PSW.ILSpy

PSW.ILSpy also known as Gen:Variant.Barys.7488 (B), MSIL:Bladabindi-A [Trj], W32/MSIL_Troj.AP.gen!Eldorado. Malware Analysis of PSW.ILSpy – YAHOO MESENGER.EXE Created files: %LOCAL APPDATA%\MICROSOFT\WINDOWS\HISTORY\HISTORY.IE5\MSHIST012016061720160618\CONTAINER.DAT %LOCAL APPDATA%\MICROSOFT\WINDOWS\WER\REPORTARCHIVE\KERNEL_0_0_CAB_095CD0FC\REPORT.WER %TEMP%\YAHOO MESENGER.EXE %TEMP%\YAHOO MESENGER.EXE.TMP %STARTUP%-\09FE2B66FA61CF510CD157F5FAB34C41.EXE Autostart registry keys: HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\09FE2B66FA61CF510CD157F5FAB34C41: “”%TEMP%\YAHOO MESENGER.EXE” ..” HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\09FE2B66FA61CF510CD157F5FAB34C41: “”%TEMP%\YAHOO MESENGER.EXE” ..” Detected by UnHackMe: YAHOO MESENGER.EXE DEFAULT LOCATION: %TEMP%\YAHOO MESENGER.EXE Dropper hash(md5): b9b0028040b8342f5521a66eb9eabb28 Share This: UnHackMe removes malware…

Continue reading

PUP.Optional.Elex

PUP.Optional.Elex also known as AdPlugin.OGN. Malware Analysis of PUP.Optional.Elex – FEDARYQEULESERVERSRV.EXE Created files: %Common Appdata%\SecurityUtility\install.log %Common Appdata%\SecurityUtility\NSISHelper.dll %Program Files%\Fedaryqeule\FedaryqeuleServerSrv.exe %Program Files%\Fedaryqeule\FedaryqeuleServerTsk.exe %Program Files%\Fedaryqeule\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678} Detected by UnHackMe: FEDARYQEULESERVERSRV.EXE Default location: %PROGRAM FILES%\FEDARYQEULE\FEDARYQEULESERVERSRV.EXE Dropper hash(md5): 281757c174a9b4f08c50205677aec622 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which…

Continue reading

PUP.Optional.YesSearches

PUP.Optional.YesSearches also known as HEUR/QVM10.1.Malware.Gen. Malware Analysis of PUP.Optional.YesSearches – SHORTCCCBOOST.EXE Created files: %Program Files%\SpeedSearchesbnd\CCeuter.exe %Program Files%\SpeedSearchesbnd\FFeuter.exe %Program Files%\SpeedSearchesbnd\ShortCccBoost.exe %Program Files%\SpeedSearchesbnd\Uninst.exe %Program Files%\SpeedSearchesbnd\WinSvces.exe Autostart registry keys: HKLM\System\CurrentControlSet\Services\BugreportW\ImagePath: “”%Program Files%\SpeedSearchesbnd\Bugreportauclt.exe” {154DFF63-3402-4815-941A-AAD63AE8B428}” HKLM\System\CurrentControlSet\Services\BugreportW\DisplayName: “BugreportW” HKLM\System\CurrentControlSet\Services\WinSvces\ImagePath: “”%Program Files%\WinSvces\WinSvces\WinSvces.exe” {79740E79-A383-47A7-B513-3DF6563D007F} {A16B1AF7-982D-40C3-B5C1-633E1A6A6678}” HKLM\System\CurrentControlSet\Services\WinSvces\DisplayName: “WinSvces” Detected by UnHackMe: SHORTCCCBOOST.EXE Default location: %PROGRAM FILES%\SPEEDSEARCHESBND\SHORTCCCBOOST.EXE Dropper hash(md5): bfe54774fb30798673232714d694cf73 Share This: UnHackMe removes malware…

Continue reading

Multiplug-FUX

Multiplug-FUX also known as Gen:Variant.Mikey.11576, Trojan.Exception.gen.101. Malware Analysis of Multiplug-FUX – CDRCGL3NFYAVFU.EXE Created files: %Program Files%\bestadblocker\cDRcGl3nfyaVfu.dat %Program Files%\bestadblocker\cDRcGl3nfyaVfu.dll %Program Files%\bestadblocker\cDRcGl3nfyaVfu.exe %Program Files%\bestadblocker\cDRcGl3nfyaVfu.tlb %Program Files%\PriceMinus\hKhiUjgidwnN3x.dat Autostart registry keys: HKLM\Software\Classes\CLSID\{B05F2877-D6B2-46E5-80AF-75A657AE0663}\InprocServer32\: “%Program Files%\PriceMinus\hKhiUjgidwnN3x.dll” HKLM\Software\Classes\CLSID\{EC53FB14-0DF2-41D8-9710-6F7B9BA3F40B}\InprocServer32\: “%Program Files%\bestadblocker\cDRcGl3nfyaVfu.dll” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{06B99631-BFA2-3B7A-F58B-D067C2BA59B7}\DisplayName: “PriceMinus” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{06B99631-BFA2-3B7A-F58B-D067C2BA59B7}\UninstallString: “”%Program Files%\PriceMinus\hKhiUjgidwnN3x.exe” /s /n /i:”ExecuteCommands;UninstallCommands” “”” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{f9c5f880}\UninstallString: “”%SysDir%\RUNDLL32.EXE” “C:\PROGRA~1\RELAYD~1\RELAYD~1.DLL”,_uninstall /un” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{f9c5f880}\DisplayName: “LibraryFunc” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}\DisplayName: “bestadblocker” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}\UninstallString: “”%Program Files%\bestadblocker\cDRcGl3nfyaVfu.exe” /s /n…

