Since Trojan horse virus was born, it never stops its developing pace to derive various series and becomes more and more difficult to detect. Today, let’s learn something about another fierce Trojan horse virus, its name is Win32/Olmarik.AYH Trojan.

 Identification of Win32/Olmarik.AYH Trojan

Win32/Olmarik.AYH Trojan, the name of this tiny Trojan horse is as ordinary as other Trojan horses; however, its damage power is not tiny at all. It can be everywhere when you open some advertisement pages or malicious websites. Hackers often hide this virus in some click icons such as files download buttons, play buttons and some irresistible pop-up windows. When you carelessly click these icons which are full of potential danger, it means that you make a condition for Win32/Olmarik.AYH Trojan to access your PC, though your real intention is not for this satanic stuff. The intelligent crafty Trojan once access your PC, it can be check-less in your computer and capriciously do anything as the prior designed goal of the program demands.

As for this Trojan horse virus, its purpose is to hijack your internet search engine to redirect your homepages, bookmarks and even all the original configuration. Of course the ultimate aim is to bring lots of malicious and deceitful advertisements or rogue software or viral documents to damage your computers or swindle and ransom your money. After your PCs get infected by such Trojan, it will firstly change the registry entry to make sure it can start automatically when windows start. The further means of its activity is to get away from the Fire Wall or antivirus programs killing it. The most awful and destructive action of Win32/Olmarik.AYH Trojan is that it will start background downloading when it has its full swing without your notice and permission. The key point is that those downloaded files are all vicious programs, robber software and with useless even harmful information which can lead to your individual privacy revealed to evildoers that means you will suffer property loss and spiritual damages. For you and your computer’s sake, please remove it whenever you get infected buy such Trojan no matter in which way as soon as you can. But remember, antivirus may detect it but can never remove it completely.

To have a better and safe solution, you can contact YooCare/YooSecurity for help here:

 How Do I Know If My computer Has Been Infected by Win32/Olmarik.AYH Trojan?

When you get infected by such virus, the first thing may catch your eye is some changes of your internet browser. If you scrutinize your browser, you may find that the toolbar may be added some litter you never see and use before. And your homepages or favorites are totally changed to some unknown websites. The further symptom is that when you browse some pages, the browser often pops up irritating webpages or advertisements. If you restart your PC, you may find that windows always starts something automatically you don’t want them start. Gradually, you can find more and more changes and feel that your PC works more and more slowly. Finally, your PC will be full of faults until the system crashes.

How to Safely Remove Win32/Olmarik.AYH Trojan Virus?

Step 1: Press CTRL+ALT+DEL or CTRL+SHIFT+ESC. Open the Windows Task Manager.
If that didn’t work, try another way. Press the Start button and click on the Run option. This will start the Run tool. Type in taskmgr and press OK. This should start the Windows Task Manager

Step 2: In the Windows Task Manager click on the Processes tab. Find the process by name. random.exe. Then scroll the list to find required process. Select it with your mouse or keyboard and click on the End Process button. This will kill the process.

Step 3: Delete malicious registry entries related to Win32/Olmarik.AYH Trojan virus.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\random
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run\random
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\wow64YRIK821024 “(Default)”=”1?
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\“UninstallString” = “‘%AppData%\[RANDOM]\[RANDOM].exe” -u
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\“ShortcutPath” = “‘C:\Documents and Settings\All Users\Application Data\wow64YRIK821024.exe” -u’”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce “wow64YRIK821024” = “‘C:\Documents and Settings\All Users\Application Data\random.exe’

Step 4: Remove malicious files of Win32/Olmarik.AYH Trojan Virus

C:\WINDOWS\assembly\JYG_64\Desktop.ini
C:\Windows\assembly\JYG_32\Desktop.ini
C:\WINDOWS\system32\ping.exe

Video of Key Steps on How to Modify or Change Windows Registry:

At last but not least, this virus should be removed as soon as possible. If you leave it alone, it will not only stay in your computer, but also can put your IP in very dangerous condition. However, if you can remove it in time, it can’t do any harm to your computer and won’t ask for money any more. Also please don’t pay money to this scam, even if you pay to the hackers, they won’t unlock your computer. Never believe those so called free software! Don’t download to install those stuffs in your computer. They can not only remove the Win32/Olmarik.AYH Trojan virus for you, but also bring you much more other virus such as ransomware, scam virus even fake things. You may not be aware that those so called free software can be another cheater, which will make you gain just more loss. Please don’t take a chance to have a try. It’s nonsense. There is no free lunch! If you really can’t remove Win32/Olmarik.AYH Trojan Virus yourself, please find an expert for assistance. This is the best choice.

Note: there may be some differences according to different computers. If you really don’t know what to do, YooCare/Yoosecurity is your best choice.

Published by Tony Shepherd & last updated on June 4, 2013 7:26 pm

Leave a Reply