Trojan

Trojan.Generic.KDV.293256 removal tips

Malware Removal

The Trojan.Generic.KDV.293256 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Generic.KDV.293256 virus can do?

  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Compression (or decompression)
  • Creates RWX memory
  • A process attempted to delay the analysis task.
  • A process created a hidden window
  • Drops a binary and executes it
  • The binary likely contains encrypted or compressed data.
  • Uses Windows utilities for basic functionality
  • Executed a process and injected code into it, probably while unpacking
  • Installs itself for autorun at Windows startup
  • Creates a hidden or system file
  • Attempts to modify proxy settings
  • A possible cryptomining command was executed
  • Anomalous binary characteristics
  • Uses suspicious command line tools or Windows utilities

Related domains:

pool.bitclockers.com

How to determine Trojan.Generic.KDV.293256?



File Info:

crc32: E09B797C
md5: a49c5eca28ee9cc5ae59d4b973fd2daa
name: A49C5ECA28EE9CC5AE59D4B973FD2DAA.mlw
sha1: 1f1f092a90197162e36b68090488680eef0111b2
sha256: d0d87017fc9e9158270a7621cc3a4e3f9aab86ceb0bb8adb3b486dce213f02a9
sha512: 9c16abb56ff49ebcda9609d997f4c27606a57be5c757ab8a01f4cdbdb6899d7cf23bb582a9c4ee2689003e4e372b4736a6f9b224c5249a98496e530fe4886c9f
ssdeep: 6144:K0JwEFt4UIDoNSkEYR6G9GNJqMW5FPEvFURpT:K07Ft3I8iYR6G9CJqMkFQyRt
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright xa9 2011
InternalName: DecEngine
FileVersion: 1, 0, 0, 1
CompanyName: StealtCodes
PrivateBuild: 
LegalTrademarks: 
Comments: 
ProductName: StealthCodes DecEngine
SpecialBuild: 
ProductVersion: 1, 0, 0, 1
FileDescription: DecEngine
OriginalFilename: DecEngine.exe
Translation: 0x0409 0x04b0

Trojan.Generic.KDV.293256 also known as:

BkavW32.AIDetect.malware2
K7AntiVirusSpyware ( 00287a351 )
LionicTrojan.Win32.Blocker.j!c
DrWebWin32.HLLW.Autoruner1.85
CynetMalicious (score: 100)
ALYacTrojan.Generic.KDV.293256
CylanceUnsafe
ZillyaTrojan.Blocker.Win32.34469
SangforSuspicious.Win32.Save.a
AlibabaRansom:Win32/Blocker.9429a3ab
K7GWSpyware ( 00287a351 )
Cybereasonmalicious.a28ee9
CyrenW32/Downloader.WOMB-0447
SymantecML.Attribute.HighConfidence
ESET-NOD32Win32/Spy.CoinBit.D
APEXMalicious
AvastWin32:GenMalicious-IVE [Trj]
ClamAVWin.Trojan.Agent-897821
KasperskyTrojan-Ransom.Win32.Blocker.ahcy
BitDefenderTrojan.Generic.KDV.293256
NANO-AntivirusTrojan.Win32.Llac.dzlol
ViRobotWorm.Win32.P2P-Palevo.77824.G
MicroWorld-eScanTrojan.Generic.KDV.293256
TencentWin32.Trojan.Blocker.Lmkq
Ad-AwareTrojan.Generic.KDV.293256
SophosML/PE-A
BitDefenderThetaGen:NN.ZexaE.34142.qq0@aOlbfxdi
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionGenericR-HQJ!A49C5ECA28EE
FireEyeGeneric.mg.a49c5eca28ee9cc5
EmsisoftTrojan.Generic.KDV.293256 (B)
SentinelOneStatic AI – Suspicious PE
JiangminTrojan/Vilsel.wkq
AviraHEUR/AGEN.1131187
eGambitUnsafe.AI_Score_94%
Antiy-AVLTrojan/Generic.ASMalwS.53E4D
KingsoftWin32.Troj.Undef.(kcloud)
MicrosoftVirTool:Win32/CeeInject
GDataTrojan.Generic.KDV.293256
TACHYONTrojan/W32.Vilsel.274432.Q
McAfeeGenericR-HQJ!A49C5ECA28EE
MAXmalware (ai score=99)
VBA32BScope.TrojanRansom.Blocker
PandaTrj/Vilsel.AR
RisingTrojan.Generic@ML.80 (RDML:U2Mwgq7FvN1wXx97l0lx5g)
YandexTrojan.GenAsa!CmobE64DK7c
IkarusBackdoor.Win32.Skill
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Generic.AC.267960!tr
AVGWin32:GenMalicious-IVE [Trj]
Paloaltogeneric.ml

How to remove Trojan.Generic.KDV.293256?

Trojan.Generic.KDV.293256 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment