Question & Answer Forum

Ask a question and get a quick response, it is easy!

Ask

Ask a question to public.

Reply

Answer people’s questions - It’s fun!

Join now

Look for friends and associates.
 

Welcome to Gethelp123 Q&A, where you can ask questions and receive answers from other members of the community.

REMOVAL GUIDE FOR: Trojan.PWS.OnlineGames.ZAY

  • Trojan.PWS.OnlineGames.ZAY causes information theft
  • Designed to steal user id and passwords
  • Aims at transferring online game assets
  • Trojan.PWS.OnlineGames.ZAY though technically is not a virus, it does display virus like malicious traits

What is Trojan.PWS.OnlineGames.ZAY?

Trojan.PWS.OnlineGames.ZAY is a part of the large Trojan.OnlineGames virus. Trojan.PWS.OnlineGames.ZAY can dropped into user system or can be downloaded by mistake. However be it, once in the system, Trojan.PWS.OnlineGames.ZAY starts off by making changes in the Windows registry. It enables itself to run on start up by creating the following registry file:

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
Name: cdoosoft
Value: "%System%\olhrwef.exe

Trojan.PWS.OnlineGames.ZAY is designed to steal sensitive data, primarily targeting online game players. For this, it works towards monitoring mouse gestures and keystrokes. Hidden .dll files named nmdfgds0.dll or nmdfgds1.dll are dropped in %System% folder to enable this functionality. The main gamers targeted belong to games like MapleStory, Age Of Conan, Rohan, The Lord OF The Rings, Knight Online, Lands Of Aden and World of Warcraft. Trojan.PWS.OnlineGames.ZAY specifically steals game users credentials. These data are then transferred to a remote server where the hackers work towards logging in using the stolen data and transferring gaming assets accumulated by the players to other players who pay for this. Trojan.PWS.OnlineGames.ZAY also deactivates the installed antivirus program and thus is able to thrive for a long time without being detected. It also creates registry keys so as to make itself invisible. Though it is not visible to user or to the antivirus program, should the symptoms listed below be found, follow the below step by step guide on how to remove Trojan.PWS.OnlineGames.ZAY from your system.

How is Trojan.PWS.OnlineGames.ZAY Distributed?

Trojan.PWS.OnlineGames.ZAY is offered as optional software for automatic installation. Users can opt-out of installation of this application by unchecking various boxes, however, this step is often missed and Trojan.PWS.OnlineGames.ZAY is then installed inadvertently. Choosing custom installation may exempt your system from being infected via bundling. It can enter your system in the below ways:

  • Bundled with other freeware from other free download sites
  • Downloaded from potentially malicious websites
  • Malicious websites that may contain the respective link
  • Installed in your web browsers as extension, add-on, or browser helper object
  • Malicious email attachments

Symptoms of Trojan.PWS.OnlineGames.ZAY Infection:

  • Sudden surge of adwares and malwares
  • Slowing down of system speed drastically and abruptly
  • Ad floods from the new adware
  • Fake threat detections/ warning messages from new malware
  • Crashing or freezing of browser
  • Add-ons not installed by the user appear abruptly. Viz. toolbars, plug-ins.
  • Problems in navigating certain sites

How To remove Trojan.PWS.OnlineGames.ZAY from your system:

  • Follow the below steps to ensure your PC is clean. It is HIGHLY RECOMMENDED that you perform a backup for all your files and to create a system restore point (learn here how to do it) before performing the below steps. This is to ensure that just in case you delete the wrong file, you will have a backup/restore point to safely go back to.
  • Press CTRL + Shift + ESC to launch the Task Manager.
  • Click on processes tab. Click on any file that seems related to Trojan.PWS.OnlineGames.ZAY and select End Process.
  • If you are using a Windows 8, on the main screen you will find an option ‘Search’. Type in “Control Panel”. If you are using a Windows 7/XP, click on start and choose Control Panel.
  • Depending on your Windows version, you will find one of these options:
    • Add or remove program
    • Programs and features
    • Programs
  • Click if you see any one of the above. Select any program relevant to Trojan.PWS.OnlineGames.ZAY and click on Uninstall.
  • Remove Trojan.PWS.OnlineGames.ZAY from the browser.
    • For Chrome you can do it by clicking on the Menu>>Tools>>Extensions and removing the related extensions.
    • For Mozilla Firefox, Press Ctrl+ Shift+ A. Select Extensions, select the add-ons related to Trojan.PWS.OnlineGames.ZAY and click on Disable and then on Remove.
    • For Internet Explorer, go to Tools>>Manage Add-ons. Select “Toolbars and Extensions” and disable related add-ons.

Prevent Trojan.PWS.OnlineGames.ZAY and other viruses with AVStrike:

Go to http://www.avstrike.com/product.php and choose Windows XP or Windows 7 or 8, scroll down to the bottom of the page and click on free trial.

Download AVStrike and install it on your PC by following the Setup Guide.

  • After installation, you will have a shortcut key on your desktop (which you can remove). Click the icon to open the folder.
  • A small window now opens with tabs indicating Quick Scan, Custom Scan and Full Scan. You can select your preference and then click on “Scan Now”. For complete protection, Full Scan is recommended.
  • AVStrike will scan your system for threats.
  • A result page will now appear with the threats detected on your computer.
  • You can either click on Select all or highlight the threats you choose to delete and click on “Remove All”.

Your system is now free of Trojan.PWS.OnlineGames.ZAY and is also protected from any such malware in the future!

It is important to remove Trojan.PWS.OnlineGames.ZAY and such malware from your system to keep your PC safe and secure.

...