Risk

RiskWare.PasswordTool removal

Malware Removal

The RiskWare.PasswordTool is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What RiskWare.PasswordTool virus can do?

  • Unconventionial language used in binary resources: Hebrew
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Network activity detected but not expressed in API logs

How to determine RiskWare.PasswordTool?



File Info:

crc32: 9803859F
md5: 3684fe7a1cfe5285f3f71d4ba84ffab2
name: RouterPassView.exe
sha1: 243e85a669b79c0ae4297663497796aa7d7116dd
sha256: ae474417854ac1b6190e15cc514728433a26cc815fdc6d12150ef55e92d643ea
sha512: bda9d2d7a6f0abd32a59add453b32e9015acaa8e73116f17a34076cfac834c91ac8049bea1da0bc2e223d2f4cffb31ef138da7d2a9bc74ed610860d82771f3dc
ssdeep: 1536:DlZoRjW4Kbv3zQ7Ds4CLjP1Mi9qR6vh6GBF9uY1L1GhyLg6UfXtEG4FoHvNonA0:DjoRjWzbvwoLBl9vvh6kF3iL6fG4Fkm
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

LegalCopyright: Copyright xa9 2010 - 2019 Nir Sofer
InternalName: RouterPassView
FileVersion: 1.88
CompanyName: NirSoft
ProductName: RouterPassView
ProductVersion: 1.88
FileDescription: Decrypts Router files.
OriginalFilename: RouterPassView.exe
Translation: 0x0409 0x04b0

RiskWare.PasswordTool also known as:

DrWebTool.PassView.1927
MicroWorld-eScanGen:Application.Heur.fmKfkK3vLZbO
CAT-QuickHealTrojan.Fuery
McAfeeHTool-PassView
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
AegisLabRiskware.Win32.Fmkfkk.1!c
SangforMalware
BitDefenderGen:Application.Heur.fmKfkK3vLZbO
K7GWUnwanted-Program ( 004c42fc1 )
K7AntiVirusUnwanted-Program ( 004c42fc1 )
ArcabitApplication.Nirsoft
TrendMicroTROJ_FRS.VSNW0BL19
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/PSWTool.RouterPassView.B potentially unsafe
APEXMalicious
Paloaltogeneric.ml
AlibabaRiskWare:Win32/RouterPassView.fbdfd042
NANO-AntivirusRiskware.Win32.PassView.gbujxj
RisingTrojan.Generic!8.C3 (C64:YzY0OnQhMU1V0eb/)
Ad-AwareGen:Application.Heur.fmKfkK3vLZbO
EmsisoftGen:Application.Heur.fmKfkK3vLZbO (B)
ComodoMalware@#18gteuwgpjwus
ZillyaTool.PSWTool.Win32.117
McAfee-GW-EditionHTool-PassView
FortinetRiskware/Generic_PUA_CE
FireEyeGen:Application.Heur.fmKfkK3vLZbO
SophosGeneric PUA CE (PUA)
CyrenW32/Application.DKJL-2616
WebrootW32.Adware.Gen
MAXmalware (ai score=73)
Antiy-AVLRiskWare[PSWTool]/Win32.RouterPassView
Endgamemalicious (moderate confidence)
MicrosoftPUA:Win32/Presenoker
MalwarebytesRiskWare.PasswordTool
TrendMicro-HouseCallTROJ_FRS.VSNW0BL19
YandexRiskware.PSWTool!
IkarusPUA.Tool-PassView
GDataGen:Application.Heur.fmKfkK3vLZbO
MaxSecureTrojan.Malware.74605647.susgen
AVGFileRepMalware [PUP]
Cybereasonmalicious.a1cfe5
AvastWin32:PUP-gen [PUP]

How to remove RiskWare.PasswordTool?

RiskWare.PasswordTool removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment