We received the file WS_ENABLER.EXE and detected that WS_ENABLER.EXE is not good.
WS_ENABLER.EXE is Adware. You should remove the file WS_ENABLER.EXE.
Kill the process WS_ENABLER.EXE and remove WS_ENABLER.EXE from Windows.
Malware Analysis of WS_ENABLER.EXE
Full path on a computer: %Common Appdata%\House Of Soft\WS_Enabler\WS_Enabler.exe
Detected by UnHackMe:
WS_ENABLER.EXE
Default location: %Common Appdata%\House Of Soft\WS_Enabler\WS_Enabler.exe
Removal Results: Success
Number of reboot: 1
WS_ENABLER.EXE is known as:
Adware.PUP.Optional.MultiPlug.A, Trojan-Downloader ( 0048ec4f1 ), Trojan.Downloader.Agent.afd, Trojan.Agent.cojdgu, Win32:Agent-ASOC [Adw], Trojan-Downloader.Adload.dyhq, Trojan.S.Agent.729600.B, Troj.Agent-AFFX, TrojWare.TrojanDownloader.Agent.AFD, Trojan.DownLoad3.30962, TR.Downloader.A.988, TrojanDownloader.Adload.vxu, Trojan-Downloader.Agent.AU, W32.Trojan.IDAE-2984, TrojanDownloader.Adload, a variant of Win32.TrojanDownloader.Agent.AFD, W32.Agent.AFD.tr.dldr, Trojan.Agent.50, Win32.Trojan.Downloader.ec6
WS_ENABLER.EXE hash:
- MD5: 1d283dd3ae2312eee624e8b8c46f6adb
The file is used for downloading and installing other malware, Trojans, viruses by the commands received from the Command Center.
How to quickly detect WS_ENABLER.EXE presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKLM\Software\Classes\CLSID\{23D34A92-659F-4B5B-0639-6979120C126B}\InprocServer32\: “%Program Files%\YoutubeAdblocker\K.dll”
- HKLM\Software\Classes\CLSID\{3C8229C2-22A1-FB84-A3E9-390AEFE33BC3}\InprocServer32\: “%Program Files%\greaatsaver\Dk_S02.dll”
- HKLM\Software\Classes\CLSID\{4B06AAEF-2592-378A-CD04-43E0B3856979}\InprocServer32\: “%Program Files%\SNT\VFkIwMxt.dll”
- HKLM\Software\Classes\CLSID\{EBFCF40E-A87B-463F-A782-55BDD4160B5E}\InprocServer32\: “%Program Files%\LiveSupport\LiveSupport_deskband_x32.dll”
- HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}\DisplayName: “WebSearch”
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\4a0d8aab-2716-4fac-8fc7-b310721516ba\UninstallString: “C:\DOCUME~1\ALLUSE~1\APPLIC~1\INSTAL~1\{BD89A~1\Setup.exe /remove /q0″
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\LiveSupport_is1\DisplayName: “LiveSupport”
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\LiveSupport_is1\UninstallString: “”%Program Files%\LiveSupport\unins000.exe”"
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1\DisplayName: “Optimizer Pro v3.2″
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1\UninstallString: “”%Program Files%\Optimizer Pro\unins000.exe” /VERYSILENT”
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\S-996827503\UninstallString: “”c:\documents and settings\all users\application data\house of soft\ws_enabler\ws_enabler.exe” /uninstall”
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\S-996827503\DisplayName: “WS_Enabler”
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}\UninstallString: “”%Common Appdata%\YoutubeAdblocker\46.exe” /s /n /i:”ExecuteCommands;UninstallCommands” “”"
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}\DisplayName: “YoutubeAdblocker”
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{37534938}\UninstallString: “”%SysDir%\RUNDLL32.EXE” “C:\PROGRA~1\WS_ENA~1\ASSIST~1.DLL”,_uninstall /un”
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{37534938}\DisplayName: “WS_Supporter 1.80″
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}\UninstallString: “”%Common Appdata%\SNT\IK0yGcP2h.exe” /s /n /i:”ExecuteCommands;UninstallCommands” “”"
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}\DisplayName: “SNT”
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CA41BB14-E67B-1653-C57B-5CA99418A866}\UninstallString: “”%Common Appdata%\greaatsaver\BfXITw0.exe” /s /n /i:”ExecuteCommands;UninstallCommands” “”"
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CA41BB14-E67B-1653-C57B-5CA99418A866}\DisplayName: “greaatsaver”
- HKLM\System\CurrentControlSet\Services\37534938\ImagePath: “”%SysDir%\rundll32.exe” “c:\progra~1\ws_ena~1\AssistantSvc.dll”,service”
- HKLM\System\CurrentControlSet\Services\37534938\DisplayName: “WS_Supporter”
- HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}\DisplayName: “WebSearch”
- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Optimizer Pro: “%Program Files%\Optimizer Pro\OptProLauncher.exe”
- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\LiveSupport: “”%Program Files%\LiveSupport\LiveSupport.exe” /noshow /log”
- HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs: “c:\progra~1\ws_ena~1\assist~1.dll”
Folders:- %Common Appdata%\House Of Soft
- %Common Appdata%\House Of Soft\Setup
- %Common Appdata%\House Of Soft\WS_Enabler
- %Common Appdata%\InstallMate
- %Common Appdata%\InstallMate\20C62CA2
- %Common Appdata%\InstallMate\{BD89A336-3FDF-4B25-A9CE-77FD666A81C0}
- %Common Appdata%\SNT
- %Common Appdata%\YoutubeAdblocker
- %Common Startmenu%\Programs\LiveSupport
- %Common Startmenu%\Programs\Optimizer Pro v3.2
- %Program Files%\greaatsaver
- %Program Files%\LiveSupport
- %Program Files%\Optimizer Pro
- %Program Files%\SNT
- %Program Files%\WS_Enabler
- %Program Files%\YoutubeAdblocker
Files:- %Appdata%\LiveSupport.exe_log.txt
- %Appdata%\regsvr32.exe_log.txt
- %Desktop%\LiveSupport.lnk
- %Desktop%\Optimizer Pro.lnk
- %Temp%\LiveSupport_setup.exe
- %Temp%\Setup Log 2014-01-28 #001.txt
- %Temp%\{F75FE7A2-5FAB-4E9A-946F-19AFA6990F3D}\setup.exe
- %Profile%\AppData\LocalLow\{23D34A92-659F-4B5B-0639-6979120C126B}\YoutubeAdblocker.2.8.dat
- %Profile%\AppData\LocalLow\{3C8229C2-22A1-FB84-A3E9-390AEFE33BC3}\greaatsaver.2.8.dat
- %Profile%\AppData\LocalLow\{4B06AAEF-2592-378A-CD04-43E0B3856979}\SNT.2.8.dat
- %Common Appdata%\greaatsaver\BfXITw0.dat
- %Common Appdata%\greaatsaver\BfXITw0.exe
- %Common Appdata%\House Of Soft\WS_Enabler\996827503.ini
- %Common Appdata%\House Of Soft\WS_Enabler\WS_Enabler.exe
- %Common Appdata%\SNT\IK0yGcP2h.dat
- %Common Appdata%\SNT\IK0yGcP2h.exe
- %Common Appdata%\YoutubeAdblocker\46.dat
- %Common Appdata%\YoutubeAdblocker\46.exe
- %Common Startmenu%\Programs\LiveSupport\LiveSupport.lnk
- %Common Startmenu%\Programs\LiveSupport\Uninstall LiveSupport.lnk
- %Common Startmenu%\Programs\Optimizer Pro v3.2\Check updates.lnk
- %Common Startmenu%\Programs\Optimizer Pro v3.2\Help.lnk
- %Common Startmenu%\Programs\Optimizer Pro v3.2\Optimizer Pro on the Web.lnk
- %Common Startmenu%\Programs\Optimizer Pro v3.2\Optimizer Pro.lnk
- %Common Startmenu%\Programs\Optimizer Pro v3.2\Uninstall Optimizer Pro.lnk
- %Program Files%\greaatsaver\Dk_S02.dat
- %Program Files%\greaatsaver\Dk_S02.dll
- %Program Files%\greaatsaver\Dk_S02.tlb
- %Program Files%\greaatsaver\Dk_S02.x64.dll
- %Program Files%\LiveSupport\LiveSupport.exe
- %Program Files%\LiveSupport\LiveSupport_deskband_x32.dll
- %Program Files%\LiveSupport\LiveSupport_deskband_x64.dll
- %Program Files%\LiveSupport\unins000.dat
- %Program Files%\LiveSupport\unins000.exe
- %Program Files%\Optimizer Pro\bg_new1.bmp
- %Program Files%\Optimizer Pro\CookiesException.txt
- %Program Files%\Optimizer Pro\English.ini
- %Program Files%\Optimizer Pro\file_id.diz
- %Program Files%\Optimizer Pro\HomePage.url
- %Program Files%\Optimizer Pro\itdownload.dll
- %Program Files%\Optimizer Pro\OptimizerPro.chm
- %Program Files%\Optimizer Pro\OptimizerPro.exe
- %Program Files%\Optimizer Pro\OptProGuard.exe
- %Program Files%\Optimizer Pro\OptProLauncher.exe
- %Program Files%\Optimizer Pro\OptProReminder.exe
- %Program Files%\Optimizer Pro\OptProSchedule.exe
- %Program Files%\Optimizer Pro\OptProSmartScan.exe
- %Program Files%\Optimizer Pro\OptProStart.exe
- %Program Files%\Optimizer Pro\OptProUninstaller.exe
- %Program Files%\Optimizer Pro\scan.gif
- %Program Files%\Optimizer Pro\sqlite3.dll
- %Program Files%\Optimizer Pro\StartupList.txt
- %Program Files%\Optimizer Pro\unins000.dat
- %Program Files%\Optimizer Pro\unins000.exe
- %Program Files%\Optimizer Pro\unins000.msg
- %Program Files%\SNT\VFkIwMxt.dat
- %Program Files%\SNT\VFkIwMxt.dll
- %Program Files%\SNT\VFkIwMxt.tlb
- %Program Files%\SNT\VFkIwMxt.x64.dll
- %Program Files%\WS_Enabler\Assistant.dll
- %Program Files%\WS_Enabler\AssistantSvc.dll
- %Program Files%\YoutubeAdblocker\K.dat
- %Program Files%\YoutubeAdblocker\K.dll
- %Program Files%\YoutubeAdblocker\K.tlb
- %Program Files%\YoutubeAdblocker\K.x64.dll
- %WinDir%\Tasks\WS_Enabler-S-996827503.job