About NightWatcher

Malware Hunter.
Google+

Find more about me on:

Here are my most recent posts

Author Archives: NightWatcher

About NightWatcher

Malware Hunter.

Trojan.SuspectCRC

Trojan.SuspectCRC also known as Win32.Troj.Undef.(kcloud), Trojan.Agent.AI, TR/Kilim.C.3. Malware Analysis of Trojan.SuspectCRC Created files: %Local Appdata%GoogleChromeUser DataDefaultExtension Rules00003.log %Local Appdata%GoogleChromeUser DataDefaultExtension RulesCURRENT %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOCK %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOG %Local Appdata%GoogleChromeUser DataDefaultExtension RulesMANIFEST-000002 %Local Appdata%GoogleChromeUser DataDefaultPreferences.bad %WinDir%FlashTopiaFlashMedia.exe %WinDir%FlashTopiaPref2.dat Detected by UnHackMe: FLASHMEDIA.EXE Default location: %WinDir%FLASHTOPIAFLASHMEDIA.EXE Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe…

Continue reading

Trojan:Win32/Kilim.C

Trojan:Win32/Kilim.C also known as W32/AutoHK.F!tr.dldr, Trojan.Generic.9378724 (B). Malware Analysis of Trojan:Win32/Kilim.C Created files: %Local Appdata%GoogleChromeUser DataDefaultExtension Rules00003.log %Local Appdata%GoogleChromeUser DataDefaultExtension RulesCURRENT %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOCK %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOG %Local Appdata%GoogleChromeUser DataDefaultExtension RulesMANIFEST-000002 %Local Appdata%GoogleChromeUser DataDefaultPreferences.bad %WinDir%FlashTopiaFlashMedia.exe %WinDir%FlashTopiaPref2.dat Detected by UnHackMe: FLASHMEDIA.EXE Default location: %WinDir%FLASHTOPIAFLASHMEDIA.EXE Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe…

Continue reading

Win32.Troj.Undef.(kcloud)

Win32.Troj.Undef.(kcloud) also known as Trojan.Generic.9378724, Trojan.Generic.9378724 (B), Trojan/Win32.Generic. Malware Analysis of Win32.Troj.Undef.(kcloud) Created files: %Local Appdata%GoogleChromeUser DataDefaultExtension Rules00003.log %Local Appdata%GoogleChromeUser DataDefaultExtension RulesCURRENT %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOCK %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOG %Local Appdata%GoogleChromeUser DataDefaultExtension RulesMANIFEST-000002 %Local Appdata%GoogleChromeUser DataDefaultPreferences.bad %WinDir%FlashTopiaFlashMedia.exe %WinDir%FlashTopiaPref2.dat Detected by UnHackMe: FLASHMEDIA.EXE Default location: %WinDir%FLASHTOPIAFLASHMEDIA.EXE Share This: UnHackMe removes malware invisible for your antivirus!…

Continue reading

TR/Kilim.C.3

TR/Kilim.C.3 also known as Trojan.Agent.AI, W32/AutoHK.F!tr.dldr, Win32.Troj.Undef.(kcloud). Malware Analysis of TR/Kilim.C.3 Created files: %Local Appdata%GoogleChromeUser DataDefaultExtension Rules00003.log %Local Appdata%GoogleChromeUser DataDefaultExtension RulesCURRENT %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOCK %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOG %Local Appdata%GoogleChromeUser DataDefaultExtension RulesMANIFEST-000002 %Local Appdata%GoogleChromeUser DataDefaultPreferences.bad %WinDir%FlashTopiaFlashMedia.exe %WinDir%FlashTopiaPref2.dat Detected by UnHackMe: FLASHMEDIA.EXE Default location: %WinDir%FLASHTOPIAFLASHMEDIA.EXE Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe…

Continue reading

Trojan.Generic.9378724 (B)

Trojan.Generic.9378724 (B) also known as Trojan.Generic.9378724, W32/AutoHK.F!tr.dldr, Artemis!3BC6F91EE327. Malware Analysis of Trojan.Generic.9378724 (B) Created files: %Local Appdata%GoogleChromeUser DataDefaultExtension Rules00003.log %Local Appdata%GoogleChromeUser DataDefaultExtension RulesCURRENT %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOCK %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOG %Local Appdata%GoogleChromeUser DataDefaultExtension RulesMANIFEST-000002 %Local Appdata%GoogleChromeUser DataDefaultPreferences.bad %WinDir%FlashTopiaFlashMedia.exe %WinDir%FlashTopiaPref2.dat Detected by UnHackMe: FLASHMEDIA.EXE Default location: %WinDir%FLASHTOPIAFLASHMEDIA.EXE Share This: UnHackMe removes malware invisible for your…

