We received the file WS-ENABLER.EXE and detected that WS-ENABLER.EXE is not good.
WS-ENABLER.EXE is Adware. You should remove the file WS-ENABLER.EXE.
Kill the process WS-ENABLER.EXE and remove WS-ENABLER.EXE from Windows.
Malware Analysis of WS-ENABLER.EXE
Full path on a computer: %Common Appdata%\House Of Soft\WS-Enabler\WS-Enabler.exe
Detected by UnHackMe:
WS-ENABLER.EXE
Default location: %Common Appdata%\House Of Soft\WS-Enabler\WS-Enabler.exe
Removal Results: Success
Number of reboot: 1
WS-ENABLER.EXE is known as:
Adware.PUP.Optional.MultiPlug.A, Trojan-Downloader ( 0048ec4f1 ), Trojan.Downloader.Agent.afd, Trojan.Agent.cojdgu, Win32:Agent-ASOC [Adw], Trojan-Downloader.Adload.dyhq, Trojan.S.Agent.729600.B, Troj.Agent-AFFX, TrojWare.TrojanDownloader.Agent.AFD, Trojan.DownLoad3.30962, TR.Downloader.A.988, TrojanDownloader.Adload.vxu, Trojan-Downloader.Agent.AU, W32.Trojan.IDAE-2984, TrojanDownloader.Adload, a variant of Win32.TrojanDownloader.Agent.AFD, W32.Agent.AFD.tr.dldr, Trojan.Agent.50, Win32.Trojan.Downloader.ec6
WS-ENABLER.EXE hash:
- MD5: 1d283dd3ae2312eee624e8b8c46f6adb
The file tries to download information from some web sites.
How to quickly detect WS-ENABLER.EXE presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKLM\Software\Classes\CLSID\{2070F56B-8887-F6C2-36AA-809DB20ABBF6}\InprocServer32\: “%Program Files%\YoutubeAdblocker\Gha.dll”
- HKLM\Software\Classes\CLSID\{41D47881-A1A2-869B-2DE2-245258569FCD}\InprocServer32\: “%Program Files%\greAtsaover\dtu.dll”
- HKLM\Software\Classes\CLSID\{4D458767-0982-2D6B-20E8-5FA76A4DFFF0}\InprocServer32\: “%Program Files%\SNT\irs.dll”
- HKLM\Software\Classes\CLSID\{EBFCF40E-A87B-463F-A782-55BDD4160B5E}\InprocServer32\: “%Program Files%\LiveSupport\LiveSupport_deskband_x32.dll”
- HKLM\System\CurrentControlSet\Services\d926dfd5\ImagePath: “”%SysDir%\rundll32.exe” “c:\progra~1\ws-ena~1\AssistantSvc.dll”,service”
- HKLM\System\CurrentControlSet\Services\d926dfd5\DisplayName: “WS-Supporter”
- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Optimizer Pro: “%Program Files%\Optimizer Pro\OptProLauncher.exe”
- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\LiveSupport: “”%Program Files%\LiveSupport\LiveSupport.exe” /noshow /log”
- HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs: “c:\progra~1\ws-ena~1\assist~1.dll”
Folders:- %Common Appdata%\House Of Soft
- %Common Appdata%\House Of Soft\Setup
- %Common Appdata%\House Of Soft\WS-Enabler
- %Common Appdata%\House Of Soft\WS-Enabler\5155869688
- %Common Appdata%\InstallMate
- %Common Appdata%\InstallMate\17CD15D4
- %Common Appdata%\InstallMate\{84843A3C-1658-4A4E-A8A5-5E7A5F6718CA}
- %Common Appdata%\SNT
- %Common Appdata%\YoutubeAdblocker
- %Common Startmenu%\Programs\EZDownloader
- %Common Startmenu%\Programs\LiveSupport
- %Common Startmenu%\Programs\Optimizer Pro v3.2
- %Program Files%\EZDownloader
- %Program Files%\greAtsaover
- %Program Files%\LiveSupport
- %Program Files%\Optimizer Pro
- %Program Files%\SNT
- %Program Files%\WS-Enabler
- %Program Files%\YoutubeAdblocker
- %SysDir%\AMD64
- %SysDir%\X86
Files:- %Temp%\LiveSupport_setup.exe
- %Temp%\{1D2026CB-88C7-48BD-A33B-0CEAF61E07E9}\setup.exe
- %Profile%\AppData\LocalLow\{2070F56B-8887-F6C2-36AA-809DB20ABBF6}\YoutubeAdblocker.2.8.dat
- %Profile%\AppData\LocalLow\{41D47881-A1A2-869B-2DE2-245258569FCD}\greAtsaover.2.8.dat