Continue reading

Multiplug-FYP

Multiplug-FYP also known as Gen:Variant.Application.Graftor.184894, HW32.Packed.9D00, Gen:Variant.Application.Graftor.184894. Malware Analysis of Multiplug-FYP – RELAYDOUBLE.DLL Created files: %Program Files%\PRiceMinuus\PRiceMinuus.dat %Program Files%\PRiceMinuus\PRiceMinuus.exe %Program Files%\RelayDouble\RelayDouble.dll %Program Files%\Turntable fm Extended\Turntable fm Extended.dat %Program Files%\Turntable fm Extended\Turntable fm Extended.exe Autostart registry keys: HKLM\Software\Classes\CLSID\{B05F2877-D6B2-46E5-80AF-75A657AE0663}\InprocServer32\: “%Program Files%\PriceMinus\hKhiUjgidwnN3x.dll” HKLM\Software\Classes\CLSID\{EC53FB14-0DF2-41D8-9710-6F7B9BA3F40B}\InprocServer32\: “%Program Files%\bestadblocker\cDRcGl3nfyaVfu.dll” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{06B99631-BFA2-3B7A-F58B-D067C2BA59B7}\DisplayName: “PriceMinus” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{06B99631-BFA2-3B7A-F58B-D067C2BA59B7}\UninstallString: “”%Program Files%\PriceMinus\hKhiUjgidwnN3x.exe” /s /n /i:”ExecuteCommands;UninstallCommands” “”” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{f9c5f880}\UninstallString: “”%SysDir%\RUNDLL32.EXE” “C:\PROGRA~1\RELAYD~1\RELAYD~1.DLL”,_uninstall /un”…

Continue reading

PUP.Optional.Bershnet

PUP.Optional.Bershnet also known as Trojan.Win32.DownLoader12.dowcfo, W32/Dlhelper.A.gen!Eldorado, PE:Malware.Agent!6.1CD7. Malware Analysis of PUP.Optional.Bershnet – 270315062329224.EXE Created files: %Temp%\2B33F78E-9917-4F9A-BFD5-CA44AF71EAD6.exe %Temp%\42345D30-A587-44A2-AF3F-A6B0ED692B5E.exe %Temp%\Downloader\270315062329224.exe %Temp%\mailruupdater_tmp.exe %Temp%\ZaxarSetup.4.001.33.exe Autostart registry keys: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\ZaxarLoader: “”%Program Files%\Zaxar\ZaxarLoader.exe” /verysilent” HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Timestasks: “”C:\ProgramData\TimeTasks\TimeTasksSetup.exe” /adv= /S” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SmartSearch\DisplayName: “SmartSearch” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SmartSearch\UninstallString: “”%Appdata%\SmartSearch\SmartSearch.exe” /uninstall” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ZaxarGameBrowser\DisplayName: “Zaxar Games Browser” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ZaxarGameBrowser\UninstallString: “”%Program Files%\Zaxar\uninstall.exe”” Detected by UnHackMe: 270315062329224.EXE Default location: %TEMP%\DOWNLOADER\270315062329224.EXE Dropper hash(md5): e1428c75d6237982858544cafe1674a2 Share This:…

Continue reading

FraudTool.YAC

FraudTool.YAC also known as TR/Elex.2336080.8, Riskware/Elex, Artemis!BC024F533F63. Malware Analysis of FraudTool.YAC – ISAFEDOWNLOADER.EXE Created files: %Appdata%\eCyber\log\isafedownloader.log %Temp%\nsl2.tmp\BasicDlg.dll %Temp%\nsl2.tmp\System.dll %Temp%\~3\data %Temp%\~3\iSafeDownloader.exe Detected by UnHackMe: ISAFEDOWNLOADER.EXE Default location: %TEMP%\~3\ISAFEDOWNLOADER.EXE Dropper hash(md5): 5c3423fc24bc697b5fecbbb790d972d3 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not…

Continue reading

HEUR/QVM41.1.Malware.Gen

HEUR/QVM41.1.Malware.Gen also known as OptimizerPro, Adware ( 004a9c571 ), Artemis!46ACA093F842. Malware Analysis of HEUR/QVM41.1.Malware.Gen – OPPROSETUP.EXE Created files: %Temp%\BB0a5a991d7\temp\EzDownloader_setup.exe %Temp%\BB0a5a991d7\temp\hpds_setup.exe %Temp%\BB0a5a991d7\temp\OpProSetup.exe %Temp%\BB0a5a991d7\temp\putfu.exe %Temp%\BB0a5a991d7\temp\setupbc.exe Autostart registry keys: HKLM\Software\Classes\CLSID\{6960dfdc-e345-4b2d-967e-f15d16374e72}\InprocServer32\: “%Program Files%\YoutubeAdBlocke\Ni7A8JtTUau6US.dll” HKLM\Software\Classes\CLSID\{9861045a-10e8-4fea-9f2c-452d5ea98a47}\InprocServer32\: “%Program Files%\GoSave\mW9YTjlxUc3WVT.dll” HKLM\Software\Classes\CLSID\{EBFCF40E-A87B-463F-A782-55BDD4160B5E}\InprocServer32\: “%Program Files%\LiveSupport\LiveSupport_deskband_x32.dll” HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}\DisplayName: “WebSearch” HKLM\Software\Microsoft\Windows\CurrentVersion\Group Policy\History\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\0\DisplayName: “Local Group Policy” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\LiveSupport_is1\DisplayName: “LiveSupport” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\LiveSupport_is1\UninstallString: “”%Program Files%\LiveSupport\unins000.exe”” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1\DisplayName: “Optimizer Pro v3.2” HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1\UninstallString:…

