Razy.7413 removal instruction

The Razy.7413 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Razy.7413 virus can do?

Executable code extraction
Injection (inter-process)
Injection (Process Hollowing)
Creates RWX memory
A process attempted to delay the analysis task.
Uses Windows utilities for basic functionality
Executed a process and injected code into it, probably while unpacking
Sniffs keystrokes
A process was set to shut the system down when terminated
Installs itself for autorun at Windows startup
Likely virus infection of existing system binary
Creates a copy of itself

Related domains:

z.whorecord.xyz

a.tomx.xyz

mr-ibrahacker.zapto.org

How to determine Razy.7413?


File Info:
crc32: 31095513
md5: 03bb2f3b2369ae6de85d5dfa96709aa4
name: 03BB2F3B2369AE6DE85D5DFA96709AA4.mlw
sha1: 79714bfa147fed74c9ffd89e302db606f041e6cf
sha256: ddf61c5246c1a22f91dbc3dea8f9d67fa8dd68d6f72bff390b4bc834b8b5a144
sha512: 2e5a429cff8b6ce184c1b2b60566763e56605bb41d0c1adaff4f4b062c0a552b03e3d8193a565a03c61430f0e5cb6c5d7de048849429ce2a249a2df2a25e0e59
ssdeep: 6144:I5iUSYkpAT8j7diWFskJnAViagDuCwjqNbgu:IRS5pAT8jhs2nByCwjgb
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:
Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9 2010
Assembly Version: 7.10.14.64
InternalName: 2.exe
FileVersion: 11.14.18.72
CompanyName: aq_i_r_L_h_g_
LegalTrademarks: aw_z_F_v_2_I_Z_r_
ProductName: a1_5_9_y_K_i__O_
ProductVersion: 11.14.18.72
FileDescription: au_6_7_5_Q_
OriginalFilename: 2.exe

Razy.7413 also known as:

Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Razy.7413
FireEye	Generic.mg.03bb2f3b2369ae6d
ALYac	Gen:Variant.Razy.7413
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
Sangfor	Malware
K7AntiVirus	Trojan ( 700000121 )
BitDefender	Gen:Variant.Razy.7413
K7GW	Trojan ( 700000121 )
Cybereason	malicious.b2369a
Cyren	W32/FrauDrop.A.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
Paloalto	generic.ml
ClamAV	Win.Dropper.Zapchast-7778428-0
Kaspersky	HEUR:Backdoor.MSIL.Generic
NANO-Antivirus	Trojan.Win32.Drop.ctqjyu
Ad-Aware	Gen:Variant.Razy.7413
Emsisoft	Gen:Variant.Razy.7413 (B)
Comodo	TrojWare.MSIL.TrojanDownloader.Small.DS@6ldchl
F-Secure	Heuristic.HEUR/AGEN.1127013
DrWeb	Win32.HLLW.Autoruner2.8907
McAfee-GW-Edition	BehavesLike.Win32.Generic.dh
Sophos	Mal/Generic-S
Ikarus	Trojan-Dropper.Win32.FrauDrop
Webroot	W32.Malware.Gen
Avira	HEUR/AGEN.1127013
eGambit	Unsafe.AI_Score_99%
Antiy-AVL	Trojan[Dropper]/Win32.FrauDrop
Kingsoft	Win32.Troj.FrauDrop.(kcloud)
Microsoft	Backdoor:MSIL/Bladabindi
Arcabit	Trojan.Razy.D1CF5
ZoneAlarm	HEUR:Backdoor.MSIL.Generic
GData	Gen:Variant.Razy.7413
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win32.Bladabindi.R100197
McAfee	Generic Dropper.agu
MAX	malware (ai score=84)
Malwarebytes	Trojan.Agent
Panda	Generic Malware
ESET-NOD32	a variant of MSIL/Injector.CDG
Rising	Trojan.Generic!8.C3 (CLOUD)
Yandex	Trojan.DR.FrauDrop!KSqO2+903rg
SentinelOne	Static AI – Malicious PE
Fortinet	MSIL/Agent.D279!tr
BitDefenderTheta	Gen:NN.ZemsilF.34804.nm0@aWogEce
AVG	MSIL:GenMalicious-E [Trj]
Avast	MSIL:GenMalicious-E [Trj]
CrowdStrike	win/malicious_confidence_100% (D)
Qihoo-360	Win32/Trojan.85d

How to remove Razy.7413?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Razy.7413 removal instruction