Click on screenshot to zoom
Danger level 8
Type: Worms
Common infection symptoms:
  • Annoying Pop-up's
  • Connects to the internet without permission
  • Installs itself without permissions
  • Slow Computer
  • Slow internet connection
Other mutations known as:
Worm.Zhelatin.GG

Worm.Zhelatin

Worm.Zhelatin or Worm.Zhelatin.GG is a dangerous computer infection you should be wary of. It is classified as worm, and it spread through spam email attachments. Usually these attachments have executable file extensions, such as video.exe or click me.exe and users end up clicking them out of curiosity. The worst thing is that Worm.Zhelatin has rootkit features, so even if you install it yourself, you will most probably not notice, because the infection will remain in the background of your system.

Just like any other worm, Worm.Zhelatin can replicate and spread on its own taking over e-mail networks of the infected computer in order to reach even more systems. To expand its distribution range this worm sets up its own peer-to-peer network that allows Worm.Zhelatin to get distributed faster to other computers. It is also possible for this infection to travel around with other computer threats as well, because the worm’s installation file is found in Windows System folder and it is called wincom32.sys. However, the same file is related to Trojan.Peacomm and other malware. It means that your computer would be severely infected and you may not even notice it.

That is why you are urged to run regular system scans and keep your antimalware program updated. To check whether you are infected with Worm.Zhelatin or not, you should scan your PC with SpyHunter free scanner. Keep in mind that, this infection does all it can to remain in your system for as long as possible, so it kills a list of utilities and processes that could be related to malware removal. For example, it is known to disable Windows Task Manager, which is an important tool for manual malware removal.

Nevertheless, even if you know a thing or two about computers, you are not encouraged to try removing Worm.Zhelatin on your own. Since this worm has rootkit features, it is entrenched deep inside your system, and you could delete important files if you try removing it on your own. You should acquire a powerful computer security program that will scan your PC and remove Worm.Zhelatin automatically along with its components. Do not hesitate any longer and do what is best for your PC.

Download Spyware Removal Tool to Remove* Worm.Zhelatin
  • Quick & tested solution for Worm.Zhelatin removal.
  • 100% Free Scan for Windows
disclaimer

How to manually remove Worm.Zhelatin

Files associated with Worm.Zhelatin infection:

runtime.exe
ecard[1].exe, ecard[2].exe
ecard[1].exe
vedxga1me4t1.exe
dflgh8jkd2q5.exe
sysrest32.exe
svchast.exe
xpupdate.exe
wind32.exe
maxpaynow1.exe
maxpaynowti1.exe

Worm.Zhelatin processes to kill:

runtime.exe
ecard[1].exe, ecard[2].exe
ecard[1].exe
vedxga1me4t1.exe
dflgh8jkd2q5.exe
sysrest32.exe
svchast.exe
xpupdate.exe
wind32.exe
maxpaynow1.exe
maxpaynowti1.exe

Remove Worm.Zhelatin registry entries:

RUNNING PROGRAMvedxga1me4t1.exe
RUNNING PROGRAMdflgh8jkd2q5.exe
RUNNING PROGRAMmaxpaynowti1.exe
HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN sysrest32.exe
HKEY_LOCAL_MACHINESystemCurrentControlSetServicesAntipPolice_
HKEY_CURRENT_USERSOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN Windows update loader
HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN System
HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN SystemDrive
HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN DriveSystem
Disclaimer

Post comment — WE NEED YOUR OPINION!

Comment:
Name:
Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.