Continue reading

W32/Farfli.AAF!tr

W32/Farfli.AAF!tr also known as Trojan-Dropper.Win32.Agent, Backdoor.Agent.245280b. Malware Analysis of W32/Farfli.AAF!tr – PNG.DLL Created files: %Program Files%\AppPatch\png.dll %Program Files%\Microsoft Ofhckl\Ofizymk.exe Autostart registry keys: HKLM\System\CurrentControlSet\services\Wsilxp dutspssx\ImagePath: “%Program Files%\Microsoft Ofhckl\Ofizymk.exe” HKLM\System\CurrentControlSet\services\Wsilxp dutspssx\DisplayName: “Zptogs ifdpsfwufwzigqshkq” Detected by UnHackMe: PNG.DLL Default location: %PROGRAM FILES%\APPPATCH\PNG.DLL Dropper hash(md5): d21599f563faad7757bf7d59d7b484a2 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with…

Continue reading

Trojan.Win32.ZPACK.duxvsw

Trojan.Win32.ZPACK.duxvsw also known as PUP/Win32.MultiPlug.R161432, not-a-virus:HEUR:AdWare.Win32.Generic, Trojan.Adware.Razy.DF8EB. Malware Analysis of Trojan.Win32.ZPACK.duxvsw – E39838EFA04E36BD4765F6457C8AF5EC.EXE Created files: %COMMON APPDATA%\{AE9A8350-D663-BC6D-AE9A-A8350D660D43}\E19F770B725A8540 %COMMON APPDATA%\{AE9A8350-D663-BC6D-AE9A-A8350D660D43}\E39838EFA04E36BD4765F6457C8AF5EC.DAT %COMMON APPDATA%\{AE9A8350-D663-BC6D-AE9A-A8350D660D43}\E39838EFA04E36BD4765F6457C8AF5EC.EXE %SYSDIR%\TASKS\MATCHUP %WINDIR%\TASKS\MATCHUP.JOB Detected by UnHackMe: E39838EFA04E36BD4765F6457C8AF5EC.EXE DEFAULT LOCATION: %COMMON APPDATA%\{AE9A8350-D663-BC6D-AE9A-A8350D660D43}\E39838EFA04E36BD4765F6457C8AF5EC.EXE Dropper hash(md5): e39838efa04e36bd4765f6457c8af5ec Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which…

Continue reading

Trojan.Heur.zmNfrLjiO5iiD

Trojan.Heur.zmNfrLjiO5iiD also known as Win32.Trojan.Vbkrypt.Pfsy, Gen:Trojan.Heur.zmNfrLjiO5iiD, Worm.Win32.AutoIt. Malware Analysis of Trojan.Heur.zmNfrLjiO5iiD – JAVASCRIPT.EXE Created files: %LOCAL APPDATA%\MICROSOFT\WINDOWS\HISTORY\HISTORY.IE5\MSHIST012016092520160926\CONTAINER.DAT %WINDIR%\SYS1.TXT %COMMON APPDATA%\MICROSOFT\WINDOWS\START MENU\PROGRAMS\STARTUP\JAVASCRIPT.EXE %LOCAL APPDATA%\MICROSOFT\INTERNET EXPLORER\RECOVERY\HIGH\ACTIVE\RECOVERYSTORE.{E9BD2C39-8338-11E6-902F-000C2982064B}.DAT %LOCAL APPDATA%\MICROSOFT\INTERNET EXPLORER\RECOVERY\HIGH\ACTIVE\{E9BD2C3B-8338-11E6-902F-000C2982064B}.DAT Detected by UnHackMe: JAVASCRIPT.EXE DEFAULT LOCATION: %COMMON APPDATA%\MICROSOFT\WINDOWS\START MENU\PROGRAMS\STARTUP\JAVASCRIPT.EXE Dropper hash(md5): bb380ae644513e41dcda9d30b2fe04df Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software.…

Continue reading

TR/Strictor.sqlk

TR/Strictor.sqlk also known as Gen:Variant.Strictor.105176 (B), Win32:Malware-gen. Malware Analysis of TR/Strictor.sqlk – TSIE.EXE Created files: %WINDIR%\SPLWO32.EXE %WINDIR%\TS.DAT %WINDIR%\TSIE.EXE %SYSTEMDRIVE%\EYOOADCOFIG.INI Detected by UnHackMe: TSIE.EXE Default location: %WinDir%\TSIE.EXE Dropper hash(md5): a91454719cc396883651b566c105cf4b Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain…

Continue reading

Win32.Trojan.Falsesign.Lqet

Win32.Trojan.Falsesign.Lqet also known as Gen:Variant.Adware.Mplug.45, Gen:Variant.Adware.Mplug.45 (B), MultiPlug-FYT. Malware Analysis of Win32.Trojan.Falsesign.Lqet – ACB3C07E16512E787301508AF21CE05A.EXE Created files: %COMMON APPDATA%\{D1DA171A-427F-5C8F-D1DA-A171A4275C69}\ACB3C07E16512E787301508AF21CE05A.DAT %COMMON APPDATA%\{D1DA171A-427F-5C8F-D1DA-A171A4275C69}\ACB3C07E16512E787301508AF21CE05A.EXE %SYSDIR%\TASKS\BIDAILY SYNCHRONIZE TASK[PR] %WINDIR%\TASKS\BIDAILY SYNCHRONIZE TASK[PR].JOB Detected by UnHackMe: ACB3C07E16512E787301508AF21CE05A.EXE DEFAULT LOCATION: %COMMON APPDATA%\{D1DA171A-427F-5C8F-D1DA-A171A4275C69}\ACB3C07E16512E787301508AF21CE05A.EXE Dropper hash(md5): acb3c07e16512e787301508af21ce05a Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is…

