Max Secure Software: Encyclopedia

Home / Spyware Encyclopedia / Proxy.Cimuz << Back

Recommendation to Automatically remove Proxy.Cimuz

Our products can remove Proxy.Cimuz and thousands of other Virus and Spyware automatically and instantly.

Proxy.Cimuz Details

Category Proxy
Discovered 5/13/2009 11:34:34 AM
Modified 8/24/2023 5:12:23 PM
Threat Level High
Category Description
Proxy Trojan turns the victim's computer into a proxy server. This gives the attacker the opportunity to do everything from your computer, including the possibility of conducting credit card fraud and other illegal activities, or even to use system to launch malicious attacks against other networks.

The following Files were created:

VALUE	FILESIZE	COMPANYNAME	VERSION	SIGNATURE
rundll32.com	47352	SQL	0.0.0.67
rundll32.com	46445	N5SD5K6S	0.0.0.86
rundll32.com	46440	m6A68E4s2G6Id74E	0.0.0.91
rundll32.com	48181	lBmnyuySjk342	0.0.0.91
rundll32.com	46562	KKUWs	0.0.0.81	f07743a045b8f0a72e7b7536255db199
rundll32.com	46220	jIIsf76iuz53S	0.0.0.83
rundll32.com	48071	iCsQhP	0.00.0083	07e1f1d82a6939feda587edbe2ecbbdd
rundll32.com	48071	iCsQhP	0.0.0.83
rundll32.com	46553	H4P	0.0.0.65
rundll32.com	266240	BusyYuwe48Sgvj	0.0.0.88

The following Registry Entries were created:

..\Software\Microsoft\Windows NT\CurrentVersion\Windows\\"AppInit_DLLs"\"%WIN.SYS32%\KB16186M.LOG"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"Windows Media SP.2.7.7"\"%WIN.SYS32%\TROJAN-PSW.WIN32.LMIR.BG.exe"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"IgfxTray ."\"%WIN.SYS32%\TROJAN-PSW.WIN32.LMIR.BJ.exe"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"ToP"\"%WIN%\LSASS.exe"

..\System\CurrentControlSet\Services\NetWorkLogon\Security\(Default)

..\Software\Microsoft\Windows\CurrentVersion\RunServices\\"Torjan Program"\"%WIN%\WINLOGON.EXE"

..\Software\Classes\windowfiles\(Default)

..\Software\Microsoft\Windows\CurrentVersion\Run\\"torjan program"\"%win%\winlogon.exe"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Recommendation to Automatically remove Proxy.Cimuz

Proxy.Cimuz Details

Useful Links