Home / Spyware Encyclopedia / GameThief.Ganhame << Back

Recommendation to Automatically remove GameThief.Ganhame


Our products can remove GameThief.Ganhame and thousands of other Virus and Spyware automatically and instantly.

GameThief.Ganhame Details


  • Category GameThief
  • Discovered 8/5/2009 3:29:59 PM
  • Modified 8/3/2023 5:31:13 PM
  • Threat Level Critical
  • Category Description
    A threat that attempts to steal vital information from the user with regards to online gaming activity and is capable of connecting to a remote site to download possible updates of its application.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
5353A9C9.EXE 694784WWW.HK800.CN1.0.0.193736baee744dddcb7392251e86cd86d 
reger.exe 183296(c) 2003 - 2004 burewar | russia, moscow3.1.0.59ef1c3d02c00b63dcd3146ce273853e5c 
C1289412.EXE 718336 1.0.0.3dfbcd42ed2bceb10d6ef163d3ec3d0e1 
2A17289E.DLL 77824 1.0.0.10034c77a5aeb92d4b2da009344a3b78e 
1C89CED7.EXE 44645  fbd2f4f07ace946f224d40194047fe38 
818A5F6C.DLL 78442  f9ba5ca3266bf413487331b7b2f5245b 
msTasks.dll 22528  f62a39c77aa4ebc4fc9769d078feaa91 
Trojan-Dropper.Win32.Microjoin.a.exe 10752  f3b6e42c3fe531ddd721075ab4f75432 
draw32.dll 32736  e792185177bf2e2b7053703c2ccff9da 
8A51164A.EXE 41244  db89530f9c1c7b8425a442dbab5695a8 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"System"\"%WIN.SYS32%\kernels8.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"System"\"%WIN%\svchost.exe"
..\System\CurrentControlSet\Control\\"Impersonate"\"[20423038304084607660]"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"yul"\"%WIN%\coove.exe"
..\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\"draw32"\"{38AD34BF-113A-420B-910B-7673ED571DBD}"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"ws_ds"\"%WIN%\sws32.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"ie_brow"\""%WIN%\ie_32.exe""
..\Software\Microsoft\Windows\CurrentVersion\RunServices\\"ws_ds"\"%WIN%\sws32.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"sysTasks"\"%WIN.SYS32%\msTasks.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"svcroot"\"%WIN.SYS32%\xffanl.exe"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.