STRUCTURES.EXE is Trojan OnLineGames
The file STRUCTURES.EXE is malware related. You must delete the file STRUCTURES.EXE immediately! Delete the file STRUCTURES.EXE without delay! Kill the process STRUCTURES.EXE and remove STRUCTURES.EXE from the Windows startup. Malware Analysis of STRUCTURES.EXE Full path on a computer: %Program Files%severalstructures.exe Detected by UnHackMe: STRUCTURES.EXE Default location: %Program Files%severalstructures.exe Removal Results: Success Number of reboot: [...]
SUCKEN1.DAT is Trojan OnLineGames
We checked some samples of SUCKEN1.DAT and detected the file SUCKEN1.DAT as threat. Remove the SUCKEN1.DAT file from your computer right now. Removal tool: http://www.unhackme.com Malware Analysis of SUCKEN1.DAT Full path on a computer: %SysDir%sucken1.dat Detected by UnHackMe: Item Name: alcneamce.dll Author: Unknown Related File: %PROGRAM FILES%JVIWERALCNEAMCE.DLL Type: WinSock2 Components Removal Results: Success Number of [...]
WS2HELP.DLL is Trojan OnLineGames
The system file WS2HELP.DLL is infected with a virus. We recommend you to replace the WS2HELP.DLL file with its backup copy. Malware Analysis of WS2HELP.DLL Full path on a computer: %SysDir%ws2help.dll Detected by RegRun Warrior: WS2HELP.DLL Default location: %SysDir%ws2help.dll Removal Results: Success Number of reboot: 1 WS2HELP.DLL is known as: Trojan.OnLineGames WS2HELP.DLL hash: MD5: f69e2aca2ccc43ded71718bfed0cb228 [...]
AHNURL.SYS is Trojan OnLineGames
The file AHNURL.SYS is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete AHNURL.SYS we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of AHNURL.SYS Full path on a computer: %SysDir%\drivers\ahnurl.sys After first reboot detected by UnHackMe: Item Name: ahnurl Author: Related File: %SYSDIR%\DRIVERS\AHNURL.SYS Type: Services detected [...]
AMVO.EXE is Trojan OnlineGames
Is the file AMVO.EXE located on your computer? Then your computer is infected. We do suggest you should remove AMVO.EXE from your computer as soon as possible. AMVO.EXE is Trojan/Backdoor. Kill the process AMVO.EXE and remove AMVO.EXE from the Windows startup. Malware Analysis of AMVO.EXE Full path on a computer: %SysDir%\amvo.exe Detected by UnHackMe: Item [...]
MSISUE.DLL is trojan OnlineGames
Is the file MSISUE.DLL located on your computer? Then your computer is infected. We do suggest you should remove MSISUE.DLL from your computer as soon as possible. MSISUE.DLL is Trojan/Backdoor. Kill the process MSISUE.DLL and remove MSISUE.DLL from the Windows startup. Malware Analysis of MSISUE.DLL Full path on a computer: %WinDir%\msisue.dll Detected by UnHackMe: Item [...]
MSDYAPI.DLL is trojan OnLineGames
We checked some samples of MSDYAPI.DLL and detected the file MSDYAPI.DLL as threat. Remove the MSDYAPI.DLL file from your computer right now. Removal tool: http://www.unhackme.com Malware Analysis of MSDYAPI.DLL Full path on a computer: %WinDir%\msdyapi.dll Detected by UnHackMe: Item Name: CDBurn Author: Unknown Related File: %WinDir%\MSDYAPI.DLL Type: Shell Services DelayLoad F2CD7746.Z Default location: %WinDir%\f2cd7746.z Removal [...]
MGT99018.OCX is trojan OnlineGames
Is the file MGT99018.OCX located on your computer? Then your computer is infected. We do suggest you should remove MGT99018.OCX from your computer as soon as possible. MGT99018.OCX is Trojan/Backdoor. Kill the process MGT99018.OCX and remove MGT99018.OCX from the Windows startup. Malware Analysis of MGT99018.OCX Full path on a computer: %WinDir%\system32\mgt99018.ocx Detected by UnHackMe: Item [...]
