How to remove “Razy.745195”?

Malware Removal

The Razy.745195 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Razy.745195 virus can do?

  • Executable code extraction
  • Creates RWX memory
  • At least one IP Address, Domain, or File Name was found in a crypto call
  • Reads data out of its own binary image
  • The binary likely contains encrypted or compressed data.
  • Exhibits behavior characteristic of iSpy Keylogger

How to determine Razy.745195?


File Info:

crc32: FF92FAA6
md5: 710be77f616f0c9e016c43599708b91f
name: 710BE77F616F0C9E016C43599708B91F.mlw
sha1: fcd1901c4d231202ed023d915ea2086c2670012a
sha256: 39673efc93e356a2fcddda32494fa643285dcc4823eec30ba5bd494d11f27fad
sha512: 4f15bc4c250169a2b03661c81b25ed49e7bdabaa9da7e24e1554741edc497c902a7ac296ac0138910065743d297b8910dc1279b4aaebeacfbed6ea615f0d7bd4
ssdeep: 24576:eXDezZ++LZ8K8Bv0wBk3tO8ZWPO5kK/ZuFeBppbG:cUZVd8K4tSddZWPO5hBuFeX
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:

Translation: 0x0000 0x04b0
LegalCopyright:
Assembly Version: 0.0.0.0
InternalName: API Exploitation - GUI.exe
FileVersion: 0.0.0.0
ProductVersion: 0.0.0.0
FileDescription:
OriginalFilename: API Exploitation - GUI.exe

Razy.745195 also known as:

K7AntiVirusTrojan ( 00565ee91 )
Elasticmalicious (high confidence)
DrWebTrojan.DownLoader33.22293
CynetMalicious (score: 100)
ALYacGen:Variant.Razy.745195
CylanceUnsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaBackdoor:MSIL/GenKryptik.56eaeb23
K7GWTrojan ( 00565ee91 )
Cybereasonmalicious.f616f0
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/GenKryptik.EJIW
APEXMalicious
AvastWin32:RATX-gen [Trj]
KasperskyHEUR:Backdoor.MSIL.Bladabindi.gen
BitDefenderGen:Variant.Razy.745195
MicroWorld-eScanGen:Variant.Razy.745195
TencentMsil.Backdoor.Bladabindi.Adap
Ad-AwareGen:Variant.Razy.745195
SophosMal/Generic-S
BitDefenderThetaGen:NN.ZemsilF.34670.6m0@a8AFlfd
McAfee-GW-EditionBehavesLike.Win32.Generic.dc
FireEyeGeneric.mg.710be77f616f0c9e
EmsisoftGen:Variant.Razy.745195 (B)
SentinelOneStatic AI – Malicious PE
AviraTR/Dropper.Gen
eGambitUnsafe.AI_Score_100%
MicrosoftBackdoor:Win32/Bladabindi!ml
ArcabitTrojan.Razy.DB5EEB
AegisLabTrojan.MSIL.Bladabindi.m!c
GDataGen:Variant.Razy.745195
AhnLab-V3Trojan/Win32.RL_Generic.C4278899
McAfeeGenericRXNP-TI!710BE77F616F
MAXmalware (ai score=87)
MalwarebytesMachineLearning/Anomalous.100%
PandaTrj/CI.A
TrendMicro-HouseCallTROJ_GEN.R011C0PD421
RisingBackdoor.Bladabindi!8.B1F (CLOUD)
IkarusTrojan.MSIL.Krypt
FortinetMSIL/Kryptik.WFI!tr
AVGWin32:RATX-gen [Trj]
Paloaltogeneric.ml
Qihoo-360Win32/Backdoor.NjRAT.HwMAVr8A

How to remove Razy.745195?

Razy.745195 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment