Jump to content

Does anyone recognize what this is? If it is a keylogger what should i do?

Recommended Posts

Hello bbk6566 and :welcome:


Although obviously recognized by the MBAM database/heuristics, the filename is apparently randomized making its hash the only possible easy way left to thoroughly identify its capabilities.

Link to post
Share on other sites

So after doing my scan i found the trojan named localcytozko_Zg.exe and im wondering if anyone recognizes this? If so do you know if its a R.A.T. or a keylogger? And if it is a keylogger is there anyway to locate the text documents?


Go to Virus Total and upload the actual file to their scanner. ( https://www.virustotal.com/en/ ) The random name is irrelevent as 56+ anti-virus engines will do a complete scan and tell you if it's good or bad.



Link to post
Share on other sites

One more thought/suggestion:

You might want to get a bit of free expert help checking and cleaning the system.

We are not permitted to work on possible malware-related issues here in this section of the forum.
Such work is conducted in a special forum area reserved for that purpose, or at the help desk.

So, for expert assistance, I suggest that you might want to please follow the advice in this pinned topic: Available Assistance For Possibly Infected Computers.
It explains the options for free, expert help >>AND<< the suggested, preliminary steps to expedite the process.
A malware analyst will assist you with looking into your issue.


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.