Manual Clean Virus, Trojans, Malware
Troj/Keylog-JV also known as Backdoor/Poison.bp, Backdoor.PoisonIvy.EL, Backdoor:Win32/Poison.E. Malware Analysis of Troj/Keylog-JV Created files: %SysDir%\MS_Update2.exe Detected by UnHackMe: MS_UPDATE2.EXE Default location: %SYSDIR%\MS_UPDATE2.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses, trojans and…
Trojan/Spy.KeyLogger.hul also known as Trojan.Win32.MLW.dddkx, Trojan, Spyware.AdaEbook. Malware Analysis of Trojan/Spy.KeyLogger.hul Created files: %WinDir%\pchealth\helpctr\Config\GroupPolicy\User\Scripts\explorer.exe %WinDir%\Temp\111.exe %WinDir%\Temp\222.exe %WinDir%\helpctr\wuem\maf\svchost.exe Autostart registry keys: HKLM\Software\Classes\CLSID\{E8CFC029-8420-4EAE-ADEF-915BDC77E1DC}\LocalServer32\: “%WinDir%\Temp\111.exe” HKLM\System\CurrentControlSet\Services\SharedAccess\Start: 0x00000004 HKLM\System\CurrentControlSet\Services\wscsvc\ImagePath: “%WinDir%\helpctr\wuem\maf\svchost.exe” HKLM\System\CurrentControlSet\Services\wscsvc\Description: “????????????” Detected by UnHackMe: 111.EXE Default location: %WinDir%\TEMP\111.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means…
Malware Analysis of SPR/KeyLogger.ns.241 Created files: C:\NeoSpy\options.dat C:\NeoSpy\ReadMe.txt C:\NeoSpy\Shr.dll C:\NeoSpy\SPlayer.ini C:\NeoSpy\stop.lnk Autostart registry keys: HKLM\Software\Classes\zspfile\shell\open\command\: “C:\NeoSpy\main.exe /import “%1″” HKLM\System\CurrentControlSet\Services\NPF\Security\Security: 01 00 14 80 90 00 00 00 9C 00 00 00 14 00 00 00 30 00 00 00 02 00 1C 00 01 00 00 00 02 80 14 00 FF 01 0F 00…
Trojan.KeyLogger.18510 also known as Malware_fam.NB, TrojanSpy:Win32/Delf.gen!A, Trojan.Crypt.Delf.AL. Malware Analysis of Trojan.KeyLogger.18510 Created files: %SysDir%\fdc33961dc77a94818b244ae43bdc093.exe Autostart registry keys: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Firewall Service: 43 3A 5C 57 49 4E 44 4F 57 53 5C 73 79 73 74 65 6D 33 32 5C 66 64 63 33 33 39 36 31 64 63 37 37 61 39 34 38…
Trojan.Win32.KeyLogger.cbzgpg also known as W32/Backdoor.NEBW-5446, Trojan.Crypt.Delf.AL, TrojanSpy:Win32/Delf.gen!A. Malware Analysis of Trojan.Win32.KeyLogger.cbzgpg Created files: %SysDir%\fdc33961dc77a94818b244ae43bdc093.exe Autostart registry keys: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Firewall Service: 43 3A 5C 57 49 4E 44 4F 57 53 5C 73 79 73 74 65 6D 33 32 5C 66 64 63 33 33 39 36 31 64 63 37 37 61 39 34 38…
Win32:KeyLogger-ASX [PUP] also known as MonitoringTool.NeoSpy (Not a Virus), WS.Reputation.1. Malware Analysis of Win32:KeyLogger-ASX [PUP] Created files: %Temp%\RarSFX0\wpcap\x64\npf.sys C:\temp001.dat %Temp%\IXP000.TMP\ns.exe %Temp%\RarSFX0\0001\shell.dos %Temp%\RarSFX0\0001\_datamain.dat Autostart registry keys: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\wextract_cleanup0: “rundll32.exe %SysDir%\advpack.dll,DelNodeRunDLL32 “C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\IXP000.TMP\”” Detected by UnHackMe: NS.EXE Default location: %TEMP%\IXP000.TMP\NS.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which…
