan Kazy

Trojan Kazy created autostart registry keys:

HKLM\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32 : C:\MSWINSCK.OCX
HKLM\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32\ThreadingModel: Apartment
HKLM\Software\Classes\CLSID\{248DD897-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32 : C:\MSWINSCK.OCX
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\IntellRaidConfigurer: C:\PROGRA~1\WinApps\cmss.exe

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images