Valery Kuzniatsou

Publisher Information

Valery Kuzniatsou is a software developer located in Minsk, BY*. A majority of the programs developed by the company can be classified as adware or other potentially unwanted programs. Thre are 3 additional code signing certificates issued to this publisher.
Remove Valery Kuzniatsou Malware - Powered by Reason Core Security
Authority:
COMODO CA Limited

Valid from:
5/7/2013 8:00:00 PM

Valid to:
5/8/2014 7:59:59 PM

Subject:
CN=Valery Kuzniatsou, O=Valery Kuzniatsou, STREET=Slobodskaia st. 167-101, L=Minsk, S=Minsk, PostalCode=220025, C=BY

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00a601e2c6237bbf4fbbc63ff2151af4b9

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.ValeryKuzniatsou.M, PUP.Installer.ValeryKuzniatsou.J, PUP.Installer.ValeryKuzniatsou.Q, PUP.Installer.ValeryKuzniatsou.O, PUP.ValeryKuzniatsou.H, PUP.ValeryKuzniatsou.I, PUP.Installer.ValeryKuzniatsou.L, PUP.ValeryKuzniatsou.D, PUP.ValeryKuzniatsou.J, PUP.Installer.ValeryKuzniatsou.S, PUP.ValeryKuzniatsou.K, PUP.ValeryKuzniatsou (M), KeyLogger.Heavenward.ValeryKuzniatsou.Installer.Meta, KeyLogger.Heavenward.ValeryKuzniatsou.Meta
100.00%

Comodo Security
Application.Win32.LightLogger.~BC, UnclassifiedMalware
6.06%

VIPRE Antivirus
Trojan.Win32.Generic
6.06%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud), VIRUS_UNKNOWN
6.06%

Fortinet FortiGate
Riskware/LightLogger
6.06%

Trend Micro House Call
TROJ_GEN.F47V0911, TROJ_GE.48818833
6.06%

ESET NOD32
Win32/KeyLogger.LightLogger (variant)
6.06%

Dr.Web
Program.Keylogger.65
6.06%

Quick Heal
Spyware.LightLogger (Not a Virus)
3.03%

Qihoo 360 Security
Win32/Trojan.Keylog.23c
3.03%

1 / 68      (Malware)
fkwinmon.dll (FreeKeylogger by Valery Kuzniatsou)  (b0284d26994b1e6fd091fb8201f8d845)

1 / 68      (Malware)

1 / 68      (PUP)
WinDetect.exe (WinDetect by HeavenWard)  (2f02429435341dbbbdd4233eaa5cf9ea)

1 / 68      (PUP)
cfu.exe (Check for update by HeavenWard)  (4e8701d931987bc12b7c92c0325fce0a)

1 / 68      (PUP)
WinDetect.sys (WinDetect by HeavenWard)  (5752aad8c31b8c672e73e4a610d52ae4)

1 / 68      (PUP)
llrun64.exe (LightLogger by HeavenWard)  (91ae4845c4e85c65e6609795de03d9d7)

1 / 68      (PUP)
ladmin64.exe (LightLogger by HeavenWard)  (09668026de5ce50677f645006c9cff2d)

1 / 68      (PUP)
cfu.exe (Check for update by HeavenWard)  (c303d89fa3e325efabc069003a81d4c8)

1 / 68      (PUP)
adminpanel64.exe  (0bb8048ad691e1244826de2fd8f17ce6)

2 / 68      (PUP)
llmon64.dll (LightLogger by HeavenWard)  (33101a05181f272fa470a1661b6e7cc2)

1 / 68      (PUP)
llsvc64.dll (LightLogger by HeavenWard)  (59ba481b2a53ec98a6c7169fa1d177da)

1 / 68      (PUP)
llkmon64.dll (LightLogger by HeavenWard)  (5a0e451eebbf4f0e16b1f223ddf70c88)

1 / 68      (PUP)
ladmin.1081.dll (LightLogger by Valery Kuzniatsou)  (9eacfacf50bb9061c5758229f0924466)

1 / 68      (PUP)
llrun64.exe (LightLogger by HeavenWard)  (33ca7007897c68724aee130d8c903dc8)

1 / 68      (PUP)
ladmin64.exe (LightLogger by HeavenWard)  (fb8d8d27cc7bcc48e27cf0d108e8c5cd)

1 / 68      (PUP)
cfu.exe (Check for update by HeavenWard)  (6d0080518ca90db7caaabea6f11e4a17)

1 / 68      (PUP)
adminpanel64.exe  (a08366d79e1e57af832c52d1b58d0755)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)
removeany.exe (RemoveAny by HeavenWard)  (c2ed35feb156fd8464893ddf21b41ec8)

1 / 68      (PUP)
cfu.exe (Check for update by HeavenWard)  (2d4357eb5cf590d25ee51b4c718b083e)

1 / 68      (PUP)
fkwinmon.dll (FreeKeylogger by Valery Kuzniatsou)  (daa90a79e70fbdbe8a90c165a06c6c38)

1 / 68      (PUP)

9 / 68      (PUP)
lightloggersetup.exe (LightLogger by HeavenWard)  (ee39dfa1e66091b510f3512cefb84421)

1 / 68      (PUP)
llsvc64.dll (LightLogger by HeavenWard)  (22089867c1883bdc0b4d7c64dbb31987)

1 / 68      (PUP)
llkmon64.dll (LightLogger by HeavenWard)  (3c096376cd77b21ea90f31f01bfd4bc7)

1 / 68      (PUP)
llmon64.dll (LightLogger by HeavenWard)  (db8c9dfd82512039c418e16351352436)

1 / 68      (PUP)
WinDetect.sys (WinDetect by HeavenWard)  (64eedebf574a3f4b7c19b4decdac8f2c)

1 / 68      (PUP)
removeanysetup.exe (RemoveAny by HeavenWard)  (befbac4cc336de11b542104048763dba)

1 / 68      (PUP)
windetectsetup.exe (WinDetect by HeavenWard)  (631944132bf4adc4ea141ba2d83e19ed)

 
Latest 30 of 33 files

Downloads URLs for files signed by Valery Kuzniatsou.

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)
http://www.hwsuite.com/static/.../FreeKeyloggerSetup.exe  (4e81f2e4405f2f460e4894fa5310e417)

9 / 68      (PUP)
http://nl.hwsuite.com/static/.../lightloggersetup.exe  (ee39dfa1e66091b510f3512cefb84421)

8 / 68      (PUP)
http://www.hwsuite.com/static/.../lightloggersetup.exe  (d13d593eac364b68847b40a1b840f485)

The following websites host and distribute files published by Valery Kuzniatsou.

The certificates below are also signed by Valery Kuzniatsou.

0360B9513648FD46307D4CE9D2640BEB  (May 21, 2014 to May 21, 2016)

00FF62F0BFC644D25A5056E4EE71F5FDBA  (May 10, 2012 to May 11, 2013)

7F9B5967BFBFB7F7613E0268C57CCF79  (May 17, 2011 to May 17, 2012)

The following publishers (by Authenticode signature organization name) are related.

30 of 66 publishers

Remove Valery Kuzniatsou Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to Valery Kuzniatsou by COMODO CA Limited on May 07, 2013 with the serial number '00a601e2c6237bbf4fbbc63ff2151af4b9'.