KeyLogger also known as TROJ_GEN.F47V0828. Malware Analysis of KeyLogger Created files: %Common Startmenu%\Programs\Free Key Log\More Tools.url %Common Startmenu%\Programs\Free Key Log\Uninstall.lnk %Program Files%\Free Key Log\FreeKeyLog.exe %Program Files%\Free Key Log\icon.ico %Program Files%\Free Key Log\lamecore.dll Detected by UnHackMe: FREEKEYLOG.EXE Default location: %PROGRAM FILES%\FREE KEY LOG\FREEKEYLOG.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus…
Trojan/XtremeKeylogger.am also known as Gen:Variant.Barys.2254, TR/Dropper.Gen, MSIL/Injector.PE!tr. Malware Analysis of Trojan/XtremeKeylogger.am Created files: %Appdata%\Microsoft\Windows\((Mutex)).cfg %Appdata%\Microsoft\Windows\((Mutex)).dat %Temp%\792.exe %WinDir%\InstallDir\Server.exe Detected by UnHackMe: 792.EXE Default location: %TEMP%\792.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware,…
W32.KeyloggerLTHVAP.Trojan also known as Backdoor/Azbreg.bqi, Trojan.Generic.KD.914347 (B), TR/Dropper.Gen. Malware Analysis of W32.KeyloggerLTHVAP.Trojan Created files: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-335617\Desktop.ini C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-335617\j51981.exe Detected by UnHackMe: J51981.EXE Default location: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-335617\J51981.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses,…
Trojan.Keylogger.MK also known as Trojan/Generic.bolgq, Gen:Heur.MSIL.Krypt.3 (B), WS.Reputation.1. Malware Analysis of Trojan.Keylogger.MK Created files: %Appdata%\Microsoft\appconfig.exe %Temp%\tmp1.tmp Detected by UnHackMe: APPCONFIG.EXE Default location: %APPDATA%\MICROSOFT\APPCONFIG.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses,…
Spyware/Win32.KeyLogger also known as Mal/MSIL-BM, a variant of MSIL/Agent.FM, Gen:Heur.MSIL.Krypt.3. Malware Analysis of Spyware/Win32.KeyLogger Created files: %Appdata%\Microsoft\appconfig.exe %Temp%\tmp1.tmp Detected by UnHackMe: APPCONFIG.EXE Default location: %APPDATA%\MICROSOFT\APPCONFIG.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware,…
Heur:Trojan/KeyLogger also known as WIN.Trojan.DarkKomet, Backdoor.Fynloski.A9, Trojan.Agent/Gen-Fynloski. Malware Analysis of Heur:Trojan/KeyLogger Created files: %Appdata%\eniste.exe %Personal%\MSDCSC\msdcsc.exe %WinDir%\ayarlar.ini C:\inject.exe Detected by UnHackMe: ENISTE.EXE Default location: %APPDATA%\ENISTE.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware,…
Trojan-Spy.MSIL.KeyLogger.jhl also known as Win32/Spy.Agent.NYU, Tool.MailPassView.218, BackDoor-FBGQ!B8577C9A0803. Malware Analysis of Trojan-Spy.MSIL.KeyLogger.jhl Created files: %Temp%\AppLunch\WinUpdate.exe %Temp%\Win Update\Win Update.exe Detected by UnHackMe: WIN UPDATE.EXE Default location: %TEMP%\WIN UPDATE\WIN UPDATE.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of malware,…
W32/KeyLogger.JHL!tr also known as W32/Backdoor.LMZG-9299, TROJ_GEN.R0CCC0DIF13, Trojan.GenericKDV.1258405 (B). Malware Analysis of W32/KeyLogger.JHL!tr Created files: %Temp%\AppLunch\WinUpdate.exe %Temp%\Win Update\Win Update.exe Detected by UnHackMe: WIN UPDATE.EXE Default location: %TEMP%\WIN UPDATE\WIN UPDATE.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of…
