About Alex Nightwatcher

Malware Hunter.

Find more about me on:

Here are my most recent posts

Author Archives: Alex Nightwatcher

About Alex Nightwatcher

Malware Hunter.

HOT FOTOS.EXE is Trojan MulDrop4

The file HOT FOTOS.EXE is identified as a virus dropper. The dropper HOT FOTOS.EXE is used for downloading and installing other malware, Trojans, viruses by the commands received from the Command Center. The file HOT FOTOS.EXE loads into the computer memory and tries to connect to the dangerous web site. Usually the HOT FOTOS.EXE dropper […]
More…

LSASC.EXE is Trojan Inject1

The file LSASC.EXE is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete LSASC.EXE we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of LSASC.EXE Full path on a computer: %LOCAL APPDATA%\LSASC.EXE Detected by UnHackMe: LSASC.EXE Default location: %LOCAL APPDATA%\LSASC.EXE Removal Results: Success Number of reboot: 1 […]
More…

HOSTS_ANTI-ADWARE.EXE is Trojan Downloader

Is the file HOSTS_ANTI-ADWARE.EXE located on your computer? Then your computer is infected. We do suggest you should remove HOSTS_ANTI-ADWARE.EXE from your computer as soon as possible. HOSTS_ANTI-ADWARE.EXE is Trojan/Backdoor. Kill the process HOSTS_ANTI-ADWARE.EXE and remove HOSTS_ANTI-ADWARE.EXE from the Windows startup. Malware Analysis of HOSTS_ANTI-ADWARE.EXE Full path on a computer: %PROGRAMFILES%\HOSTS_ANTI_ADWARES_PUPS\HOSTS_ANTI-ADWARE.EXE Detected by UnHackMe: HOSTS_ANTI-ADWARE.EXE […]
More…

(SOLVED!} PSUASERVICE.EXE is Safe, legitimate software

PSUASERVICE.EXE is a safe file. PSUASERVICE.EXE is Antivirus Tools software related. Check by UnHackme! Antivirus Report of PSUASERVICE.EXE : 0/43 PSUASERVICE.EXE UnHackme Clean! PSUASERVICE.EXE RegRun Clean! PSUASERVICE.EXE NOD32 Clean! PSUASERVICE.EXE Kaspersky Clean! PSUASERVICE.EXE Microsoft Clean! PSUASERVICE.EXE File Information: PSUASERVICE.EXE MD5: 5F1CDC45F75F80206EFB177D1089E816 PSUASERVICE.EXE SHA1: DA39A3EE5E6B4B0D3255BFEF95601890AFD80709 PSUASERVICE.EXE Size: 36640 bytes PSUASERVICE.EXE Description: The file PSUAService.exe has the […]
More…

OFFICE 2010 TOOLKIT AND EZ-ACTIVATOR V 2.1.6 FINAL.EXE is Trojan Hllw

The file OFFICE 2010 TOOLKIT AND EZ-ACTIVATOR V 2.1.6 FINAL.EXE is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete OFFICE 2010 TOOLKIT AND EZ-ACTIVATOR V 2.1.6 FINAL.EXE we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of OFFICE 2010 TOOLKIT AND EZ-ACTIVATOR V 2.1.6 FINAL.EXE Full […]
More…

DUP2PATCHER.DLL is under review

DUP2PATCHER.DLL is unknown, probably legitimate. If the file DUP2PATCHER.DLL is located on your computer, download UnHackMe for free to fix the problem with DUP2PATCHER.DLL. Malware Analysis of DUP2PATCHER.DLL Full path on a computer: %TEMP%\DUP2PATCHER.DLL Detected by UnHackMe: DUP2PATCHER.DLL Default location: %TEMP%\DUP2PATCHER.DLL Removal Results: Success Number of reboot: 1 DUP2PATCHER.DLL is known as: Mal.Keygen-M, Mal.Keygen-M [Sophos] […]
More…

