Description of Win32/Olmarik and consequences of its residing on your PC’s

Win32/Olmarik is a rootkit class detection, for which its genuine detector provides for special extermination routine. The same infection is in the wild reported under names based on such roots as Alureon, TDSS, Tidserv. Different approaches are practiced to successfully detect, contain, and dispose of, the above parasite.
The malware is a severe threat. It performs a host of subversive moves, but does not aim at destroying computer system. There is a clear commercial payload for the malware related to browsing activities. These could be treated as symptoms of the infection, which are listed in the relevant section below.
To put an end to the scam without burdening yourself with purpose-specific extermination of the parasite, click here to run free scan and get rid of Wn32/Olmarik along with other threats found.

Technical Details and screenshots:

  • Full name: Win32/Olmarik, Trojan.Olmarik, Olmarik.Trojan
  • Type: Trojan horse, Rootkit
  • Origin: Russian Federation

Signs of being infected with Win32/Olmarik

The virus does not betray itself by signs strictly specific to its detection. However, there are plenty of symptoms of general kind which drop a hint at the rootkit introduction.
If you experience hijacking of browser and search engine, your PC generates enormous outgoing traffic, DNS settings are modified – these are all the occurrences caused by the trojan.
Click here to start free computer examination and remove Wn32/olmarik, which the tool suggested will report under alternate detection name.

Win32/Olmarik automatical removal:

The malware deletion is a task of extreme complexity. However, there are tools that can cope with that without requiring users to download and install special software to delete Wn32/olmarik. The antimalware below is of such kind as it would simply sweep away the rootkit as a routine programmed trash.

Win32/Olmarik Removal Tool

Manual Removal of Win32/Olmarik:

Please beware of rootkit extreme hostility and self-protection features. If you are going to remove Wn32/olmarik manually, Safe Mode is required for Windows users. In this mode, the malware would not be capable of aborting its deletion.

Remove Win32/Olmarik files and dll’s:

 C:\WINDOWS\Zcepia.exe
C:\Documents and Settings\[UserName]\Local Settings\Temp\Zbl.exe
C:\WINDOWS\system32\rundll32.exe
rundll32.exe C:\WINDOWS\system32\sshnas21.dll,GetHandle
C:\Documents and Settings\[UserName]\pimon.exe

Unregister Win32/Olmarik registry values:

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “C:\Documents and Settings\[UserName]\Local Settings\Temp\Zbl.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “C:\Documents and Settings\[UserName]\pimon.exe /w”
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SSHNAS\Parameters “C:\WINDOWS\system32\sshnas21.dll”

Win32/Olmarik removal