Max Secure Software: Encyclopedia

Home / Spyware Encyclopedia / Proxy.Thunker << Back

Recommendation to Automatically remove Proxy.Thunker

Our products can remove Proxy.Thunker and thousands of other Virus and Spyware automatically and instantly.

Proxy.Thunker Details

Category Proxy
Discovered 5/13/2009 11:37:04 AM
Modified 4/9/2020 5:43:12 PM
Threat Level High
Category Description
Proxy Trojan turns the victim's computer into a proxy server. This gives the attacker the opportunity to do everything from your computer, including the possibility of conducting credit card fraud and other illegal activities, or even to use system to launch malicious attacks against other networks.

The following Files were created:

VALUE	FILESIZE	COMPANYNAME	VERSION	SIGNATURE
rundll32.com	47352	SQL	0.0.0.67
rundll32.com	52428	s0bMrHI6p29gzRPvZuoB	0.0.0.102
rundll32.com	46644	qWeRtYuIoP	0.0.0.84	52087e59a59cbc16b79aaedc08a873a0
rundll32.com	46396	oSOow3C78sAe	0.0.0.89
rundll32.com	46445	N5SD5K6S	0.0.0.86
rundll32.com	80369	Microsoft Corporation	9.2.0.8
rundll32.com	46440	m6A68E4s2G6Id74E	0.0.0.91
rundll32.com	48181	lBmnyuySjk342	0.00.0091	04b70cea35f684245bd5345fa44e9c4b
rundll32.com	48181	lBmnyuySjk342	0.0.0.91
rundll32.com	46562	KKUWs	0.0.0.81	f07743a045b8f0a72e7b7536255db199

The following Registry Entries were created:

..\System\CurrentControlSet\Services\NetWorkLogon\"ImagePath"\"rundll32.exe KB896425.log,start"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"Syetwlynus"\"%DAS.AU.LS%\Temp\trojan-psw.win32.wow.ep.exe"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"Syetwlyes"\"%WIN.SYS32%\algesteiybs.exe"

..\System\CurrentControlSet\Services\NetWorkLogon\Security\(Default)

..\Software\Microsoft\Windows\CurrentVersion\RunServices\\"Torjan Program"\"%WIN%\WINLOGON.EXE"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"torjan program"\"%win%\winlogon.exe"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Recommendation to Automatically remove Proxy.Thunker

Proxy.Thunker Details

Useful Links