Home / Spyware Encyclopedia / Proxy.3proxy << Back

Recommendation to Automatically remove Proxy.3proxy


Our products can remove Proxy.3proxy and thousands of other Virus and Spyware automatically and instantly.

Proxy.3proxy Details


  • Category Proxy
  • Discovered 8/13/2008 4:06:36 PM
  • Modified 4/9/2022 10:25:41 AM
  • Threat Level Critical
  • Category Description
    Proxy Trojan turns the victim's computer into a proxy server. This gives the attacker the opportunity to do everything from your computer, including the possibility of conducting credit card fraud and other illegal activities, or even to use system to launch malicious attacks against other networks.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
alg.exe 37888  f7c5966c88f141961563936eaa4a9750 
0AC00E71.EXE 26624  ee04f7b9716142df202d61ddec3a29c4 
2EDB8D5B.EXE 26624  edbfe00c2a973b0d127df22c545097c2 
beyezuki.dll 79872  ea6a84e6d5c74c2c6a046063815e9070 
C156A690.EXE 229376  e7dfdb10742f26181d9602b03f6ced6f 
psvr32.exe 229376  e7dfdb10742f26181d9602b03f6ced6f 
hedukage.dll 49152  e581a54d8881d0711d777a0853e0386a 
CEE45CA3.EXE 26112  d4ff924b1e610a490cadffc530157a90 
ATEQOFLR.EXE 86016  d087646ca3382083ff44a7d8d490c643 
MPXA.EXEMPT.EXEATEQOFLR.EXE 86016  d087646ca3382083ff44a7d8d490c643 

The following Registry Entries were created:
..\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\"%WIN.SYS32%\mpxa.exe"\"%WIN.SYS32%\mpxa.exe:*:Enabled:mpxa"
..\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\"%PF%\Microsoft Office\Office\WINWORD.EXE"\"%PF%\Microsoft Office\Office\WINWORD.EXE:*:Enabled:WINWORD"
..\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\"{98672103-AFBE-4434-92D2-692A124CD60F}"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"kenuhesogu"\"Rundll32.exe "%WIN.SYS32%\repudana.dll",s"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"CPM7b8dcba1"\"Rundll32.exe "%WIN.SYS32%\zareheli.dll",a"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"78bef83d"\"rundll32.exe "%WIN.SYS32%\beyezuki.dll",b"
..\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{98672103-AFBE-4434-92D2-692A124CD60F}\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{933CD473-B65E-4C28-B5EA-9B033AB229A5}\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{80539daf-a296-4a3c-81d8-345156a02de7}\(Default)
..\Software\Classes\Clsid\{80539daf-a296-4a3c-81d8-345156a02de7}\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.