(SOLVED!} IDMGCEXT.CRX is Safe, legitimate software

IDMGCEXT.CRX is a safe file. IDMGCEXT.CRX is Download Manager software related. Check by UnHackme! Antivirus Report of IDMGCEXT.CRX : 0/43 IDMGCEXT.CRX UnHackme Clean! IDMGCEXT.CRX RegRun Clean! IDMGCEXT.CRX NOD32 Clean! IDMGCEXT.CRX Kaspersky Clean! IDMGCEXT.CRX Microsoft Clean! IDMGCEXT.CRX File Information: IDMGCEXT.CRX MD5: 9444B87F14B8440753BBBA51AC2C8C36 IDMGCEXT.CRX SHA1: DA39A3EE5E6B4B0D3255BFEF95601890AFD80709 IDMGCEXT.CRX Size: 68470 bytes IDMGCEXT.CRX Description: Internet Download Manager plugin for […]
More…

SIHOST.EXE is Trojan HLLW

The file SIHOST.EXE is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete SIHOST.EXE we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of SIHOST.EXE Full path on a computer: %APPDATA%\{%USERNAME%-FHLOLKJASFLKJWEFLKJWHGF}\SIHOST.EXE Detected by UnHackMe: After first reboot detected by UnHackMe: SIHOST.EXE Default location: %APPDATA%\{%USERNAME%-FHLOLKJASFLKJWEFLKJWHGF}\SIHOST.EXE Removal Results: Success […]
More…

XVIDSE~1.EXE is Adware Clkpotato

We received the file XVIDSE~1.EXE and detected that XVIDSE~1.EXE is not good. XVIDSE~1.EXE is Adware. You should remove the file XVIDSE~1.EXE. Kill the process XVIDSE~1.EXE and remove XVIDSE~1.EXE from Windows. Malware Analysis of XVIDSE~1.EXE Full path on a computer: %Temp%\IXP000.TMP\XVIDSE~1.EXE Detected by UnHackMe: XVIDSE~1.EXE Default location: %Temp%\IXP000.TMP\XVIDSE~1.EXE Removal Results: Success Number of reboot: 1 XVIDSE~1.EXE […]
More…

SHORTCUT VIRUS REMOVER V3.1.EXE

SHORTCUT VIRUS REMOVER V3.1.EXE is unknown, probably legitimate. If the file SHORTCUT VIRUS REMOVER V3.1.EXE is located on your computer, download UnHackMe for free to fix the problem with SHORTCUT VIRUS REMOVER V3.1.EXE. Malware Analysis of SHORTCUT VIRUS REMOVER V3.1.EXE Full path on a computer: %Temp%\RarSFX0\Shortcut Virus Remover v3.1.exe Detected by UnHackMe: SHORTCUT VIRUS REMOVER […]
More…

_EX-68.EXE is Rootkit MalOb-JI

Rootkit _EX-68.EXE is software that enables continued privileged access to a computer while actively hiding its presence. Detection and removal of _EX-68.EXE may be a very difficult process. You should use anti-rootkit software to fix the _EX-68.EXE problem. Malware Analysis of _EX-68.EXE Full path on a computer: %WinDir%\Temp\_ex-68.exe Detected by UnHackMe: Item Name: MozillaAgent Author: […]
More…

I4JDEL.EXE is Virus Parite

The file i4jdel.exe is malware related. You must delete the file i4jdel.exe immediately! Delete the file i4jdel.exe without delay! Kill the process i4jdel.exe and remove i4jdel.exe from the Windows startup. Malware Analysis of I4JDEL.EXE Full path on a computer: %Temp%\e4j1.tmp_dir\i4jdel.exe Detected by UnHackMe: I4JDEL.EXE Default location: %Temp%\e4j1.tmp_dir\i4jdel.exe Removal Results: Success Number of reboot: 1 I4JDEL.EXE […]
More…