| Antivirus | Spyware & Adware removal | Registry Cleaner | Windows updates | Web Protection |

    ¤ Solutions
 »  Security Main Page
 »  Virus Removal
 »  Spywares Removal
 »  Trojans Removal
 »  Our Forums
 »  Our Blogs
    ¤ Populer Threads
 »  Remove fake Antivirus
 »  Rmov SpywareGuard 2008
 »  Remove Sinowal trojan
 »  Remove Virtumonde
 »  Remove Vundo troajn
 »  Google Search redirect
 »  Trojan Downloader
 »  Trojan Dropper
 »  Trojan Generic
 »  Worm32 NetBooster
 »  Zlob trojan removal
 »  Generic Host Proccess
 »  Remove Winweb Security
 »  Virus Trigger Removal
 »  Spyware CyberLog-x
 »  Cookies - 207.net
 »  AdWare.Adrotator
 »  See Other virus removal
    ¤ Tweaks
 »  Proxy Sites
 »  Computer & Internet
 »  Folder Lock
 »  Hack Windows Admin
 »  Windows Utilities - Tips

    ¤ Downloads
 »  Super Anti Spyware
 »  MalwareBytes
 »  Threat Fire
 »  Anti Viruses
 »  Firewalls
 »  Registry Cleaners
 »  See all Downloads

 
Remove Trojan Downloader.Monder

Trojan Monder is a downloader Trojan that sneaks into your system through vulnerabilities. Once Trojan Monder is installed, Trojan Monder downloads more malware and adware, and launches ads on Internet Explorer.

Unless identity theft, hacker botnets, and Trojan Monder popups sound like a fun weekend, remove Trojan Monder.



How to remove Trojan Monder Manually:
Stop Trojan Monder processes:
8142.exe

Delete Trojan Monder DLLs:
%system%\lkkrem.dll
%system%\blvpho.dll
%system%\codnnrjl.dll
%system%\byXPFXnn.dll
%system%\fccccasi.dll
%system%\mriqfycp.dll
%system%\nnnljiyx.dll
%system%\pmnopNeb.dll
%system%\tlmpgior.dll
%system%\urqqhghb.dll
%system%\xxywxxys.dll
7ac3f42f-0fd7-4644-a801-a60155859c57.dll
033826fa0020f4a7b0970040d35cf300ecdc00b0.dll
4194967c8083e49385d1007d0e4c920089930298.dll
4194967c8083e49385d1007d0e4c92009d434516.dll

Get rid of Trojan Monder registry keys and values:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run@^BM0bdb02fb
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run@^BM3f6b100a
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion@^dmdko.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion@^dmrqa.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion@^dmzyb.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion@^kdfra.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion@^kdid
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion@^kdram.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion@^_d
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run@^A00F2DE004.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run@^A00F67E1C.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run@^A00F691BEAC.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run@^A00F8BF047.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run@^A00F8D713A.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg@^BM53d35ead
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon@^System^=^kdfra.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\

ShellExecuteHooks@^{67B0058D-B342-4CB2-A7F0-EDAB6C4F927D}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\

ShellExecuteHooks@^{F9DF827A-8FA7-48A3-B268-CA4DB563EA40}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run@^BM07c179c1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run@^BM53d35ead
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run@^gadcom
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\

ShellExecuteHooks@^{0524B01A-F7AF-4665-8BE1-BE460478A4FF}
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\
FirewallPolicy\StandardProfile\AuthorizedApplications\List@^C:\WINDOWS\system32\winver.exe

