IESMON.DLL is Trojan Agent
Is the file IESMON.DLL located on your computer? Then your computer is infected.
We do suggest you should remove IESMON.DLL from your computer as soon as possible.
IESMON.DLL is Trojan/Backdoor.
Kill the process IESMON.DLL and remove IESMON.DLL from the Windows startup.
Malware Analysis of IESMON.DLL
Full path on a computer: %Program Files%\joyalrim\iesmon.dll
Detected by UnHackMe:
Item Name: {52509E54-45F9-4EF1-8F2D-DBDEBF97C4BF}
Author:
Related File: %PROGRAM FILES%\JOYALRIM\IESMON.DLL
Type: Browser Helper Objects
Item Name: joyalrim
Author:
Related File: %PROGRAM FILES%\JOYALRIM\JMGRUP.EXE
Type: Registry Run
Item Name: jmgr.exe
Author:
Related File: %PROGRAM FILES%\JOYALRIM\JMGR.EXE
Type: Running Processes
Item Name: emgr.exe
Author: Company
Related File: %PROGRAM FILES%\JOYALRIM\EMGR.EXE
Type: Running Processes
Removal Results: Success
Number of reboot: 1
IESMON.DLL is known as:
Trojan.Agent
IESMON.DLL hash:
- MD5: 9dfc3cb6071f734be3e198b2f3a98236
The file is used for downloading and installing other malware, Trojans, viruses by the commands received from the Command Center.
How to quickly detect IESMON.DLL presence?
Registry:
Folders:
Files:
Registry:- HKLM\Software\Classes\CLSID\{52509E54-45F9-4EF1-8F2D-DBDEBF97C4BF}\InprocServer32\: “%Program Files%\joyalrim\iesmon.dll”
- HKLM\Software\Classes\CLSID\{FDEA2958-8FEE-4F41-A8B4-3D5AD7B52EA5}\InprocServer32\: “%Program Files%\joyalrim\joymmgr.dll”
- HKLM\Software\Microsoft\Windows\CurrentVersion\Run\joyalrim: “%Program Files%\joyalrim\jmgrup.exe”
Folders:- %Program Files%\joyalrim
Files:- %Program Files%\joyalrim\emgr.exe
- %Program Files%\joyalrim\iesmon.dll
- %Program Files%\joyalrim\jmgr.exe
- %Program Files%\joyalrim\jmgrup.exe
- %Program Files%\joyalrim\joymmgr.dll
- %Program Files%\joyalrim\uninstall.exe
Recommended: UnHackMe anti-rootkit and anti-malware
Premium software: RegRun Security Suite (Good choice for removal and protection)