SYS.TMP is trojan OnLineGames
Is the file SYS.TMP located on your computer? Then your computer is infected. We do suggest you should remove SYS.TMP from your computer as soon as possible. SYS.TMP is Trojan/Backdoor. Kill the process SYS.TMP and remove SYS.TMP from the Windows startup. Malware Analysis of SYS.TMP Full path on a computer: %WinDir%\sys.tmp Detected by UnHackMe: Item [...]
XP32.DLL is trojan OnlineGames
Is the file XP32.DLL located on your computer? Then your computer is infected. We do suggest you should remove XP32.DLL from your computer as soon as possible. XP32.DLL is Trojan/Backdoor. Kill the process XP32.DLL and remove XP32.DLL from the Windows startup. Malware Analysis of XP32.DLL Full path on a computer: %SysDir%\xp32.dll Detected by UnHackMe: Item [...]
LAESS.EXE – trojan OnLineGames
The file LAESS.EXE is malware related. You must delete the file LAESS.EXE immediately! Delete the file LAESS.EXE without delay! Kill the process LAESS.EXE and remove LAESS.EXE from the Windows startup. Malware Analysis of “LAESS.EXE” Executed: tw1121.exe Removed: laess.exe. Full path: C:\laess.exe Detected by UnHackMe: Item Name: cao Author: Unknown Related File: C:\LAESS.EXE Type: Registry RunOnce [...]
DBR0003.OCX – trojan OnlineGames
Is the file DBR0003.OCX located on your computer? Then your computer is infected. We do suggest you should remove DBR0003.OCX from your computer as soon as possible. DBR0003.OCX is Trojan/Backdoor. Kill the process DBR0003.OCX and remove DBR0003.OCX from the Windows startup. Malware Analysis of “DBR0003.OCX” Executed: z5.exe Removed: dbr0003.ocx. Full path: C:\WINDOWS\system32\dbr0003.ocx Detected by RegRun [...]
ieban0.dll – trojan OnLineGames
The file ieban0.dll is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete ieban0.dll we suggest you should use UnHackMe: http://www.unhackme.com Malware Analysis of ieban0.dll Executed: 0i86rk.exe Removed: ieban0.dll. Full path: C:\WINDOWS\system32\ieban0.dll —————————————————————————————————————————- How to quickly detect malware presence? Files: C:\WINDOWS\system32\cyban.exe C:\WINDOWS\system32\cyban0.dll C:\WINDOWS\system32\ieban0.dll C:\WINDOWS\system32\v3avast.exe C:\WINDOWS\system32\v3avie0.dll C:\WINDOWS\system32\v3avmn0.dll C:\WINDOWS\system32\wuaucldt.exe [...]
win32.dll – trojan OnLineGames
The file win32.dll is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete win32.dll we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of win32.dll Executed: cd.exe Removed: win32.dll. Full path: C:\WINDOWS\system32\win32.dll —————————————————————————————————————————- Detected by UnHackMe: Item Name: AppInit_DLLs Author: Unknown Related File: win32.dll Type: List of [...]
midimap32.dll – trojan OnLineGames
Is the file midimap32.dll located on your computer? Then your computer is infected. We highly recommend you to remove midimap32.dll from your computer as soon as possible. midimap32.dll is Trojan/Backdoor. Kill the process midimap32.dll and remove midimap32.dll from the Windows startup. Malware Analysis of midimap.dll Executed: data.exe Restored: midimap.dll. Full path: C:\WINDOWS\system32\midimap.dll —————————————————————————————————————————- Detected by [...]
winweng.exe – trojan OnLineGames
Is the file winweng.exe located on your computer? Then your computer is infected. We highly recommend you to remove winweng.exe from your computer as soon as possible. winweng.exe is Trojan/Backdoor. Kill the process winweng.exe and remove winweng.exe from the Windows startup. Malware Analysis of winweng.exe Executed: 5ad2fa9afed593f17d37a36f66f6e82e.exe Removed: winweng.exe. Full path: C:\WINDOWS\system\winweng.exe —————————————————————————————————————————- Detected by [...]
