Cybert Sitter

Description:	Keylogger
Risk Level:	Low
Date of First Occurence:	Monday, April 21, 2008
Software Developer:	(unknown)
Brief Info:	Keyloggers invisibly monitor and record all of your computer activity. This information is then automatically emailed to an anonymous user.
Removal:	This threat can be removed using "Spyware Terminator"

SCAN & REMOVE NOW »

Geographical Distribution of Threat "Cybert Sitter"

Threat Info

View All

Detected Items

Detected Files: %SYSDIR%\wfileu.drv MD5: C8AEEE7C3A832268B22C85499D59149C Size:5880 MD5: 318281FD064047FEEAE215B93F853CCB Size:5692 MD5: 28688C3AF0F4AFC1CCE5B36FD1379BFF Size:5338 MD5: 0E25D75CE8294D3BF37F19CF205C0FB3 Size:5490 MD5: 31662A749B4C3239204E3F2666FE73A1 Size:5160 MD5: 4A12F2188CA8C8D8949756FE8170A4CA Size:5880 MD5: 2207FA52423E72C443291B36EC6C66A3 Size:5880 MD5: F934F941AFD3BA8D69EC7F7EF5A34BB0 Size:680 MD5: 1ADD831EF7F66E260DAC15155DD9B94E Size:5880 MD5: 578093055EA461E861EB2AA75FD692B7 Size:5692 MD5: 52E9AB579B51AB27646C975AFC0895CD Size:5338 MD5: 8F7346CBDAFB494D846E4F8DA3D0015F Size:5692 and more.... %SYSDIR%\viofil.dll MD5: 6C010FD52FDE45EB7F491F3D15F7D618 Size:3818 MD5: B33B0D28A2BBFE8519F7335C51DD8DB4 Size:4162 MD5: 81D15381DF85723F73C6CF44A5666D67 Size:4084 MD5: CE7507B210682371A734EAFE2F7939B8 Size:4084 %SYSDIR%\vgamfil.dll MD5: 80A386060D06FD28BE830767A2134116 Size:4826 MD5: A3DBB09E1226A02504EC9FE1710D6DEF Size:5782 MD5: CE2D70AA0FC9D139787DEE4C503F3A27 Size:5782 %SYSDIR%\srchin.dll MD5: DADDE7D502CD206E92B4A8501D16D6D0 Size:3444 %SYSDIR%\snetfil.dll MD5: 7EEDFEE3C234966B6EBEF8AC297CA33A Size:652 MD5: B61B4AB87543EC4DBE3045AA7061768F Size:592 MD5: DF59E5986D3A05B1D8D02178898235D4 Size:514 MD5: 09CC779E69AC2EC923774E38B392019C Size:628 %SYSDIR%\picsfil.dll MD5: CDC952675214E545A1F1CD44DD6CF52A Size:306 %SYSDIR%\lgwfil.dll MD5: B283885E0640AE92D1B57ED56ABD6421 Size:3360 MD5: 3862B54714AB19385868874DC4987BE9 Size:3286 MD5: 2F0149C9B9B372C62E76A99192A3008E Size:2706 MD5: 4F5333EA5657A944B287D595F936CB71 Size:2782 MD5: EC7AF5E481725E04AADEAE57382954E7 Size:2902 %SYSDIR%\imgfil.dll MD5: D8EAC83A1AA770541AE4A0C5632225B1 Size:1100 MD5: DA836947B1124C6CEA72D03FC3DEE4D6 Size:496 MD5: ED0A6E71486DC1C2D40249B135F02736 Size:980 MD5: 898D8EBD5D1F6E1D7CE36C3BEA67DBD9 Size:1018 %SYSDIR%\iawfil.dll MD5: 26267CD9C6DE92D5ABF3CD907F44E0E2 Size:5180 MD5: 0E023ECF5087FBA2788C07268F53C837 Size:4572 MD5: 9C53425D2DD2FCF1CE014A982C894D00 Size:5142 %SYSDIR%\hatfil.dll MD5: 6DAF1F6749D1CB7CA3A4B2B464138CE6 Size:4442 %SYSDIR%\gdwfil.dll MD5: B903D35BA8433C365369029609C3A7D2 Size:1378 MD5: B09E59D5433D20B78B152DEEE5645251 Size:1328 MD5: D2516C6C39F6BE8B4E09F1FDCDB23FE7 Size:1482 MD5: 9FAA2301F3D6F4619CCEE2641DC183BD Size:1482 MD5: BC8D842E0E1F2C095019E8138F167E3A Size:1378 MD5: E9EC9B32B5C69B5C004E670C460754DD Size:1352 MD5: 1D953913C88872E895636C464E915EE2 Size:1482 MD5: 28E75493C4D6E14E6579CA093EA160FE Size:1482 MD5: 44E583830233317D9F6E5DE15B02886D Size:1352 %SYSDIR%\gblfil.dll MD5: 95B048D76D9E0F91134A26C8B9D201A3 Size:13034 MD5: 21EBE3A9F30542DFE3C79FD7845D430C Size:13070 MD5: 202BA2DB3ABFEAD7734B15B09CAE20D2 Size:13036 MD5: DA83FA647A12FDDCD726FF5FCA14F3BC Size:13036 %SYSDIR%\cultfil.dll MD5: F3A3A8A36D96E76200134E4DEC9F05D3 Size:1830 %SYSDIR%\chtfil.dll MD5: 423FD4AB1F3A161679F676C899F75457 Size:10862 MD5: DCF4B5694151BC21BFFCA7352C709872 Size:10906 MD5: 128DDB5AAA40704BA86E879C99BCB383 Size:10644 MD5: 6D328DCC0D3340E9AAC289296E3546FB Size:10834 MD5: FC3BC0DC03DA3B67EF4053E13F2151B1 Size:10906 %SYSDIR%\adwfil.dll MD5: 8704E4F55331A6251833A69F548D350F Size:94868 MD5: 79C4F935BED7253B155FF985FF15FC36 Size:92174 MD5: 94C7C23419C8236B517F6A3B778A080A Size:88076 MD5: 895924F25474FA0468976F9D5AF0F28C Size:75088 MD5: BFBB0ECC735A57CDDFC95375E1161168 Size:55542 MD5: CBC13F81AA360371A4ACE800A218DFC0 Size:81712 MD5: 34D25081D794D85BDF1403F2C3B9D1AD Size:93526 MD5: B1DBD1647177A186200FE7166BF3F1D8 Size:94356 %SYSDIR%\mslspc.exe MD5: E73598EB990D76A4311A3BBF04838753 Size:121856 MD5: 223E9F22A6483FA3E61B7BF400002F2B Size:32768 %WINDIR%\Cyb2k.exe MD5: CDFA0AC237741C086A0FB64C786E723F Size:3106816 MD5: 3FB8C1AA4506FCE080897830953AA24A Size:3082752 MD5: 2E455A2336E4E9217DBD541D4F952745 Size:3163648 %SYSDIR%\srchout.dll MD5: E7AD720FB8ABE74582F47BEA7E9425EC Size:258 %SYSDIR%\lspcs.dll MD5: 11C0CFC6E0A251F7EED8AD89F8CB384A Size:159744 %SYSDIR%\wfileu.drv MD5: 3F263E4BF0D4E329341CA7A6C0463D1F Size:5880 MD5: 993527609685808CAD9F0281AFBF099E Size:5692
Detected Files with variable Filenames:

Detecting items list:

Files by Name %WINDIR%\Cyb2k.exe %SYSDIR%\mslspc.exe %SYSDIR%\adwfil.dll %SYSDIR%\chtfil.dll %SYSDIR%\cultfil.dll %SYSDIR%\gblfil.dll %SYSDIR%\gdwfil.dll %SYSDIR%\hatfil.dll %SYSDIR%\iawfil.dll %SYSDIR%\imgfil.dll %SYSDIR%\lgwfil.dll %SYSDIR%\picsfil.dll %SYSDIR%\snetfil.dll %SYSDIR%\srchin.dll %SYSDIR%\srchout.dll %SYSDIR%\vgamfil.dll %SYSDIR%\viofil.dll %SYSDIR%\lspcs.dll %SYSDIR%\wfileu.drv
Registry Values HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ValueName=C2K

« Go to Software Database

Search in Our Software Database

Browse Software Database

Latest Malware News

September 23, 2011

Among one of the most active spywares currently is without a doubt Trojan.MicroFake.ba. It attacks in conjunction with Rogue antispyware applications and forces users to purchase these fake applications. Using rootkit techniques is very typical of this Trojan to help it hide from users and the system, making it hard to trace. We recommend regular updating of our database and an active real-time protection with antivirus.

Older malware news »