HKEY_CLASSES_ROOT\CLSID\{e9782a99-765d-41da-a4b7-51d7d1f80b29}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\affltid
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\aoprndtws
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\08e823e9
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\dslcnnct
HKEY_CLASSES_ROOT\CLSID\{3480eed8-1c5a-4090-bdfd-9b0831269e91}
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3480EED8-1C5A-4090-BDFD-9B0831269E91}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3480eed8-1c5a-4090-bdfd-9b0831269e91}
HKEY_CLASSES_ROOT\CLSID\{67B0058D-B342-4CB2-A7F0-EDAB6C4F927D}
HKEY_CLASSES_ROOT\CLSID\{88e2e10c-cd87-45c6-af08-b44646a16d1a}
HKEY_CLASSES_ROOT\CLSID\{A546EA3D-05F1-0D5E-FB38-79A2E3EB4FE0}
HKEY_CLASSES_ROOT\CLSID\{aac0b7a8-d61f-4f5c-bf53-fdeae69ceb50}
HKEY_CLASSES_ROOT\CLSID\{AE41E538-02F9-5C5C-FF38-79A2E3EB4DB7}
HKEY_CLASSES_ROOT\clsid\{B3102264-D09D-4322-B625-503FBF18DD7E}
HKEY_CLASSES_ROOT\CLSID\{D5750A4D-DFC7-4A7D-9F75-226D723AAB32}
HKEY_CLASSES_ROOT\CLSID\{F9DF827A-8FA7-48A3-B268-CA4DB563EA40}
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{88E2E10C-CD87-45C6-AF08-B44646A16D1A}
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A546EA3D-05F1-0D5E-FB38-79A2E3EB4FE0}
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AAC0B7A8-D61F-4F5C-BF53-FDEAE69CEB50}
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE41E538-02F9-5C5C-FF38-79A2E3EB4DB7}
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B3102264-D09D-4322-B625-503FBF18DD7E}
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D5750A4D-DFC7-4A7D-9F75-226D723AAB32}
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9DF827A-8FA7-48A3-B268-CA4DB563EA40}
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\_r
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\dslcnnct
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\opnnnKAT
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wvUoMfdC
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\__c001DB2E
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\__c004637D
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\__c0082FB9
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\__c009E324
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\__c00DA228
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\__c00EAD62
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88e2e10c-cd87-45c6-af08-b44646a16d1a}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A546EA3D-05F1-0D5E-FB38-79A2E3EB4FE0}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{aac0b7a8-d61f-4f5c-bf53-fdeae69ceb50}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE41E538-02F9-5C5C-FF38-79A2E3EB4DB7}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B3102264-D09D-4322-B625-503FBF18DD7E}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5750A4D-DFC7-4A7D-9F75-226D723AAB32}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9DF827A-8FA7-48A3-B268-CA4DB563EA40}
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A546EA3D-05F1-0D5E-FB38-79A2E3EB4FE0}
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE41E538-02F9-5C5C-FF38-79A2E3EB4DB7}
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9DF827A-8FA7-48A3-B268-CA4DB563EA40}
HKEY_CURRENT_USER\Software\Microsoft\contim
HKEY_CURRENT_USER\Software\Microsoft\isfiaf
HKEY_CLASSES_ROOT\CLSID\{0524B01A-F7AF-4665-8BE1-BE460478A4FF}
HKEY_CLASSES_ROOT\CLSID\{417C0667-F5ED-4867-834C-6992DAC12203}
HKEY_CLASSES_ROOT\CLSID\{9e36cbe7-0cbd-488a-a508-fd08c0e2270f}
HKEY_CLASSES_ROOT\CLSID\{B03E6FDB-37CB-4054-BF9D-FE96C33FB937}
HKEY_CLASSES_ROOT\CLSID\{db48387f-ca03-4511-8663-98da65f98fc6}
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{417C0667-F5ED-4867-834C-6992DAC12203}
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9E36CBE7-0CBD-488A-A508-FD08C0E2270F}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\contim
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\opnkJaAR
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\pmnoOHAt
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\winndy32
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wintqv32
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{417C0667-F5ED-4867-834C-6992DAC12203}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9e36cbe7-0cbd-488a-a508-fd08c0e2270f}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B03E6FDB-37CB-4054-BF9D-FE96C33FB937}



Custom Search

 

 
 
eXTReMe Tracker
Anti Virus - Spyware Removal - Trojan Removal - Registry Repair

         About DARFUN INC © Copyright darfuns.com
                 DARFUN CORPORATION. 2004 est