Home / Spyware Encyclopedia / Proxy.3proxy << Back

Recommendation to Automatically remove Proxy.3proxy


Our products can remove Proxy.3proxy and thousands of other Virus and Spyware automatically and instantly.

Proxy.3proxy Details


  • Category Proxy
  • Discovered 8/13/2008 4:06:36 PM
  • Modified 4/9/2022 10:25:41 AM
  • Threat Level Critical
  • Category Description
    Proxy Trojan turns the victim's computer into a proxy server. This gives the attacker the opportunity to do everything from your computer, including the possibility of conducting credit card fraud and other illegal activities, or even to use system to launch malicious attacks against other networks.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
monexpol.exe 25088Doctor Web, Ltd.5.0.0.12120d808c925a65a3f2a8ffff48110027a66 
CF68A262.EXE 465874 1.0.0.0430cc016de5b674808fa46ed4d866592 
psvrr.exe 465874 1.0.0.0430cc016de5b674808fa46ed4d866592 
0AC00E71.EXE 26624  ee04f7b9716142df202d61ddec3a29c4 
NNNMMNNE.DLL 37760  ec5e38f15bd4563fff8ac8a30fa52433 
PMNOPQOP.DLL 37760  ec5e38f15bd4563fff8ac8a30fa52433 
beyezuki.dll 79872  ea6a84e6d5c74c2c6a046063815e9070 
hedukage.dll 49152  e581a54d8881d0711d777a0853e0386a 
repudana.dll 49152  dcb937a8c8dedd14569e23f7b1d0f595 
CEE45CA3.EXE 26112  d4ff924b1e610a490cadffc530157a90 

The following Registry Entries were created:
..\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\"%WIN.SYS32%\mpxa.exe"\"%WIN.SYS32%\mpxa.exe:*:Enabled:mpxa"
..\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\"%PF%\Microsoft Office\Office\WINWORD.EXE"\"%PF%\Microsoft Office\Office\WINWORD.EXE:*:Enabled:WINWORD"
..\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\"{98672103-AFBE-4434-92D2-692A124CD60F}"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"kenuhesogu"\"Rundll32.exe "%WIN.SYS32%\repudana.dll",s"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"CPM7b8dcba1"\"Rundll32.exe "%WIN.SYS32%\zareheli.dll",a"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"78bef83d"\"rundll32.exe "%WIN.SYS32%\beyezuki.dll",b"
..\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{98672103-AFBE-4434-92D2-692A124CD60F}\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{933CD473-B65E-4C28-B5EA-9B033AB229A5}\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{80539daf-a296-4a3c-81d8-345156a02de7}\(Default)
..\Software\Classes\Clsid\{80539daf-a296-4a3c-81d8-345156a02de7}\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.