- %Common Appdata%\greAtsaover\kG1c.dat
- %Common Appdata%\greAtsaover\kG1c.exe
- %Common Appdata%\House Of Soft\WS-Enabler\5155869688.ini
- %Common Appdata%\House Of Soft\WS-Enabler\WS-Enabler.exe
- %Common Appdata%\SNT\p3pw.dat
- %Common Appdata%\SNT\p3pw.exe
- %Common Appdata%\YoutubeAdblocker\mN63.dat
- %Common Appdata%\YoutubeAdblocker\mN63.exe
- %Common Desktopdirectory%\EZDownloader.lnk
- %Common Startmenu%\Programs\EZDownloader\EZDownloader.lnk
- %Common Startmenu%\Programs\LiveSupport\LiveSupport.lnk
- %Common Startmenu%\Programs\LiveSupport\Uninstall LiveSupport.lnk
- %Common Startmenu%\Programs\Optimizer Pro v3.2\Check updates.lnk
- %Common Startmenu%\Programs\Optimizer Pro v3.2\Help.lnk
- %Common Startmenu%\Programs\Optimizer Pro v3.2\Optimizer Pro on the Web.lnk
- %Common Startmenu%\Programs\Optimizer Pro v3.2\Optimizer Pro.lnk
- %Common Startmenu%\Programs\Optimizer Pro v3.2\Uninstall Optimizer Pro.lnk
- %Program Files%\EZDownloader\EZDownloader.Core.dll
- %Program Files%\EZDownloader\EZDownloader.exe
- %Program Files%\EZDownloader\EZDownloader.exe.config
- %Program Files%\EZDownloader\EZDownloader.Extension.dll
- %Program Files%\EZDownloader\EZDownloader.Spider.dll
- %Program Files%\EZDownloader\ICSharpCode.SharpZipLib.dll
- %Program Files%\EZDownloader\Interop.SHDocVw.dll
- %Program Files%\EZDownloader\TabStrip.dll
- %Program Files%\EZDownloader\unins000.dat
- %Program Files%\EZDownloader\unins000.exe
- %Program Files%\greAtsaover\dtu.dat
- %Program Files%\greAtsaover\dtu.dll
- %Program Files%\greAtsaover\dtu.tlb
- %Program Files%\greAtsaover\dtu.x64.dll
- %Program Files%\LiveSupport\LiveSupport.exe
- %Program Files%\LiveSupport\LiveSupport_deskband_x32.dll
- %Program Files%\LiveSupport\LiveSupport_deskband_x64.dll
- %Program Files%\LiveSupport\unins000.dat
- %Program Files%\LiveSupport\unins000.exe
- %Program Files%\Optimizer Pro\bg_new1.bmp
- %Program Files%\Optimizer Pro\CookiesException.txt
- %Program Files%\Optimizer Pro\English.ini
- %Program Files%\Optimizer Pro\file_id.diz
- %Program Files%\Optimizer Pro\HomePage.url
- %Program Files%\Optimizer Pro\itdownload.dll
- %Program Files%\Optimizer Pro\OptimizerPro.chm
- %Program Files%\Optimizer Pro\OptimizerPro.exe
- %Program Files%\Optimizer Pro\OptProGuard.exe
- %Program Files%\Optimizer Pro\OptProLauncher.exe
- %Program Files%\Optimizer Pro\OptProReminder.exe
- %Program Files%\Optimizer Pro\OptProSchedule.exe
- %Program Files%\Optimizer Pro\OptProSmartScan.exe
- %Program Files%\Optimizer Pro\OptProStart.exe
- %Program Files%\Optimizer Pro\OptProUninstaller.exe
- %Program Files%\Optimizer Pro\scan.gif
- %Program Files%\Optimizer Pro\sqlite3.dll
- %Program Files%\Optimizer Pro\StartupList.txt
- %Program Files%\Optimizer Pro\unins000.dat
- %Program Files%\Optimizer Pro\unins000.exe
- %Program Files%\Optimizer Pro\unins000.msg
- %Program Files%\SNT\irs.dat
- %Program Files%\SNT\irs.dll
- %Program Files%\SNT\irs.tlb
- %Program Files%\SNT\irs.x64.dll
- %Program Files%\WS-Enabler\Assistant.dll
- %Program Files%\WS-Enabler\AssistantSvc.dll
- %Program Files%\YoutubeAdblocker\Gha.dat
- %Program Files%\YoutubeAdblocker\Gha.dll
- %Program Files%\YoutubeAdblocker\Gha.tlb
- %Program Files%\YoutubeAdblocker\Gha.x64.dll
- %WinDir%\Tasks\WS-Enabler-S-5155869688.job