The MSIL/Kryptik.YKW is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.
Gridinsoft Anti-Malware
Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
What MSIL/Kryptik.YKW virus can do?
- Presents an Authenticode digital signature
- Network activity detected but not expressed in API logs
Related domains:
z.whorecord.xyz |
a.tomx.xyz |
How to determine MSIL/Kryptik.YKW?
File Info:
crc32: 67BFAA7Emd5: 00ede4200f01ac7f9bf31946f27c56f6name: upload_filesha1: 56a1b25d1938e5f4fd70c577828a2e31050caa24sha256: 15cbeb36e88d436a2364f59bc23cf3b3ffc7dda567fb64018e1a010c4dfda975sha512: 4d1aca14321b39b8c2d8aca14c57468ac78672ad169d12afc062d3314ffba7f82a656457478953d0e79f071ec0b9bd1fe980a7e83a1173c2297867446ed55562ssdeep: 6144:Udl2axZwx/RIHjrP1e4pp+FUIj/tm3YujF4NffYY68oyEypDO+YpNNMdPIuigdeT:Udl2Ye4p1ZGWtype: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS WindowsVersion Info:
LegalCopyright: xa9 x54e6x54e6x54e6. All rights reserved.Assembly Version: 8.4.6.6FileVersion: 8.8.5.3CompanyName: x513fx513fx827eLegalTrademarks: x5a1cx9a6cx9a6cComments: x827ex827ex827e x827ex9a6cx9a6cProductName: x4e1dx827ex6bd4 x8d3cx8d3cx9a6cProductVersion: 8.4.6.6FileDescription: x827ex827ex5409 x897fx897fx897fOriginalFilename: x4e1dx827ex6bd4 x8d3cx8d3cx9a6c.exeTranslation: 0x0409 0x0514
MSIL/Kryptik.YKW also known as:
| Elastic | malicious (high confidence) |
| MicroWorld-eScan | Trojan.GenericKD.44241861 |
| FireEye | Generic.mg.00ede4200f01ac7f |
| McAfee | PWS-FCSS!00EDE4200F01 |
| Cylance | Unsafe |
| VIPRE | Trojan.Win32.Generic!BT |
| K7AntiVirus | Trojan ( 0056fa1a1 ) |
| BitDefender | Trojan.GenericKD.44241861 |
| K7GW | Trojan ( 0056fa1a1 ) |
| CrowdStrike | win/malicious_confidence_70% (W) |
| TrendMicro | TROJ_GEN.R03FC0DJU20 |
| BitDefenderTheta | Gen:NN.ZemsilF.34590.xm1@aGbTnbei |
| Cyren | W32/MSIL_Kryptik.BXZ.gen!Eldorado |
| Symantec | ML.Attribute.HighConfidence |
| APEX | Malicious |
| Avast | Win32:DangerousSig [Trj] |
| Kaspersky | HEUR:Backdoor.MSIL.Crysan.gen |
| Alibaba | Backdoor:MSIL/Stealer.10a17920 |
| Ad-Aware | Trojan.GenericKD.44241861 |
| Sophos | Mal/Generic-S |
| F-Secure | Trojan.TR/Kryptik.xelrh |
| Invincea | Mal/Generic-S |
| McAfee-GW-Edition | Artemis!Trojan |
| Emsisoft | Trojan.GenericKD.44241861 (B) |
| Ikarus | Trojan-Downloader.MSIL.Agent |
| Avira | TR/Kryptik.xelrh |
| Microsoft | Trojan:MSIL/Stealer.RV!MTB |
| Arcabit | Trojan.Generic.D2A313C5 |
| AhnLab-V3 | Trojan/Win32.MSILKrypt.C4206356 |
| ZoneAlarm | HEUR:Backdoor.MSIL.Crysan.gen |
| GData | Trojan.GenericKD.44241861 |
| Cynet | Malicious (score: 85) |
| ESET-NOD32 | a variant of MSIL/Kryptik.YKW |
| ALYac | Trojan.GenericKD.44241861 |
| MAX | malware (ai score=85) |
| Malwarebytes | Trojan.MalPack.GZ.Generic |
| Panda | Trj/GdSda.A |
| TrendMicro-HouseCall | TROJ_GEN.R03FC0DJU20 |
| SentinelOne | DFI – Malicious PE |
| Fortinet | MSIL/GenKryptik.EUVI!tr |
| AVG | Win32:DangerousSig [Trj] |
| Cybereason | malicious.d1938e |
| Paloalto | generic.ml |
How to remove MSIL/Kryptik.YKW?
- Download and install GridinSoft Anti-Malware.
- Open GridinSoft Anti-Malware and perform a “Standard scan“.
- “Move to quarantine” all items.
- Open “Tools” tab – Press “Reset Browser Settings“.
- Select proper browser and options – Click “Reset”.
- Restart your computer.
Leave a Comment