Continue reading

Gen:Trojan.Heur.zmNfrLjiO5iiD (B)

Gen:Trojan.Heur.zmNfrLjiO5iiD (B) also known as W32.HfsAtITA.78F9, Win32/Trojan.be8, Mal/Generic-S. Malware Analysis of Gen:Trojan.Heur.zmNfrLjiO5iiD (B) – JAVASCRIPT.EXE Created files: %LOCAL APPDATA%\MICROSOFT\WINDOWS\HISTORY\HISTORY.IE5\MSHIST012016092520160926\CONTAINER.DAT %WINDIR%\SYS1.TXT %COMMON APPDATA%\MICROSOFT\WINDOWS\START MENU\PROGRAMS\STARTUP\JAVASCRIPT.EXE %LOCAL APPDATA%\MICROSOFT\INTERNET EXPLORER\RECOVERY\HIGH\ACTIVE\RECOVERYSTORE.{E9BD2C39-8338-11E6-902F-000C2982064B}.DAT %LOCAL APPDATA%\MICROSOFT\INTERNET EXPLORER\RECOVERY\HIGH\ACTIVE\{E9BD2C3B-8338-11E6-902F-000C2982064B}.DAT Detected by UnHackMe: JAVASCRIPT.EXE DEFAULT LOCATION: %COMMON APPDATA%\MICROSOFT\WINDOWS\START MENU\PROGRAMS\STARTUP\JAVASCRIPT.EXE Dropper hash(md5): bb380ae644513e41dcda9d30b2fe04df Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most…

Continue reading

Generic.Win32.fbe4bab53f!MD

Generic.Win32.fbe4bab53f!MD also known as Trojan-Downloader.Win32.Small!cobra (v), Trojan/JboxGeneric.im, not-a-virus:Monitor.Win32.Perflogger. Malware Analysis of Generic.Win32.fbe4bab53f!MD – SO2GAMESR.EXE Created files: %SYSDIR%\SO2GAMES.EXE %SYSDIR%\SO2GAMESHK.DLL %SYSDIR%\SO2GAMESR.EXE %SYSDIR%\SO2GAMESWB.DLL %SYSDIR%\WEB.DAT Autostart registry keys: HKLM\SOFTWARE\CLASSES\CLSID\{1E1B2879-88FF-11D3-8D96-D7ACAC95951A}\INPROCSERVER32\: “%SYSDIR%\SO2GAMESWB.DLL” Detected by UnHackMe: SO2GAMESR.EXE Default location: %SYSDIR%\SO2GAMESR.EXE Dropper hash(md5): c4dc20b0f9a0abbec5535469deeba1d6 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100%…

Continue reading

Win32.Trojan-downloader.Agent.Wnlt

Win32.Trojan-downloader.Agent.Wnlt also known as Trojan.Win32.Generic!BT, Gen:Variant.Symmi.61577, TR/Symmi.njpm. Malware Analysis of Win32.Trojan-downloader.Agent.Wnlt – OFIZYMK.EXE Created files: %Program Files%\AppPatch\png.dll %Program Files%\Microsoft Ofhckl\Ofizymk.exe Autostart registry keys: HKLM\System\CurrentControlSet\services\Wsilxp dutspssx\ImagePath: “%Program Files%\Microsoft Ofhckl\Ofizymk.exe” HKLM\System\CurrentControlSet\services\Wsilxp dutspssx\DisplayName: “Zptogs ifdpsfwufwzigqshkq” Detected by UnHackMe: OFIZYMK.EXE Default location: %PROGRAM FILES%\MICROSOFT OFHCKL\OFIZYMK.EXE Dropper hash(md5): d21599f563faad7757bf7d59d7b484a2 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is…

Continue reading

Win32.Adware.MPlug.b

Win32.Adware.MPlug.b also known as TROJ_GEN.R08NC0FHO16, Riskware/MultiPlug, PUA.Multiplug. Malware Analysis of Win32.Adware.MPlug.b – ACB3C07E16512E787301508AF21CE05A.EXE Created files: %COMMON APPDATA%\{D1DA171A-427F-5C8F-D1DA-A171A4275C69}\ACB3C07E16512E787301508AF21CE05A.DAT %COMMON APPDATA%\{D1DA171A-427F-5C8F-D1DA-A171A4275C69}\ACB3C07E16512E787301508AF21CE05A.EXE %SYSDIR%\TASKS\BIDAILY SYNCHRONIZE TASK[PR] %WINDIR%\TASKS\BIDAILY SYNCHRONIZE TASK[PR].JOB Detected by UnHackMe: ACB3C07E16512E787301508AF21CE05A.EXE DEFAULT LOCATION: %COMMON APPDATA%\{D1DA171A-427F-5C8F-D1DA-A171A4275C69}\ACB3C07E16512E787301508AF21CE05A.EXE Dropper hash(md5): acb3c07e16512e787301508af21ce05a Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100%…

Continue reading

Generic.Perfloger.DF90E1A8 (B)

Generic.Perfloger.DF90E1A8 (B) also known as Perfect Keylogger (PUA), Generic.Perfloger.DF90E1A8, W32/Perflogger.CB!tr. Malware Analysis of Generic.Perfloger.DF90E1A8 (B) – SO2GAMESR.EXE Created files: %SYSDIR%\SO2GAMES.EXE %SYSDIR%\SO2GAMESHK.DLL %SYSDIR%\SO2GAMESR.EXE %SYSDIR%\SO2GAMESWB.DLL %SYSDIR%\WEB.DAT Autostart registry keys: HKLM\SOFTWARE\CLASSES\CLSID\{1E1B2879-88FF-11D3-8D96-D7ACAC95951A}\INPROCSERVER32\: “%SYSDIR%\SO2GAMESWB.DLL” Detected by UnHackMe: SO2GAMESR.EXE Default location: %SYSDIR%\SO2GAMESR.EXE Dropper hash(md5): c4dc20b0f9a0abbec5535469deeba1d6 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software.…

