Win32/Patched.NJZ removal

The Win32/Patched.NJZ is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Win32/Patched.NJZ virus can do?

Unconventionial language used in binary resources: Arabic (Qatar)
Authenticode signature is invalid

How to determine Win32/Patched.NJZ?


File Info:
name: 836413A2B04A45F31DE7.mlw
path: /opt/CAPEv2/storage/binaries/92ba7e1bfe1a67d3822be299e1ba66f7fc89c60b1c56481c93f374965a008ba5
crc32: B9295F6B
md5: 836413a2b04a45f31de7c5a7674c3199
sha1: b81bfa5e1f3c399b3b3ef2fa0fc3bb0890d3d653
sha256: 92ba7e1bfe1a67d3822be299e1ba66f7fc89c60b1c56481c93f374965a008ba5
sha512: b06dde21f4d4c0fa17bfc241cf37e0ed7296c12f332fd0b1265d44556c2dfa0945e10e4cd6c2fece9c3ed9db1d39c7e34edbc03a5d50771bb57df564032849a8
ssdeep: 49152:HtvbZ4+FOmtFTqFThO2LAR4O8b8ITDnlK:HddpO2Tq5k
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1598519307601822AF5616EB3CB6DBF29B4246D665BE105CFD38D2B2D46345F29F32782
sha3_384: 31c6e312dbc2d70186b31bcddc8ffce1d7333ade4f542e3230894a24b2713df329cbf8999233817c3e3c7cfc995dd2ed
ep_bytes: e8ee010000e973900d00cccccccccccc
timestamp: 2015-03-17 07:29:30

Version Info:
CompanyName: Adobe Systems Incorporated
FileDescription: Adobe Acrobat Reader DC 
FileVersion: 15.7.20033.133275
LegalCopyright: Copyright 1984-2015 Adobe Systems Incorporated and its licensors. All rights reserved.
ProductName: Adobe Acrobat Reader DC
ProductVersion: 15.7.20033.133275
OriginalFilename: AcroRd32.exe
Translation: 0x0409 0x04e4

Win32/Patched.NJZ also known as:

Bkav	W32.Common.AD336376
Lionic	Trojan.Win32.Generic.4!c
MicroWorld-eScan	Trojan.GenericKD.68446467
McAfee	Artemis!836413A2B04A
Malwarebytes	Generic.Malware/Suspicious
VIPRE	Trojan.GenericKD.68446467
Sangfor	Trojan.Win32.Patched.Vl64
K7AntiVirus	Trojan ( 005a3e391 )
Alibaba	Backdoor:Win32/Swrort.ff33d8d3
K7GW	Trojan ( 005a3e391 )
CrowdStrike	win/malicious_confidence_100% (W)
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Patched.NJZ
APEX	Malicious
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	Trojan.GenericKD.68446467
Avast	Win32:Evo-gen [Trj]
Tencent	Win32.Trojan.Generic.Ckjl
Sophos	Mal/Generic-S
Zillya	Trojan.Rozena.Win32.199852
TrendMicro	TROJ_GEN.R023C0DH323
McAfee-GW-Edition	BehavesLike.Win32.Dropper.th
FireEye	Trojan.GenericKD.68446467
Emsisoft	Trojan.GenericKD.68446467 (B)
GData	Trojan.GenericKD.68446467
Google	Detected
Arcabit	Trojan.Generic.D4146903
ZoneAlarm	HEUR:Trojan.Win32.Generic
Microsoft	Trojan:Win32/Swrort.A
BitDefenderTheta	Gen:NN.ZexaF.36348.Tv0@aee7AKoi
ALYac	Trojan.GenericKD.68446467
MAX	malware (ai score=86)
VBA32	BScope.TrojanSpy.Solmyr
Cylance	unsafe
Panda	Trj/Chgt.AD
TrendMicro-HouseCall	TROJ_GEN.R023C0DH323
Rising	Trojan.Generic@AI.97 (RDML:I7ZcUbJHvvefG7CtSEvyfw)
Ikarus	Trojan.Win32.Swrort
MaxSecure	Trojan.Malware.7164915.susgen
Fortinet	W32/Patched.NJZ!tr
AVG	Win32:Evo-gen [Trj]
DeepInstinct	MALICIOUS

How to remove Win32/Patched.NJZ?

Win32/Patched.NJZ removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X