Malware

How to remove “Razy.562954 (B)”?

Malware Removal

The Razy.562954 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Razy.562954 (B) virus can do?

  • Anomalous binary characteristics

How to determine Razy.562954 (B)?



File Info:

crc32: 2876382B
md5: 5c6b3125fcc90e25d12d19789e273289
name: wudfhost.exe
sha1: a984e54847a182f7d82a19158503db6eb18b0573
sha256: 7643e8a6787c882351eb1a1c9d2a553ffe47c9619ce1582ccc3b43dd9dcb5eca
sha512: f53187054e776049770a68fe09fb42798b492a7a50e03b87e024f158110f5d621fa977be640bae3e4e696247a47048827e3b068e3d836327f050a1701a4f5c3b
ssdeep: 98304:2XJztjNz/4ukIIII4IkIIIIIIVi+i+i4JzxJzio6DxKESfsfe5FGqZdCY6gAd+6:2OKOe5FgndgmdU5xe76gJ+
type: PE32+ executable (console) x86-64 (stripped to external PDB), for MS Windows


Version Info:

LegalCopyright: xa9 Microsoft Corporation. All rights reserved.
InternalName: WUDFHost.exe
FileVersion: 10.0.17134.1 (WinBuild.160101.0800)
CompanyName: Microsoft Corporation
ProductName: Microsoftxae Windowsxae Operating System
ProductVersion: 10.0.17134.1
FileDescription: Windows Driver Foundation - User-mode Driver Framework Host Process
OriginalFilename: WUDFHost.exe
Translation: 0x0409 0x04b0

Razy.562954 (B) also known as:

DrWebTool.BtcMine.2110
MicroWorld-eScanGen:Variant.Razy.562954
McAfeeW64/CoinMiner
CylanceUnsafe
BitDefenderGen:Variant.Razy.562954
Invinceaheuristic
CyrenW64/Trojan.NBNK-0047
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of Win64/CoinMiner.PO potentially unwanted
APEXMalicious
AvastWin32:HarHarMiner-A [Trj]
ClamAVWin.Coinminer.Generic-7151253-0
GDataGen:Variant.Razy.562954
KasperskyHEUR:Trojan.Win32.Miner.gen
AlibabaTrojan:Win32/Miners.451a0e03
AegisLabTrojan.Win32.Miner.4!c
Endgamemalicious (high confidence)
F-SecureHeuristic.HEUR/AGEN.1045823
TrendMicroTROJ_GEN.R002C0PCH20
McAfee-GW-EditionBehavesLike.Win64.Dropper.vh
Trapminesuspicious.low.ml.score
FireEyeGeneric.mg.5c6b3125fcc90e25
EmsisoftGen:Variant.Razy.562954 (B)
AviraHEUR/AGEN.1045823
MAXmalware (ai score=84)
ArcabitTrojan.Razy.D8970A
ZoneAlarmHEUR:Trojan.Win32.Miner.gen
MicrosoftTrojan:Win32/CoinMiner.C!cl
AhnLab-V3Trojan/Win64.CoinMiner.R299388
Acronissuspicious
ALYacGen:Variant.Razy.562954
MalwarebytesTrojan.BitCoinMiner
PandaTrj/CI.A
TrendMicro-HouseCallTROJ_GEN.R002C0PCH20
RisingTrojan.Miner!8.EA1 (CLOUD)
FortinetW64/CryptoMiner.L!tr
Ad-AwareGen:Variant.Razy.562954
AVGWin32:HarHarMiner-A [Trj]

How to remove Razy.562954 (B)?

Razy.562954 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment