Trojan

Trojan.PWS.Onlinegames.KEGA removal tips

Malware Removal

The Trojan.PWS.Onlinegames.KEGA is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.PWS.Onlinegames.KEGA virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • CAPE detected the shellcode get eip malware family
  • Anomalous binary characteristics
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Trojan.PWS.Onlinegames.KEGA?



File Info:

name: 43A6D998A22D42316DF3.mlw
path: /opt/CAPEv2/storage/binaries/018642c1e632f3dc598db3acca7c65ab59db9b0ea71e5f5fced3d3387b679e33
crc32: 21F1EABC
md5: 43a6d998a22d42316df3da60f8fd34e9
sha1: e67e303829dadbf06547b124562293837e81df56
sha256: 018642c1e632f3dc598db3acca7c65ab59db9b0ea71e5f5fced3d3387b679e33
sha512: cd32295f6e39511b20cb9fc8a150cd655445516bab90a77cdb76f21c4bba1d9b52eaa27c3173c5e1bfe791146df994a9f97e74392e7ff6b285176ff0ae915c4f
ssdeep: 1536:DYWGJ94K82hnIyJJkZ2zV7lELCX3im/0myiEYsc:UWGJ9M2h7+IzV7lXCm/Pv
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T19D73C0B15B1A7679E76BCB3B896F292AC72123F7B553E4EF003161541677292BF0200E
sha3_384: d2ceb8eee4cff3265a9c75da981e71da899f05b08bf900e8d1bf89f2798ab53a69910d0364dab6cb5a5cdc5e668a6962
ep_bytes: b80c0a68105064ff3500000000648925
timestamp: 2010-10-27 08:10:22


Version Info:

0: [No Data]

Trojan.PWS.Onlinegames.KEGA also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Kykymber.lmHa
MicroWorld-eScanTrojan.PWS.Onlinegames.KEGA
FireEyeGeneric.mg.43a6d998a22d4231
CAT-QuickHealTrojan.OnLineGames.gen
McAfeePWS-OnlineGames.pn
Cylanceunsafe
SangforSuspicious.Win32.Save.a
AlibabaTrojanPSW:Win32/OnLineGames.e531b864
CrowdStrikewin/malicious_confidence_100% (D)
BitDefenderThetaGen:NN.ZedlaF.36744.em7faairS8j
SymantecInfostealer.Gampass
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/PSW.OnLineGames.POT
APEXMalicious
ClamAVWin.Trojan.Kykymber-168
KasperskyHEUR:Trojan.Win32.Yakes.pef
BitDefenderTrojan.PWS.Onlinegames.KEGA
NANO-AntivirusTrojan.Win32.OnLineGames.bkxdd
AvastWin32:Malware-gen
TencentTrojan.Win32.OnlineGame.i
EmsisoftTrojan.PWS.Onlinegames.KEGA (B)
BaiduWin32.Trojan-PSW.OLGames.ay
F-SecureTrojan.TR/PSW.Kykymber.X
DrWebTrojan.PWS.Siggen.14914
ZillyaTrojan.Kykymber.Win32.1879
TrendMicroTSPY_KYMBER.SMDY
Trapminemalicious.high.ml.score
SophosMal/PWS-AL
IkarusTrojan-PWS.Win32.Kykymber
JiangminTrojan/PSW.Kykymber.ru
GoogleDetected
AviraTR/PSW.Kykymber.X
VaristW32/OnlineGames.GQ.gen!Eldorado
Antiy-AVLTrojan/Win32.Kryptik
KingsoftWin32.Trojan.Yakes.pef
XcitiumTrojWare.Win32.PSW.GamePass.A@2mkvni
ArcabitTrojan.PWS.Onlinegames.KEGA
ViRobotTrojan.Win32.A.PSW-Kykymber.77204.A
ZoneAlarmHEUR:Trojan.Win32.Yakes.pef
GDataTrojan.PWS.Onlinegames.KEGA
CynetMalicious (score: 100)
AhnLab-V3Win-Trojan/Onlinegamehack48.Gen
VBA32BScope.TrojanPSW
ALYacTrojan.PWS.Onlinegames.KEGA
MAXmalware (ai score=100)
PandaTrj/Genetic.gen
TrendMicro-HouseCallTSPY_KYMBER.SMDY
RisingTrojan.Vindor!8.10CC (TFE:3:SnWvDqPgm7V)
YandexTrojan.PWS.Kykymber!hE4vN5ZsINo
MaxSecurenot-a-virus-PSW-OnlineGames.Gen
FortinetW32/OnLineGames.KY!tr.pws
AVGWin32:Malware-gen
DeepInstinctMALICIOUS

How to remove Trojan.PWS.Onlinegames.KEGA?

Trojan.PWS.Onlinegames.KEGA removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment