Wednesday, November 26, 2008

SpywareKnight Trojan

Removing SpywareKnight
Categories: Trojan
This loose category includes a variety of Trojans that damage victim machines or
threaten data integrity, or impair the functioning of the victim machine.

Multi-purpose Trojans are also included in this group, as some virus writers
create multi-functional Trojans rather than Trojan packs.
Visible Symptoms:
Files in system folders:
[%COMMON_PROGRAMS%]\SpywareKnight\SpywareKnight on the Web.lnk
[%COMMON_PROGRAMS%]\SpywareKnight\SpywareKnight.lnk
[%COMMON_PROGRAMS%]\SpywareKnight\Uninstall SpywareKnight.lnk
[%DESKTOP%]\SpywareKnight.lnk
[%DESKTOP%]\spywareknight_setup.exe
[%LOCAL_APPDATA%]\SpywareKnight\adesktop_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\explorer_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\fg_files.list
[%LOCAL_APPDATA%]\SpywareKnight\fg_folders.list
[%LOCAL_APPDATA%]\SpywareKnight\hijack.patterns
[%LOCAL_APPDATA%]\SpywareKnight\hijack.places
[%LOCAL_APPDATA%]\SpywareKnight\ie_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\ie_rg.list
[%LOCAL_APPDATA%]\SpywareKnight\kb.bin
[%LOCAL_APPDATA%]\SpywareKnight\kg.bin
[%LOCAL_APPDATA%]\SpywareKnight\kt.bin
[%LOCAL_APPDATA%]\SpywareKnight\rgexplorer_rg.list
[%LOCAL_APPDATA%]\SpywareKnight\rgmisc_rg.list
[%LOCAL_APPDATA%]\SpywareKnight\runcu_sg.list
[%LOCAL_APPDATA%]\SpywareKnight\runlm_sg.list
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\09A180E4.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\458F325B.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\51B4EC5E.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\72478AC7.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\760B8003.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\8754D03D.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\8C759FFA.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\AB0EEEBA.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\C979E988.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\D7C8EB71.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\D9F9A77A.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\FDBC69A3.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\system_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\uistate.bin
[%COMMON_PROGRAMS%]\SpywareKnight\SpywareKnight on the Web.lnk
[%COMMON_PROGRAMS%]\SpywareKnight\SpywareKnight.lnk
[%COMMON_PROGRAMS%]\SpywareKnight\Uninstall SpywareKnight.lnk
[%DESKTOP%]\SpywareKnight.lnk
[%DESKTOP%]\spywareknight_setup.exe
[%LOCAL_APPDATA%]\SpywareKnight\adesktop_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\explorer_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\fg_files.list
[%LOCAL_APPDATA%]\SpywareKnight\fg_folders.list
[%LOCAL_APPDATA%]\SpywareKnight\hijack.patterns
[%LOCAL_APPDATA%]\SpywareKnight\hijack.places
[%LOCAL_APPDATA%]\SpywareKnight\ie_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\ie_rg.list
[%LOCAL_APPDATA%]\SpywareKnight\kb.bin
[%LOCAL_APPDATA%]\SpywareKnight\kg.bin
[%LOCAL_APPDATA%]\SpywareKnight\kt.bin
[%LOCAL_APPDATA%]\SpywareKnight\rgexplorer_rg.list
[%LOCAL_APPDATA%]\SpywareKnight\rgmisc_rg.list
[%LOCAL_APPDATA%]\SpywareKnight\runcu_sg.list
[%LOCAL_APPDATA%]\SpywareKnight\runlm_sg.list
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\09A180E4.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\458F325B.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\51B4EC5E.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\72478AC7.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\760B8003.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\8754D03D.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\8C759FFA.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\AB0EEEBA.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\C979E988.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\D7C8EB71.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\D9F9A77A.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\FDBC69A3.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\system_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\uistate.bin

How to detect SpywareKnight:

Files:
[%COMMON_PROGRAMS%]\SpywareKnight\SpywareKnight on the Web.lnk
[%COMMON_PROGRAMS%]\SpywareKnight\SpywareKnight.lnk
[%COMMON_PROGRAMS%]\SpywareKnight\Uninstall SpywareKnight.lnk
[%DESKTOP%]\SpywareKnight.lnk
[%DESKTOP%]\spywareknight_setup.exe
[%LOCAL_APPDATA%]\SpywareKnight\adesktop_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\explorer_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\fg_files.list
[%LOCAL_APPDATA%]\SpywareKnight\fg_folders.list
[%LOCAL_APPDATA%]\SpywareKnight\hijack.patterns
[%LOCAL_APPDATA%]\SpywareKnight\hijack.places
[%LOCAL_APPDATA%]\SpywareKnight\ie_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\ie_rg.list
[%LOCAL_APPDATA%]\SpywareKnight\kb.bin
[%LOCAL_APPDATA%]\SpywareKnight\kg.bin
[%LOCAL_APPDATA%]\SpywareKnight\kt.bin
[%LOCAL_APPDATA%]\SpywareKnight\rgexplorer_rg.list
[%LOCAL_APPDATA%]\SpywareKnight\rgmisc_rg.list
[%LOCAL_APPDATA%]\SpywareKnight\runcu_sg.list
[%LOCAL_APPDATA%]\SpywareKnight\runlm_sg.list
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\09A180E4.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\458F325B.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\51B4EC5E.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\72478AC7.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\760B8003.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\8754D03D.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\8C759FFA.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\AB0EEEBA.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\C979E988.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\D7C8EB71.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\D9F9A77A.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\FDBC69A3.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\system_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\uistate.bin
[%COMMON_PROGRAMS%]\SpywareKnight\SpywareKnight on the Web.lnk
[%COMMON_PROGRAMS%]\SpywareKnight\SpywareKnight.lnk
[%COMMON_PROGRAMS%]\SpywareKnight\Uninstall SpywareKnight.lnk
[%DESKTOP%]\SpywareKnight.lnk
[%DESKTOP%]\spywareknight_setup.exe
[%LOCAL_APPDATA%]\SpywareKnight\adesktop_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\explorer_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\fg_files.list
[%LOCAL_APPDATA%]\SpywareKnight\fg_folders.list
[%LOCAL_APPDATA%]\SpywareKnight\hijack.patterns
[%LOCAL_APPDATA%]\SpywareKnight\hijack.places
[%LOCAL_APPDATA%]\SpywareKnight\ie_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\ie_rg.list
[%LOCAL_APPDATA%]\SpywareKnight\kb.bin
[%LOCAL_APPDATA%]\SpywareKnight\kg.bin
[%LOCAL_APPDATA%]\SpywareKnight\kt.bin
[%LOCAL_APPDATA%]\SpywareKnight\rgexplorer_rg.list
[%LOCAL_APPDATA%]\SpywareKnight\rgmisc_rg.list
[%LOCAL_APPDATA%]\SpywareKnight\runcu_sg.list
[%LOCAL_APPDATA%]\SpywareKnight\runlm_sg.list
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\09A180E4.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\458F325B.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\51B4EC5E.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\72478AC7.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\760B8003.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\8754D03D.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\8C759FFA.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\AB0EEEBA.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\C979E988.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\D7C8EB71.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\D9F9A77A.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\snapshots\FDBC69A3.filesnap
[%LOCAL_APPDATA%]\SpywareKnight\system_dg.list
[%LOCAL_APPDATA%]\SpywareKnight\uistate.bin

Folders:
[%PROGRAM_FILES%]\SpywareKnight

Registry Keys:
HKEY_CURRENT_USER\software\spywareknight
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\spywareknight_is1

Removing SpywareKnight:

You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.

Or buy it to remove ALL viruses from your computer.

Also Be Aware of the Following Threats:
LiveProtection Ransomware Symptoms

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)