Continue reading

Trojan[Monitor:not-a-virus]/Win32.Perflogger

Trojan[Monitor:not-a-virus]/Win32.Perflogger also known as W32/Monitor.AZG, Keylog-Perfect.gen, Spyware.Perfect. Malware Analysis of Trojan[Monitor:not-a-virus]/Win32.Perflogger – SO2GAMES.EXE Created files: %SYSDIR%\MC.DAT %SYSDIR%\PK.BIN %SYSDIR%\SO2GAMES.EXE %SYSDIR%\SO2GAMESHK.DLL %SYSDIR%\SO2GAMESR.EXE Autostart registry keys: HKLM\SOFTWARE\CLASSES\CLSID\{1E1B2879-88FF-11D3-8D96-D7ACAC95951A}\INPROCSERVER32\: “%SYSDIR%\SO2GAMESWB.DLL” Detected by UnHackMe: SO2GAMES.EXE Default location: %SYSDIR%\SO2GAMES.EXE Dropper hash(md5): c4dc20b0f9a0abbec5535469deeba1d6 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN,…

Continue reading

BehavesLike.Win32.Downloader.zm

BehavesLike.Win32.Downloader.zm also known as W32.PerfKeylogCB.Trojan, Win32:Perflogger-CG [PUP], Downloader.Small.60.BB. Malware Analysis of BehavesLike.Win32.Downloader.zm – SO2GAMESR.EXE Created files: %SYSDIR%\SO2GAMES.EXE %SYSDIR%\SO2GAMESHK.DLL %SYSDIR%\SO2GAMESR.EXE %SYSDIR%\SO2GAMESWB.DLL %SYSDIR%\WEB.DAT Autostart registry keys: HKLM\SOFTWARE\CLASSES\CLSID\{1E1B2879-88FF-11D3-8D96-D7ACAC95951A}\INPROCSERVER32\: “%SYSDIR%\SO2GAMESWB.DLL” Detected by UnHackMe: SO2GAMESR.EXE Default location: %SYSDIR%\SO2GAMESR.EXE Dropper hash(md5): c4dc20b0f9a0abbec5535469deeba1d6 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100%…

Continue reading

Trojan.Win32.WebPick.duouoq

Trojan.Win32.WebPick.duouoq also known as Gen:Variant.Adware.MultiPlug.18, MultiPlug, Gen:Variant.Adware.MultiPlug.18. Malware Analysis of Trojan.Win32.WebPick.duouoq – D0F3301E7C849D72663EA34C9F5F3F63.EXE Created files: %COMMON APPDATA%\{DB9E8734-043A-0889-DB9E-E87340431CD0}\2A743295E55D96CB %COMMON APPDATA%\{DB9E8734-043A-0889-DB9E-E87340431CD0}\D0F3301E7C849D72663EA34C9F5F3F63.DAT %COMMON APPDATA%\{DB9E8734-043A-0889-DB9E-E87340431CD0}\D0F3301E7C849D72663EA34C9F5F3F63.EXE %COMMON APPDATA%\{DB9E8734-043A-0889-DB9E-E87340431CD0}\E78994C0C289711F %SYSDIR%\TASKS\FASTSYNC Detected by UnHackMe: D0F3301E7C849D72663EA34C9F5F3F63.EXE DEFAULT LOCATION: %COMMON APPDATA%\{DB9E8734-043A-0889-DB9E-E87340431CD0}\D0F3301E7C849D72663EA34C9F5F3F63.EXE Dropper hash(md5): d0f3301e7c849d72663ea34c9f5f3f63 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN,…

Continue reading

Artemis!63C5AE078AC5

Artemis!63C5AE078AC5 also known as MSIL/Injector.JAX!tr, Adware.Generic.654839, Adware.MSIL.DomaIQ.J. Malware Analysis of Artemis!63C5AE078AC5 – NSEQUEZLDLWMKHX.EXE Created files: %TEMP%\QGRLRLNRIWDVDJ\BIN.DMC %TEMP%\QGRLRLNRIWDVDJ\CONFIG.DMC %TEMP%\QGRLRLNRIWDVDJ\NSEQUEZLDLWMKHX.EXE %TEMP%\QGRLRLNRIWDVDJ\NSEQUEZLDLWMKHX.EXE.CONFIG %TEMP%\QGRLRLNRIWDVDJ\PARENT.TXT Detected by UnHackMe: NSEQUEZLDLWMKHX.EXE DEFAULT LOCATION: %TEMP%\QGRLRLNRIWDVDJ\NSEQUEZLDLWMKHX.EXE Dropper hash(md5): eef83fd01feef159a466d5b8b71d86b4 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not…

