home

raiz0-guard.dll

The library raiz0-guard.dll has been detected as malware by 9 anti-virus scanners.
MD5:
277ca444961e2bb5a0268d835f1011f4

SHA-1:
6c0688071cd62bebdef7b01acd7917953dc630c5

SHA-256:
38b03274a6712c46f20b31d12ebef5120ada88bea23a10876f02a18ab871b698

Scanner detections:
9 / 68

Status:
Malware

Analysis date:
5/12/2025 6:26:11 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Symmi.3088.17
7.11.97.158

Comodo Security
UnclassifiedMalware
16801

IKARUS anti.virus
Win32.SuspectCrc
t3scan.2.0.127

K7 AntiVirus
Riskware
13.170.9337

McAfee
Artemis!277CA444961E
5600.7206

Norman
Suspicious_Gen5.LUJH
11.20140227

Panda Antivirus
Suspicious file
14.02.27.03

Trend Micro House Call
TROJ_GEN.R47H1LO
7.2.58

VIPRE Antivirus
Trojan.Win32.Generic
20736

File size:
71 KB (72,704 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\counter-strike_1.6\cstrike\raiz0-guard.dll

File PE Metadata
Compilation timestamp:
6/20/1992 1:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
1536:/gq5Qq4WfQ3iF5kL7Y0+9IRE53X6z4tRPduPlzA0E+r9OQ6ACKlx:hx4WfvF6956qz4+zAarB6APlx

Entry address:
0xF150

Entry point:
55, 8B, EC, 83, C4, C0, 33, C0, 89, 45, C0, B8, 98, F0, 40, 00, E8, F7, 5A, FF, FF, 33, C0, 55, 68, 2E, F2, 40, 00, 64, FF, 30, 64, 89, 20, 6A, 00, E8, BE, 5C, FF, FF, 33, D2, 52, 50, 8D, 55, C0, B8, 08, 00, 00, 00, E8, CD, 6E, FF, FF, 8B, 4D, C0, A1, 08, 07, 41, 00, BA, 44, F2, 40, 00, E8, F7, 48, FF, FF, A1, 08, 07, 41, 00, 8B, 00, E8, 8F, 4A, FF, FF, 50, 6A, 00, 68, 01, 00, 1F, 00, E8, B2, 5C, FF, FF, 8B, 15, 00, 07, 41, 00, 89, 02, A1, 00, 07, 41, 00, 83, 38, 00, 74, 12, A1, 00, 07, 41, 00, 8B, 00, 50...
 
[+]

Entropy:
6.4430

Developed / compiled with:
Microsoft Visual C++

Code size:
57 KB (58,368 bytes)

Remove raiz0-guard.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.