TrojanDownloader:Win32/Kanav.F

TrojanDownloader:Win32/Kanav.F Description

TrojanDownloader:Win32/Kanav.F is a Trojan that drops and runs other malware infections on the corrupted PC. TrojanDownloader:Win32/Kanav.F also deletes a registry entry, if it is found, that's related to online gaming. When installed, TrojanDownloader:Win32/Kanav.F makes system changes by adding malevolent files. TrojanDownloader:Win32/Kanav.F creates the registry entry so that it can launch its copy automatically whenever Windows is started. TrojanDownloader:Win32/Kanav.F queries certain websites, which may return an encrypted string. When decrypted, the string tells TrojanDownloader:Win32/Kanav.F where to drop and run other files. TrojanDownloader:Win32/Kanav.F deletes gaming settings. TrojanDownloader:Win32/Kanav.F also deletes the registry entry, if the victim has it in the PC. TrojanDownloader:Win32/Kanav.F steals information about the affected computer system, which it transfers to 'exeinfo1.org'.

Do You Suspect Your Computer May Be Infected with TrojanDownloader:Win32/Kanav.F & Other Threats? Scan Your Computer with SpyHunter

SpyHunter is a powerful malware remediation and protection tool designed to help provide users with in-depth system security analysis, detection and removal of a wide range of threats like TrojanDownloader:Win32/Kanav.F as well as a one-on-one tech support service. Download SpyHunter's FREE Malware Remover*
Free Remover allows you, subject to a 48-hour waiting period, one remediation and removal for results found. Read our EULA, Privacy Policy & Special Discount Terms. See more Free SpyHunter Remover details.

Technical Information

File System Details

TrojanDownloader:Win32/Kanav.F creates the following file(s):
# File Name Size MD5
1 %ProgramFiles%\Common Files\Apple\Mobile Device Support\apple.exe
2 4deb18a8d7d0749003626e43269bd68a 206,886 4deb18a8d7d0749003626e43269bd68a
3 74c6c9c32b55775d31e5fd9a10cb1541 205,350 74c6c9c32b55775d31e5fd9a10cb1541
4 51d6b9a0a34a261dddf140d20c668c97 205,388 51d6b9a0a34a261dddf140d20c668c97

Registry Details

TrojanDownloader:Win32/Kanav.F creates the following registry entry or registry entries:
RegistryKey
HKEY_CURRENT_USER\Software\Blizzard Entertainment\Battle.net\Identity
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\[RANDOM CLSID] "stubpath" = "%ProgramFiles%\Common Files\Apple\Mobile Device Support\apple.exe

Site Disclaimer

Enigmasoftware.com is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.

By Sumo3000 in Trojan Downloader