Continue reading

not-a-virus:AdWare.Win32.NetFilter.d

not-a-virus:AdWare.Win32.NetFilter.d also known as Adware.W32.Netfilter!c, Riskware ( 004f7bf71 ), AdWare.NetFilter. Malware Analysis of not-a-virus:AdWare.Win32.NetFilter.d – DRIVER_INSTALLER.EXE Created files: %Program Files%\filter\1\driver_installer\driver\wfp\windows8\amd64\netfilter2.sys %Program Files%\filter\1\driver_installer\driver\wfp\windows8\i386\netfilter2.sys %Program Files%\filter\1\driver_installer\driver_installer.exe %Program Files%\filter\1\driver_installer\win32\nfapi.dll %Program Files%\filter\1\driver_installer\win32\nfregdrv.exe Detected by UnHackMe: DRIVER_INSTALLER.EXE Default location: %PROGRAM FILES%\FILTER\1\DRIVER_INSTALLER\DRIVER_INSTALLER.EXE Dropper hash(md5): a51e1c7f0d578c1175331c3200599c16 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software.…

Continue reading

TR/Symmi.njpm

TR/Symmi.njpm also known as Win32.Trojan-downloader.Agent.Wnlt, Win32.Trojan-Downloader.Agent.cw, Trojan.Win32.Generic!BT. Malware Analysis of TR/Symmi.njpm – OFIZYMK.EXE Created files: %Program Files%\AppPatch\png.dll %Program Files%\Microsoft Ofhckl\Ofizymk.exe Autostart registry keys: HKLM\System\CurrentControlSet\services\Wsilxp dutspssx\ImagePath: “%Program Files%\Microsoft Ofhckl\Ofizymk.exe” HKLM\System\CurrentControlSet\services\Wsilxp dutspssx\DisplayName: “Zptogs ifdpsfwufwzigqshkq” Detected by UnHackMe: OFIZYMK.EXE Default location: %PROGRAM FILES%\MICROSOFT OFHCKL\OFIZYMK.EXE Dropper hash(md5): d21599f563faad7757bf7d59d7b484a2 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is…

Continue reading

Trojan.Win32.Perfloger.7680[h]

Trojan.Win32.Perfloger.7680[h] also known as W32/Perflogger.CB!tr, W32.PerfKeylogCB.Trojan, Win.Trojan.PerfectKeylogger-9. Malware Analysis of Trojan.Win32.Perfloger.7680[h] – SO2GAMESR.EXE Created files: %SYSDIR%\SO2GAMES.EXE %SYSDIR%\SO2GAMESHK.DLL %SYSDIR%\SO2GAMESR.EXE %SYSDIR%\SO2GAMESWB.DLL %SYSDIR%\WEB.DAT Autostart registry keys: HKLM\SOFTWARE\CLASSES\CLSID\{1E1B2879-88FF-11D3-8D96-D7ACAC95951A}\INPROCSERVER32\: “%SYSDIR%\SO2GAMESWB.DLL” Detected by UnHackMe: SO2GAMESR.EXE Default location: %SYSDIR%\SO2GAMESR.EXE Dropper hash(md5): c4dc20b0f9a0abbec5535469deeba1d6 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN,…

Continue reading

Trojan.BHORA.013449

Trojan.BHORA.013449 also known as not-a-virus:Monitor.Win32.Perflogger.ca, Trojan/Win32.w2b.ui, Keylog-Perfect. Malware Analysis of Trojan.BHORA.013449 – SO2GAMESWB.DLL Created files: %SYSDIR%\SO2GAMESHK.DLL %SYSDIR%\SO2GAMESR.EXE %SYSDIR%\SO2GAMESWB.DLL %SYSDIR%\WEB.DAT Autostart registry keys: HKLM\SOFTWARE\CLASSES\CLSID\{1E1B2879-88FF-11D3-8D96-D7ACAC95951A}\INPROCSERVER32\: “%SYSDIR%\SO2GAMESWB.DLL” Detected by UnHackMe: SO2GAMESWB.DLL Default location: %SYSDIR%\SO2GAMESWB.DLL Dropper hash(md5): c4dc20b0f9a0abbec5535469deeba1d6 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which…

Continue reading

Trojan.Win32.XPACK.duvbch

Trojan.Win32.XPACK.duvbch also known as Adware.Installerex.A8, MultiPlug (PUA), Win32.Adware.Generic.bb. Malware Analysis of Trojan.Win32.XPACK.duvbch – C4B6DD745746D6A55B492563421E617E.EXE Created files: %COMMON APPDATA%\{BBC6C72D-8389-30F5-BBC6-6C72D8381CB6}\3CF4D7ADF093BC2A %COMMON APPDATA%\{BBC6C72D-8389-30F5-BBC6-6C72D8381CB6}\C4B6DD745746D6A55B492563421E617E.DAT %COMMON APPDATA%\{BBC6C72D-8389-30F5-BBC6-6C72D8381CB6}\C4B6DD745746D6A55B492563421E617E.EXE %COMMON APPDATA%\{BBC6C72D-8389-30F5-BBC6-6C72D8381CB6}\F10971F8D7475BFE %SYSDIR%\TASKS\KITCHENFRIEND Detected by UnHackMe: C4B6DD745746D6A55B492563421E617E.EXE DEFAULT LOCATION: %COMMON APPDATA%\{BBC6C72D-8389-30F5-BBC6-6C72D8381CB6}\C4B6DD745746D6A55B492563421E617E.EXE Dropper hash(md5): c4b6dd745746d6a55b492563421e617e Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100%…