Win32/Spy.KeyLogger.OFI also known as PSW.Generic11.CIWN, Troj_Generic.LRSRA, Spyware.Password. Malware Analysis of Win32/Spy.KeyLogger.OFI Created files: %Temp%73882d8dc121f89dc6619e0468f977ba.pdf %Temp%AcroRd32.exe %Temp%%ComputerName%.mst Detected by UnHackMe: ACRORD32.EXE Default location: %TEMP%ACRORD32.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses,…
W32.KeylogCuliLTT.Trojan also known as Backdoor.Graybird, Trojan/Dropper.Crypter.i, TR/Drop.Agent.doaa. Malware Analysis of W32.KeylogCuliLTT.Trojan Created files: %Temp%\0B6D616E.log %Temp%\qd.ini %Temp%\setup_3015.exe %Temp%\UG1.tmp %Temp%\yinyue.exe Detected by UnHackMe: SETUP_3015.EXE Default location: %TEMP%\SETUP_3015.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware,…
Spyware.Keylogger also known as Artemis!01727D7F0B30, Trojan/Injector.amix, Trojan. Malware Analysis of Spyware.Keylogger Created files: %Appdata%\Microsoft\Windows\lemftq\lemftq.dat %Appdata%\Microsoft\Windows\lemftq\lemftq.nfo %Appdata%\Microsoft\Windows\lemftq\lemftq.svr %Appdata%\Ultra ISO Daemon\uideamon.exe Detected by UnHackMe: UIDEAMON.EXE Default location: %APPDATA%\ULTRA ISO DAEMON\UIDEAMON.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of…
Win32:KeyLogger-ARY [Spy] also known as Worm.Win32.Anisolt.a, W32/Shadebot, BackDoor.Blackshades.17. Malware Analysis of Win32:KeyLogger-ARY [Spy] Created files: %Appdata%\AHDATR.exe %Appdata%\Size Detected by UnHackMe: AHDATR.EXE Default location: %APPDATA%\AHDATR.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware,…
Generic.Keylogger.2.6EACA456 also known as Trojan-FakeAV.Win32.Windef.myj, Trojan.Keylogger.VB.AP, BackDoor.Blackshades.17. Malware Analysis of Generic.Keylogger.2.6EACA456 Created files: %Appdata%\AHDATR.exe %Appdata%\Size Detected by UnHackMe: AHDATR.EXE Default location: %APPDATA%\AHDATR.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses, trojans…
Trojan.Keylogger.VB.AP also known as Trojan.Agent/Gen-Ainslot, W32.Shadesrat, Trojan.Win32.Agent.466944.M. Malware Analysis of Trojan.Keylogger.VB.AP Created files: %Appdata%\AHDATR.exe %Appdata%\Size Detected by UnHackMe: AHDATR.EXE Default location: %APPDATA%\AHDATR.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses, trojans…
Keylogger.Ardamax also known as PSW.Generic4.KYJ, Win32.ADSPYDropper.A, Trojan/Win32.Xema. Malware Analysis of Keylogger.Ardamax Created files: %SysDir%\Sys32\DDXL.006 %SysDir%\Sys32\DDXL.007 %SysDir%\Sys32\DDXL.exe Detected by UnHackMe: DDXL.EXE Default location: %SYSDIR%\SYS32\DDXL.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses,…
Keylog-Ardamax also known as PSW.Generic4.KYJ, Virus.Win32.Ardamax.CI, Trojan.Spy.Ardamax-27. Malware Analysis of Keylog-Ardamax Created files: %SysDir%\Sys32\DDXL.006 %SysDir%\Sys32\DDXL.007 %SysDir%\Sys32\DDXL.exe Detected by UnHackMe: DDXL.EXE Default location: %SYSDIR%\SYS32\DDXL.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses,…
Win32/KeyLogger.Ardamax also known as Malware_fam.gw, Virus.Win32.Ardamax.CI, Win32.Troj.Ardamax.h.(kcloud). Malware Analysis of Win32/KeyLogger.Ardamax Created files: %SysDir%\Sys32\DDXL.006 %SysDir%\Sys32\DDXL.007 %SysDir%\Sys32\DDXL.exe Detected by UnHackMe: DDXL.EXE Default location: %SYSDIR%\SYS32\DDXL.EXE UnHackMe removes malware invisible for your antivirus! UnHackMe is compatible with most antivirus software. UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses,…