imm32.dll – trojan OnLineGames
The file imm32.dll is identified as the Trojan Program that is used for stealing bank information and users passwords. To delete imm32.dll we recommend you to use UnHackMe: http://www.unhackme.com Malware Analysis of imm32.dll Executed: C:\sand-box\3p.exe Restored: imm32.dll. Full path: C:\WINDOWS\system32\imm32.dll —————————————————————————————————————————- Detected by UnHackMe in “Multi AntiVirus scan” mode: IMM32.DLL Default location: C:\WINDOWS\SYSTEM32\IMM32.DLL MD5: EFA549642543A0C6135CF5F0AF1C8EA1 [...]
dsound.dll – trojan OnLineGames
The system file dsound.dll is infected with a virus. We recommend you to replace the dsound.dll file with its backup copy. Restored: dsound.dll. Full path: C:\WINDOWS\system32\dsound.dll —————————————————————————————————————————- Detected by UnHackMe: Item Name: E0200804 Author: Related File: C:\WINDOWS\system32\DBR99000.OCX Type: Keyboard Listeners Detected by UnHackMe in “Multi AntiVirus scan” mode: COMRES.DLL Default location: C:\WINDOWS\SYSTEM32\COMRES.DLL MD5: 170FF4A40353C59BCA5F07C5597D3338 SHA1: [...]
comres.dll – trojan OnLineGames
The system file comres.dll is infected with a virus. We recommend you to replace the comres.dll file with its backup copy. Restored: comres.dll. Full path: C:\WINDOWS\system32\comres.dll —————————————————————————————————————————- Detected by UnHackMe: Item Name: E0200804 Author: Related File: C:\WINDOWS\system32\DBR99000.OCX Type: Keyboard Listeners Detected by UnHackMe in “Multi AntiVirus scan” mode: COMRES.DLL Default location: C:\WINDOWS\SYSTEM32\COMRES.DLL MD5: 170FF4A40353C59BCA5F07C5597D3338 SHA1: [...]
dbr99000.ocx – trojan OnLineGames
The file dbr99000.ocx is malware related. You must delete the file dbr99000.ocx immediately! Delete the file dbr99000.ocx without delay! Kill the process dbr99000.ocx and remove dbr99000.ocx from Windows startup. Malware Analysis of dbr99000.ocx Removed: dbr99000.ocx. Full path: C:\WINDOWS\system32\dbr99000.ocx —————————————————————————————————————————- Detected by UnHackMe: Item Name: E0200804 Author: Related File: C:\WINDOWS\system32\DBR99000.OCX Type: Keyboard Listeners Detected by UnHackMe [...]
Restored: comres.dll, ddraw.dll, dsound.dll (trojan OnLineGames)
Malware: a22.exe Restored: C:\WINDOWS\system32\comres.dll C:\WINDOWS\system32\ddraw.dll C:\WINDOWS\system32\dsound.dll —————————————————————————————————————————- Detected by RegRun Warrior: 1. RegRun Reanimator: – none – 2. Multi AntiVirus scan: DDRAW.DLL Default location: C:\WINDOWS\SYSTEM32\DDRAW.DLL MD5: B3AE32BA155D224E5EEA5FB2E623E7D4 SHA1: 45969115 92DEDB4F B5A003F2 11AAEB0F 6F585C40 File Size: 281 088 DSOUND.DLL Default location: C:\WINDOWS\SYSTEM32\DSOUND.DLL MD5: EA76DBDC0D1691892E7BADA8728F458E SHA1: F33A928E 4C58886C 9451DF7A B7196574 2E94DD9D File Size: 369 152 COMRES.DLL Default [...]
Restored: C:\WINDOWS\system32\imm32.dll (trojan OnLineGames)
Malware: C:\sand-box\ya.exe Restored: C:\WINDOWS\system32\imm32.dll —————————————————————————————————————————- Detected by UnHackMe: Item Name: IMM32.DLL Author: Microsoft Corporation Related File: C:\WINDOWS\SYSTEM32\IMM32.DLL Type: Infected System Files Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- How to quickly detect malware presence? Files: C:\Documents and Settings\Administrator\Local Settings\Temp\~t01.tmp C:\WINDOWS\system32\imm32.dll.log C:\WINDOWS\system32\ole.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.08.01 – Kaspersky 7.0.0.125 [...]