Continue reading

Trojan.Agent.AI

Trojan.Agent.AI also known as Trojan:Win32/Kilim.C, Trojan.Generic.9378724 (B). Malware Analysis of Trojan.Agent.AI Created files: %Local Appdata%GoogleChromeUser DataDefaultExtension Rules00003.log %Local Appdata%GoogleChromeUser DataDefaultExtension RulesCURRENT %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOCK %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOG %Local Appdata%GoogleChromeUser DataDefaultExtension RulesMANIFEST-000002 %Local Appdata%GoogleChromeUser DataDefaultPreferences.bad %WinDir%FlashTopiaFlashMedia.exe %WinDir%FlashTopiaPref2.dat Detected by UnHackMe: FLASHMEDIA.EXE Default location: %WinDir%FLASHTOPIAFLASHMEDIA.EXE Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe…

Continue reading

Artemis!3BC6F91EE327

Artemis!3BC6F91EE327 also known as TR/Kilim.C.3, Win32.Troj.Undef.(kcloud). Malware Analysis of Artemis!3BC6F91EE327 Created files: %Local Appdata%GoogleChromeUser DataDefaultExtension Rules00003.log %Local Appdata%GoogleChromeUser DataDefaultExtension RulesCURRENT %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOCK %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOG %Local Appdata%GoogleChromeUser DataDefaultExtension RulesMANIFEST-000002 %Local Appdata%GoogleChromeUser DataDefaultPreferences.bad %WinDir%FlashTopiaFlashMedia.exe %WinDir%FlashTopiaPref2.dat Detected by UnHackMe: FLASHMEDIA.EXE Default location: %WinDir%FLASHTOPIAFLASHMEDIA.EXE Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe is…

Continue reading

Trojan.Generic.9378724

Trojan.Generic.9378724 also known as TR/Kilim.C.3, Win32.Troj.Undef.(kcloud), Trojan.SuspectCRC. Malware Analysis of Trojan.Generic.9378724 Created files: %Local Appdata%GoogleChromeUser DataDefaultExtension Rules00003.log %Local Appdata%GoogleChromeUser DataDefaultExtension RulesCURRENT %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOCK %Local Appdata%GoogleChromeUser DataDefaultExtension RulesLOG %Local Appdata%GoogleChromeUser DataDefaultExtension RulesMANIFEST-000002 %Local Appdata%GoogleChromeUser DataDefaultPreferences.bad %WinDir%FlashTopiaFlashMedia.exe %WinDir%FlashTopiaPref2.dat Detected by UnHackMe: FLASHMEDIA.EXE Default location: %WinDir%FLASHTOPIAFLASHMEDIA.EXE Share This: UnHackMe removes malware invisible for your antivirus! UnHackMe…

Continue reading

Trj/CI.A

Trj/CI.A also known as TROJ_GEN.R0CBC0EGL13, Trojan.Downloader.FC, Win32/Shorm. Malware Analysis of Trj/CI.A Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1…

Continue reading

Generic33.CERV

Generic33.CERV also known as Win32/Kryptik.BFQM, Trojan.Downloader.FC, TROJ_GEN.R0CBC0EGL13. Malware Analysis of Generic33.CERV Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1…

Continue reading

W32/Kryptik.BFQM

W32/Kryptik.BFQM also known as Gen:Trojan.Heur.RP.nqW@aaU@siii, Trojan.FakeAV. Malware Analysis of W32/Kryptik.BFQM Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1 for…

Continue reading

Win32.Kryptik

Win32.Kryptik also known as W32/Kryptik.BFQM, Trojan.FakeAV!rem. Malware Analysis of Win32.Kryptik Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1 for…

Continue reading

Trojan.FakeAV!rem

Trojan.FakeAV!rem also known as Trojan.BtcMine.119, Trojan:Win32/Tarcloin.H, Win32/Shorm. Malware Analysis of Trojan.FakeAV!rem Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1…

Continue reading

Win32/Kryptik.BFQM

Win32/Kryptik.BFQM also known as Trojan.BtcMine.119, Win32:Kryptik-MJY [Trj], RDN/Generic.dx!cmr. Malware Analysis of Win32/Kryptik.BFQM Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory…

Continue reading

Trojan/Win32.FakeAV

Trojan/Win32.FakeAV also known as TR/Tarcloin.G.124, Trojan.FakeAV!rem, RDN/Generic.dx!cmr. Malware Analysis of Trojan/Win32.FakeAV Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1…

Continue reading

Trojan:Win32/Tarcloin.H

Trojan:Win32/Tarcloin.H also known as TR/Tarcloin.G.124, Gen:Trojan.Heur.RP.nqW@aaU@siii, Trojan/Win32.FakeAV. Malware Analysis of Trojan:Win32/Tarcloin.H Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1…

Continue reading

Win32.Troj.Generic.m.(kcloud)