Continue reading

Generic6.BQUN

Generic6.BQUN also known as Heur.AdvML.B, PUP/Win32.MultiPlug.R161170, Gen:Variant.Razy.14880. Malware Analysis of Generic6.BQUN – C4B6DD745746D6A55B492563421E617E.EXE Created files: %COMMON APPDATA%\{BBC6C72D-8389-30F5-BBC6-6C72D8381CB6}\3CF4D7ADF093BC2A %COMMON APPDATA%\{BBC6C72D-8389-30F5-BBC6-6C72D8381CB6}\C4B6DD745746D6A55B492563421E617E.DAT %COMMON APPDATA%\{BBC6C72D-8389-30F5-BBC6-6C72D8381CB6}\C4B6DD745746D6A55B492563421E617E.EXE %COMMON APPDATA%\{BBC6C72D-8389-30F5-BBC6-6C72D8381CB6}\F10971F8D7475BFE %SYSDIR%\TASKS\KITCHENFRIEND Detected by UnHackMe: C4B6DD745746D6A55B492563421E617E.EXE DEFAULT LOCATION: %COMMON APPDATA%\{BBC6C72D-8389-30F5-BBC6-6C72D8381CB6}\C4B6DD745746D6A55B492563421E617E.EXE Dropper hash(md5): c4b6dd745746d6a55b492563421e617e Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN,…

Continue reading

Generic6.BREJ

Generic6.BREJ also known as Gen:Variant.Razy.14880, SMG.Heur!gen, BrowserModifier:Win32/Diplugem. Malware Analysis of Generic6.BREJ – E8FF62EC7480100217653AE6B6F34059.EXE Created files: %COMMON APPDATA%\{119E6DD5-C1AA-7B67-119E-E6DD5C1AB757}\E8FF62EC7480100217653AE6B6F34059.DAT %COMMON APPDATA%\{119E6DD5-C1AA-7B67-119E-E6DD5C1AB757}\E8FF62EC7480100217653AE6B6F34059.EXE %WINDIR%\TASKS\VIRUSPREVENTER.JOB Detected by UnHackMe: E8FF62EC7480100217653AE6B6F34059.EXE DEFAULT LOCATION: %COMMON APPDATA%\{119E6DD5-C1AA-7B67-119E-E6DD5C1AB757}\E8FF62EC7480100217653AE6B6F34059.EXE Dropper hash(md5): e8ff62ec7480100217653ae6b6f34059 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does…

Continue reading

W32/VBKrypt.PDGX!tr

W32/VBKrypt.PDGX!tr also known as Trojan.Win32.VBKrypt.pdgx, Trojan.VBKrypt.Win32.232574, Trojan.DownLoader8.18545. Malware Analysis of W32/VBKrypt.PDGX!tr – JAVASCRIPT.EXE Created files: %LOCAL APPDATA%\MICROSOFT\WINDOWS\HISTORY\HISTORY.IE5\MSHIST012016092520160926\CONTAINER.DAT %WINDIR%\SYS1.TXT %COMMON APPDATA%\MICROSOFT\WINDOWS\START MENU\PROGRAMS\STARTUP\JAVASCRIPT.EXE %LOCAL APPDATA%\MICROSOFT\INTERNET EXPLORER\RECOVERY\HIGH\ACTIVE\RECOVERYSTORE.{E9BD2C39-8338-11E6-902F-000C2982064B}.DAT %LOCAL APPDATA%\MICROSOFT\INTERNET EXPLORER\RECOVERY\HIGH\ACTIVE\{E9BD2C3B-8338-11E6-902F-000C2982064B}.DAT Detected by UnHackMe: JAVASCRIPT.EXE DEFAULT LOCATION: %COMMON APPDATA%\MICROSOFT\WINDOWS\START MENU\PROGRAMS\STARTUP\JAVASCRIPT.EXE Dropper hash(md5): bb380ae644513e41dcda9d30b2fe04df Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software.…

Continue reading

Generic PUA EA (PUA)

Generic PUA EA (PUA) also known as Trojan.Win32.OutBrowse.dvfjgz, Gen:Variant.Adware.Mikey.21084, PUA.Downloader. Malware Analysis of Generic PUA EA (PUA) – BHJOWAD.DLL Created files: %TEMP%\BEEHEBJHBJ.EXE %TEMP%\BEEHEBJHBJ.JBHJBEH %TEMP%\JBHJBEH.ZIP %TEMP%\NSF241E.TMP\BHJOWAD.DLL %TEMP%\NSF241E.TMP\ZIPDLL.DLL Detected by UnHackMe: BHJOWAD.DLL DEFAULT LOCATION: %TEMP%\NSF241E.TMP\BHJOWAD.DLL Dropper hash(md5): e0ece8ee4e3acdd63ad76e3623777c27 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100%…

Continue reading

Riskware.Win32.Perflogger.utcj

Riskware.Win32.Perflogger.utcj also known as Spyware.Perfect, Trojan.Win32.Z.Perflogger.438272.F[h], MonitoringTool:Win32/PerfectKeylogger. Malware Analysis of Riskware.Win32.Perflogger.utcj – SO2GAMES.EXE Created files: %SYSDIR%\MC.DAT %SYSDIR%\PK.BIN %SYSDIR%\SO2GAMES.EXE %SYSDIR%\SO2GAMESHK.DLL %SYSDIR%\SO2GAMESR.EXE Autostart registry keys: HKLM\SOFTWARE\CLASSES\CLSID\{1E1B2879-88FF-11D3-8D96-D7ACAC95951A}\INPROCSERVER32\: “%SYSDIR%\SO2GAMESWB.DLL” Detected by UnHackMe: SO2GAMES.EXE Default location: %SYSDIR%\SO2GAMES.EXE Dropper hash(md5): c4dc20b0f9a0abbec5535469deeba1d6 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN,…

Continue reading

Adware.Generic.654839 (B)

