Home / Spyware Encyclopedia / Proxy.Agent << Back

Recommendation to Automatically remove Proxy.Agent


Our products can remove Proxy.Agent and thousands of other Virus and Spyware automatically and instantly.

Proxy.Agent Details


  • Category Proxy
  • Discovered 6/11/2024 1:04:34 PM
  • Modified 6/12/2024 10:38:35 AM
  • Threat Level Critical
  • Category Description
    Proxy Trojan turns the victim's computer into a proxy server. This gives the attacker the opportunity to do everything from your computer, including the possibility of conducting credit card fraud and other illegal activities, or even to use system to launch malicious attacks against other networks.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
GunShadow.sys 3840AiRPAGE.ORG1.0.0.1fdc82c8c54548df77476d7cccf62884a 
F37F1C7B.DLL 73728 5.3.0.379b0fe7bcb966767dd64ef3cd0cfe166 
09D0150B.DLL 73728 5.3.0.3335528c53318d36fe270a9eadcb4ffe7 
BD775700.EXE 15155  f196ebd63e2933a0206e7d7c6a03dde0 
41B28A6B.EXE 47104  ebc04577720b3b2b6636321fbdacdd51 
81D5B184.EXE 397785  e87b17bc852005edd2c2ba03614825af 
9B72BB4A.EXE 147968  dd08456cd21e51b9eabab5d1695950a3 
EBMS.EXE 12288  d2dcca281ae17321f23eea66e6ef0d30 
DE8D987E.DLL 56347  cba31bc92579a1461a66e076ee6a8690 
D011706B.EXE 41472  cac40af6a62a3c4cd3c51b236afcf1e4 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"advanced dhtml enable"\"%das.au.ls%\temp\a2522624.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"findfullsoft"\"%win%\findfullsoft.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"winlogon"\"%DAS%\admin\Local Settings\Temp\697335bb.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"WINLOGON"\"%WIN%\CSRSS.EXE"
..\System\CurrentControlSet\Enum\root\legacy_websrvx\(Default)
..\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\"53:TCP"\"53:TCP:*:Enabled:websrvx"
..\Software\Microsoft\Windows\\"sft"\"x"
..\Software\Microsoft\Windows\\"SUID"\"37DA733C2B614DB1B5FEED0CE750308C"
..\Software\Microsoft\Windows\\"IVS"\"13"
..\Software\winsock2\rrr\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.