Win32.Troj.Generic.m.(kcloud) also known as Win32.Kryptik, Trojan.FakeAV!rem, Win32/Kryptik.BFQM. Malware Analysis of Win32.Troj.Generic.m.(kcloud) Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1…

Continue reading

Trojan/Win32.Generic

Trojan/Win32.Generic also known as Trojan.FakeAV, TR/Tarcloin.G.124. Malware Analysis of Trojan/Win32.Generic Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1 for…

Continue reading

Troj/Miner-O

Troj/Miner-O also known as TR/Tarcloin.G.124, RDN/Generic.dx!cmr, Trojan.FakeAV. Malware Analysis of Troj/Miner-O Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1…

Continue reading

TR/Tarcloin.G.124

TR/Tarcloin.G.124 also known as Generic33.CERV, Trojan.FakeAV!rem, Gen:Trojan.Heur.RP.nqW@aaU@siii. Malware Analysis of TR/Tarcloin.G.124 Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1…

Continue reading

Trojan.BtcMine.119

Trojan.BtcMine.119 also known as Trojan.FakeAV, RDN/Generic.dx!cmr. Malware Analysis of Trojan.BtcMine.119 Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1 for…

Continue reading

Gen:Trojan.Heur.RP.nqW@aaU@siii (B)

Gen:Trojan.Heur.RP.nqW@aaU@siii (B) also known as Trojan:Win32/Tarcloin.H, Trojan/Win32.Generic, Trojan/Win32.FakeAV. Malware Analysis of Gen:Trojan.Heur.RP.nqW@aaU@siii (B) Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary…

Continue reading

Win32:Kryptik-MJY [Trj]

Win32:Kryptik-MJY [Trj] also known as W32/Kryptik.BFQM, Gen:Trojan.Heur.RP.nqW@aaU@siii, Generic33.CERV. Malware Analysis of Win32:Kryptik-MJY [Trj] Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary…

Continue reading

TROJ_GEN.R0CBC0EGL13

TROJ_GEN.R0CBC0EGL13 also known as W32/Kryptik.BFQM, Trojan/Win32.Generic, Generic33.CERV. Malware Analysis of TROJ_GEN.R0CBC0EGL13 Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1…

Continue reading

Win32/Shorm

Win32/Shorm also known as Troj/Miner-O, RDN/Generic.dx!cmr, W32/Kryptik.BFQM. Malware Analysis of Win32/Shorm Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1…

Continue reading

Trojan.FakeAV

Trojan.FakeAV also known as TROJ_GEN.R0CBC0EGL13, Gen:Trojan.Heur.RP.nqW@aaU@siii. Malware Analysis of Trojan.FakeAV Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1 for…

Continue reading

Trojan.Downloader.FC

Trojan.Downloader.FC also known as W32/Kryptik.BFQM, Troj/Miner-O, Win32/Shorm. Malware Analysis of Trojan.Downloader.FC Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1…

Continue reading

RDN/Generic.dx!cmr

RDN/Generic.dx!cmr also known as TR/Tarcloin.G.124, TROJ_GEN.R0CBC0EGL13, Generic33.CERV. Malware Analysis of RDN/Generic.dx!cmr Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory 1…

Continue reading

Gen:Trojan.Heur.RP.nqW@aaU@siii

Gen:Trojan.Heur.RP.nqW@aaU@siii also known as Generic33.CERV, RDN/Generic.dx!cmr, Win32:Kryptik-MJY [Trj]. Malware Analysis of Gen:Trojan.Heur.RP.nqW@aaU@siii Created files: %Appdata%API.class %Appdata%cgminer.conf %Appdata%diablo130302.cl %Appdata%diakgcn121016.cl %Appdata%dllhost.exe %Appdata%dllhost2.exe %Appdata%libcurl.dll %Appdata%libeay32.dll %Appdata%libidn-11.dll %Appdata%librtmp.dll %Appdata%libssh2.dll %Appdata%libusb-1.0.dll %Appdata%lkfjl23j.db %Appdata%mainer_run.exe %Appdata%Mozilla Firefox.lnk %Appdata%phatk121016.cl %Appdata%phatk121016Turksv2w128l4.bin %Appdata%poclbm130302.cl %Appdata%poclbm130302GeForce GTS 250v1w256l4.bin %Appdata%poclbm130302Intel(R) HD Graphics 4000gv1w256l4.bin %Appdata%rundll32.exe %Appdata%scrypt130302.cl %Appdata%ssleay32.dll %Appdata%subid.dll %Appdata%svchost.exe %Appdata%tmp.vbs %Appdata%unzipme_miner-files.zip %Appdata%zlib1.dll %Temp%Temporary Directory 1 for unzipme_miner-files.zipAPI.class %Temp%Temporary Directory…

Continue reading

WordPress SEO fine-tune by Meta SEO Pack from Poradnik Webmastera