windll32.exe - Dangerous
%system%\windll32.exe
Manual removal instructions:
Antivirus Report of %system%\windll32.exe:
%system%\windll32.exe
Trojan.Mitglieder.L is a trojan horse program that allows a compromised system to be used as an email relay.
Also known as TrojanProxy.Win32.Mitglieder.bi
Copies itself to %System%\windll32.exe
Attempts to end some processes associated with various antivirus and security applications.
Attempts to contact a specific page on predefined Web sites and notify the attacker.
Manual removal:
Navigate to the key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
and delete the value: "windll32.exe"="%System%\windll32.exe"
Also, delete the values:
HKEY_CURRENT_USER\SOFTWARE\Frame\pid=
HKEY_CURRENT_USER\SOFTWARE\Frame\uid=
HKEY_CURRENT_USER\SOFTWARE\Frame\port=
| %system%\windll32.exe | Malware |
| %system%\windll32.exe | Dangerous |
| %system%\windll32.exe | High Risk |
Also known as TrojanProxy.Win32.Mitglieder.bi
Copies itself to %System%\windll32.exe
Attempts to end some processes associated with various antivirus and security applications.
Attempts to contact a specific page on predefined Web sites and notify the attacker.
Manual removal:
Navigate to the key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
and delete the value: "windll32.exe"="%System%\windll32.exe"
Also, delete the values:
HKEY_CURRENT_USER\SOFTWARE\Frame\pid=
HKEY_CURRENT_USER\SOFTWARE\Frame\uid=
HKEY_CURRENT_USER\SOFTWARE\Frame\port=
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.