Trojan.PWS.Onlinegames.ZGE

tag:Trojan PWS

The virus is initialy an executable file, when is launched does following:
copies itself to %SYSTEM%\[virus_name].exe (e.g. ckvo.exe)
drop %SYSTEM%\[virus_name][N].exe (e.g. ckvo1.dll) - which is used to monitors
actions inside games executables(keystrokes)
drops %TEMP%\f.dll - which contains the code for bellow mentioned actions
overwrittes: %SYSTEM%\drivers\vga.sys and loads this driver.
In order to be launched when partitions Please let BitDefender disinfect your files.
Manual: Using filesystem browsers other than Explorer enable displying of hidden files and delate above
metioned files
Press Start, Run... and in the box type Regedit.exe, find the above registry entries and delete them. Please let BitDefender disinfect your files.

Presence of the specified files and registry keys.

previous:Trojan-PSW.Win32.Delf.d
previous:Trojan.PWS.OnlineGames.ZAY

Virus Source from:

New articles

Trojan.PWS.Agent.SGD The malware drops the following files:1) %windir%\system32\hbqqxx.dll- this .dll will be injected in all the running processes and it will try to steal sensitiv...Trojan.PWS.OnlineGames.AABK First of all, the malware deletes the copies of%windir%system32\rpcss.dll (a Windows file) from%windir%\system32\dllcache\rpcss.dlland%windir%\servicepackfiles\...Trojan.PWS.Tupai.ANormal0falsefalsefalseMicrosoftInternetExplorer4st1\:*{behavior:url(#ieooui) }/* Style Definitions */table.MsoNormalTable {mso-style-name:"Table Normal"; mso-ts...Trojan.PWS.Lmir.UMHWhen launched, the trojan drops in %windir%\system32 folder a DLL file having the name derived form an existing DLL from same folder (e.g. rasmanqn3.dll, mdimap...Trojan.PWS.OnlineGames.ZKHThis malware is used to steal user information from online games as qqlogin.exe hx2game.exe and others. The dll file will be injected in every running process. ...

Hot Articles

Trojan.PWS.Onlinegames.ZGE

Computer Virus Clounds