TNT2USER.EXE is Trojan Barys

Dmitry Sokolov recommends UnHackMe!


UnHackMe quickly removes pop-up ads, search redirecting, browser hijack, spyware, keyloggers, PC slowdown issues. Download Now!

Download free e-book [PDF]: "How to Easily Remove Malware with UnHackMe"

Join us on Facebook
Click to Download
Solved! The issue has been fixed!
5 Stars (5 / 5)


Share This:

We checked some samples of TNT2USER.EXE and detected the file TNT2USER.EXE as threat.
Remove the TNT2USER.EXE file from your computer right now.
Removal tool: http://www.unhackme.com

Malware Analysis of TNT2USER.EXE
Full path on a computer: %Local Appdata%\TNT2\2.0.0.1534\TNT2User.exe

Detected by UnHackMe:

TNT2USER.EXE
Default location: %Local Appdata%\TNT2\2.0.0.1534\TNT2User.exe


Your Vote?
0 0

Removal Results: Success
Number of reboot: 1

TNT2USER.EXE is known as:

Trojan.Barys

TNT2USER.EXE hash:

  • MD5: c89c47f425982d3d5100857af83939c1
How to quickly detect TNT2USER.EXE presence?

Registry:
  • HKLM\Software\Classes\xmlfile\shell\Open\command\: “”%Program Files%\Internet Explorer\IEXPLORE.EXE” -nohome”
  • HKLM\Software\Classes\xslfile\shell\Open\command\: “”%Program Files%\Internet Explorer\IEXPLORE.EXE” -nohome”
Folders:
  • %Local Appdata%\TNT2
  • %Local Appdata%\TNT2\2.0.0.1534
Files:
  • %Local Appdata%\TNT2\2.0.0.1534\Autorun.inf
  • %Local Appdata%\TNT2\2.0.0.1534\crx.tar
  • %Local Appdata%\TNT2\2.0.0.1534\ffassist.1.dll
  • %Local Appdata%\TNT2\2.0.0.1534\GLOBALUNINSTALL.TNT
  • %Local Appdata%\TNT2\2.0.0.1534\hmac.1.dll
  • %Local Appdata%\TNT2\2.0.0.1534\ie8starter.exe
  • %Local Appdata%\TNT2\2.0.0.1534\iehpr.1.dll
  • %Local Appdata%\TNT2\2.0.0.1534\iestage2.1.dll
  • %Local Appdata%\TNT2\2.0.0.1534\IEToolbar.dll
  • %Local Appdata%\TNT2\2.0.0.1534\IEToolbar64.dll
  • %Local Appdata%\TNT2\2.0.0.1534\INSTALL.TNT
  • %Local Appdata%\TNT2\2.0.0.1534\log.dll
  • %Local Appdata%\TNT2\2.0.0.1534\npTNT2.dll
  • %Local Appdata%\TNT2\2.0.0.1534\npTNT2Ghost.dll
  • %Local Appdata%\TNT2\2.0.0.1534\OldStyleSB.1.dll
  • %Local Appdata%\TNT2\2.0.0.1534\PARTNER.TNT
  • %Local Appdata%\TNT2\2.0.0.1534\passport.dll
  • %Local Appdata%\TNT2\2.0.0.1534\passport64.dll
  • %Local Appdata%\TNT2\2.0.0.1534\pinnedSearch.htm
  • %Local Appdata%\TNT2\2.0.0.1534\pinnedSearch_FindWide.htm
  • %Local Appdata%\TNT2\2.0.0.1534\progress.1.dll
  • %Local Appdata%\TNT2\2.0.0.1534\regsvr.1.dll
  • %Local Appdata%\TNT2\2.0.0.1534\RemoteSkin.wms
  • %Local Appdata%\TNT2\2.0.0.1534\sqlite.1.dll
  • %Local Appdata%\TNT2\2.0.0.1534\tnt2chrome.dll
  • %Local Appdata%\TNT2\2.0.0.1534\TNT2User.exe
  • %Local Appdata%\TNT2\2.0.0.1534\TNT2UserPS.dll
  • %Local Appdata%\TNT2\2.0.0.1534\TNT2UserPS64.dll
  • %Local Appdata%\TNT2\2.0.0.1534\TntMagicDel.dll
  • %Local Appdata%\TNT2\2.0.0.1534\UnInjLib.dll
  • %Local Appdata%\TNT2\2.0.0.1534\UnInjLib64.dll
  • %Local Appdata%\TNT2\2.0.0.1534\UNINSTALL.TNT
  • %Local Appdata%\TNT2\2.0.0.1534\UninstallDlg.1.dll
  • %Local Appdata%\TNT2\2.0.0.1534\untar.1.dll
  • %Local Appdata%\TNT2\2.0.0.1534\UPDATE.TNT
  • %Local Appdata%\TNT2\2.0.0.1534\xpi.tar
  • %Local Appdata%\TNT2\2.0.0.1534\zipunzip.1.dll

1. Download UnHackMe free 30-day version

UnHackMe removes Adware/Spyware/Unwanted Programs/Browser Hijackers/Search Redirectors from your PC easily.

Free Download

UnHackMe is compatible with most antivirus software.
UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses, trojans and backdoors. VirusTotal (0/56).
System Requirements: Windows 2000-Windows 8.1/10 32 or 64-bit. UnHackMe uses minimum of computer resources.

2. Double click on UnHackMe_setup.exe

You will see a confirmation screen with verified publisher: Greatis Software. Verified Publisher Greatis Software

Once UnHackMe has installed has installed the first Scan will start automatically

Review the detected threats

3. Carefully review the detected threats!

Click Remove button or False Positive.

What to do if you are unable to solve a problem?

UnHackMe Remote Assistant
  1. Open UnHackMe main screen.
  2. Click on a Remote Assistant button.
  3. Follow instructions on a screen.
  4. We will contact you and send a solution of your problem.
  5. Remote assistance is free during trial period.

Enjoy!

Dmitry Sokolov - author of UnHackMe