We received the file WEBGENIUOS.DLL and detected that WEBGENIUOS.DLL is not good.
WEBGENIUOS.DLL is Adware. You should remove the file WEBGENIUOS.DLL.
Kill the process WEBGENIUOS.DLL and remove WEBGENIUOS.DLL from Windows.
Malware Analysis of WEBGENIUOS.DLL
Full path on a computer: %Common Appdata%\WebGeniuos\WebGeniuos.dll
Detected by UnHackMe:
WEBGENIUOS.DLL
Default location: %Common Appdata%\WebGeniuos\WebGeniuos.dll
Removal Results: Success
Number of reboot: 1
WEBGENIUOS.DLL is known as:
Adware.SProtector
WEBGENIUOS.DLL hash:
- MD5: 3f3bf5172ba38393c15b5def48dc3ccb
The file is used for downloading and installing other malware, Trojans, viruses by the commands received from the Command Center.
How to quickly detect WEBGENIUOS.DLL presence?
Registry:
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{148b9501}\UninstallString: “”%SysDir%\RUNDLL32.EXE” “C:\DOCUME~1\ALLUSE~1\APPLIC~1\WEBGEN~1\WEBGEN~1.DLL”,_uninstall /un”
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{148b9501}\DisplayName: “WebGeniuos”
- HKLM\System\CurrentControlSet\Services\148b9501\ImagePath: “”%SysDir%\rundll32.exe” “c:\docume~1\alluse~1\applic~1\webgen~1\WebGeniuosSvc.dll”,service”
- HKLM\System\CurrentControlSet\Services\148b9501\DisplayName: “WebGeniuos”
- HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs: “c:\docume~1\alluse~1\applic~1\webgen~1\webgen~1.dll”
Folders:
- %Common Appdata%\WebGeniuos
Files:
- %Temp%\__tmp_09594e77
- %Common Appdata%\WebGeniuos\WebGeniuos.dll
- %Common Appdata%\WebGeniuos\WebGeniuosSvc.dll