Adware.Generic.654839 (B) also known as DomaIQ, Adware.Generic.654839, GrayWare[AdWare:not-a-virus]/MSIL.DomaIQ. Malware Analysis of Adware.Generic.654839 (B) – NSEQUEZLDLWMKHX.EXE Created files: %TEMP%\QGRLRLNRIWDVDJ\BIN.DMC %TEMP%\QGRLRLNRIWDVDJ\CONFIG.DMC %TEMP%\QGRLRLNRIWDVDJ\NSEQUEZLDLWMKHX.EXE %TEMP%\QGRLRLNRIWDVDJ\NSEQUEZLDLWMKHX.EXE.CONFIG %TEMP%\QGRLRLNRIWDVDJ\PARENT.TXT Detected by UnHackMe: NSEQUEZLDLWMKHX.EXE DEFAULT LOCATION: %TEMP%\QGRLRLNRIWDVDJ\NSEQUEZLDLWMKHX.EXE Dropper hash(md5): eef83fd01feef159a466d5b8b71d86b4 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it…

Continue reading

Artemis!D0A374CC03FB

Artemis!D0A374CC03FB also known as PUP.Optional.OutBrowse, Adware.OutBrowse.Win32.88236. Malware Analysis of Artemis!D0A374CC03FB – CVF.DLL Created files: %TEMP%\NSF316C.TMP\CVF.DLL %TEMP%\NSF316C.TMP\NSISUNZ.DLL %TEMP%\RIW.EXE Autostart registry keys: HKLM\SOFTWARE\CLASSES\CLSID\{6D4506CE-F855-4657-AA38-DB6B1F733982}\LOCALSERVER32\: “”%TEMP%\RIW.EXE”” Detected by UnHackMe: CVF.DLL DEFAULT LOCATION: %TEMP%\NSF316C.TMP\CVF.DLL Dropper hash(md5): ea7ebc4339adebb7b6f4af848f091756 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it…

Continue reading

Gen:Variant.Symmi.61577

Gen:Variant.Symmi.61577 also known as Trojan.Symmi.DF089, Win32.Trojan-Downloader.Agent.cw, Trojan.Win32.Generic!BT. Malware Analysis of Gen:Variant.Symmi.61577 – OFIZYMK.EXE Created files: %Program Files%\AppPatch\png.dll %Program Files%\Microsoft Ofhckl\Ofizymk.exe Autostart registry keys: HKLM\System\CurrentControlSet\services\Wsilxp dutspssx\ImagePath: “%Program Files%\Microsoft Ofhckl\Ofizymk.exe” HKLM\System\CurrentControlSet\services\Wsilxp dutspssx\DisplayName: “Zptogs ifdpsfwufwzigqshkq” Detected by UnHackMe: OFIZYMK.EXE Default location: %PROGRAM FILES%\MICROSOFT OFHCKL\OFIZYMK.EXE Dropper hash(md5): d21599f563faad7757bf7d59d7b484a2 Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is…

Continue reading

Riskware.Win32.MultiPlug.dvfqhp

Riskware.Win32.MultiPlug.dvfqhp also known as PUA.MultiPlug!, W32/S-2c5dc622!Eldorado, Adware.Kazy.A8. Malware Analysis of Riskware.Win32.MultiPlug.dvfqhp – E5A7C5EAF6BB1FA078F22AC5C7F771AD.EXE Created files: %COMMON APPDATA%\{EFF3280A-4C77-EECD-EFF3-3280A4C7A029}\CB78EA4DD4BC9AEF %COMMON APPDATA%\{EFF3280A-4C77-EECD-EFF3-3280A4C7A029}\E5A7C5EAF6BB1FA078F22AC5C7F771AD.DAT %COMMON APPDATA%\{EFF3280A-4C77-EECD-EFF3-3280A4C7A029}\E5A7C5EAF6BB1FA078F22AC5C7F771AD.EXE %SYSDIR%\TASKS\SMARTDESIGN %WINDIR%\TASKS\SMARTDESIGN.JOB Detected by UnHackMe: E5A7C5EAF6BB1FA078F22AC5C7F771AD.EXE DEFAULT LOCATION: %COMMON APPDATA%\{EFF3280A-4C77-EECD-EFF3-3280A4C7A029}\E5A7C5EAF6BB1FA078F22AC5C7F771AD.EXE Dropper hash(md5): e5a7c5eaf6bb1fa078f22ac5c7f771ad Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which…

Continue reading

Gen.Variant.Razy!c

Gen.Variant.Razy!c also known as HEUR/QVM10.1.Malware.Gen, not-a-virus:WebToolbar.Agent. Malware Analysis of Gen.Variant.Razy!c – INSP.EXE Created files: %LOCAL APPDATA%\MICROSOFT\WINDOWS\HISTORY\HISTORY.IE5\MSHIST012016091320160914\CONTAINER.DAT %TEMP%\BLACKLIST1 %TEMP%\INSP.EXE %TEMP%\UNIVERSALDIS.AOI %TEMP%\UNIVERSALDIS.EXE Detected by UnHackMe: INSP.EXE DEFAULT LOCATION: %TEMP%\INSP.EXE Dropper hash(md5): e185468bf8f6760c16c8e82e053a92ba Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not…

Continue reading

not-a-virus:RiskTool.FlyStudio

not-a-virus:RiskTool.FlyStudio also known as Gen:Variant.Strictor.105176, Gen:Variant.Strictor.105176, Win32/Oflwr.A!crypt. Malware Analysis of not-a-virus:RiskTool.FlyStudio – TSIE.EXE Created files: %WINDIR%\SPLWO32.EXE %WINDIR%\TS.DAT %WINDIR%\TSIE.EXE %SYSTEMDRIVE%\EYOOADCOFIG.INI Detected by UnHackMe: TSIE.EXE Default location: %WinDir%\TSIE.EXE Dropper hash(md5): a91454719cc396883651b566c105cf4b Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain…

Continue reading

WordPress SEO fine-tune by Meta SEO Pack from Poradnik Webmastera