Restored: C:\WINDOWS\system32\comres.dll (trojan OnLineGames)
Malware: C:\sand-box\11.exe Restored: C:\WINDOWS\system32\comres.dll —————————————————————————————————————————- Detected by UnHackMe: Item Name: COMRES.DLL Author: Microsoft Corporation Related File: C:\WINDOWS\SYSTEM32\COMRES.DLL Type: Infected System Files Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- How to quickly detect malware presence? Registry: HKLM\Software\DeepSea\Dll Value: “win32mxd.dll” Files: C:\WINDOWS\system32\SysComs.dll C:\WINDOWS\system32\win32mxd.dll —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.07.20 Trojan.Generic.KD.21067 Kaspersky 7.0.0.125 [...]
Removed: C:\Documents and Settings\Administrator\Application Data\hvex.exe (trojan OnLineGames)
Malware: image(1).exe Removed: C:\Documents and Settings\Administrator\Application Data\hvex.exe —————————————————————————————————————————- Detected by UnHackMe: Item Name: taskman Author: Malware Farms Related File: C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\HVEX.EXE Type: Winlogon System Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- How to quickly detect malware presence? Registry: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Taskman Value: “C:\Documents and Settings\Administrator\Application Data\hvex.exe” Files: C:\Documents and Settings\Administrator\Application Data\hvex.exe C:\Documents and [...]
Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\24828.dll (trojan OnLineGames)
Malware: C:\sand-box\1.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\24828.dll —————————————————————————————————————————- Detected manualy by UnHackMe in detailed mode: 24828.DLL – random filename Default location: C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMP\24828.DLL MD5: 75ED9C7F3236A1956D0FCD0B16FAB195 SHA1: 888C3AD6 50010C6C 5209547E 04368883 0CE766D0 File Size: 22 669 Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- How to quickly detect malware presence? Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\Run\office Value: “”C:\WINDOWS\system32\rundll32.exe” C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\24828.dll,S” Files: C:\WINDOWS\system32\kabaker.dll [...]
Removed: 24531.dll (trojan OnLineGames)
Malware: C:\sand-box\abc.exe Removed: C:\Documents and Settings\Administrator\Local Settings\Temp\24531.dll —————————————————————————————————————————- Detected by UnHackMe: Item Name: AppInit_DLLs Author: Unknown Related File: ,C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\24531.dll (random filename) Type: List of Injected DLLs Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.05.24 Trojan.Generic.3950428 Kaspersky 7.0.0.125 2010.05.24 Trojan-GameThief.Win32.OnLineGames.wtyd Microsoft 1.5802 2010.05.24 PWS:Win32/OnLineGames.HQ NOD32 5141 2010.05.24 [...]
Restored: C:\WINDOWS\system32\midimap.dll (trojan OnLineGames)
Malware: jx3bigfoot.exe Restored: C:\WINDOWS\system32\midimap.dll —————————————————————————————————————————- Detected by UnHackMe: Item Name: MIDIMAP.DLL Author: Microsoft Corporation Related File: C:\WINDOWS\SYSTEM32\MIDIMAP.DLL Type: Infected System Files Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.05.21 Dropped:Trojan.Generic.3947112 Kaspersky 7.0.0.125 2010.05.21 – Microsoft 1.5802 2010.05.20 – NOD32 5134 2010.05.21 a variant of Win32/PSW.OnLineGames.OVO —————————————————————————————————————————- [...]
Restored: COMRES.DLL (trojan OnLineGames)
Malware: C:\sand-box\1.exe Restored: C:\WINDOWS\SYSTEM32\COMRES.DLL —————————————————————————————————————————- Detected by UnHackMe: Item Name: COMRES.DLL Author: Microsoft Corporation Related File: C:\WINDOWS\SYSTEM32\COMRES.DLL Type: Infected System Files The original COMRES.DLL has been successfully restore using RegRun Warrior from the Windows installation CD. Removal Results: Success Number of reboot: 1 —————————————————————————————————————————- Classification: Antivirus Version Last Update Result F-Secure 9.0.15370.0 2010.04.27 Suspicious:W32/Malware!Gemini Kaspersky [...]
- Remember: the best way to remove rootkits is from the outside!
