Trojan.Agent - Spyware Detector - Max Secure Software

Home / Spyware Encyclopedia / Trojan.Agent

Trojan.Agent Technical Details

Category	Trojan
Discovered	4/11/2005 12:00:00 AM
Modified	1/12/2010 4:07:53 PM
Threat Level	Critical

Category Description

A destructive program that masquerades as a benign application. Unlike viruses, Trojan horses do not replicate themselves but they can be just as destructive. One of the most insidious types of Trojan horse is a program that claims to rid your computer of viruses but instead introduces viruses onto your computer.

Notice

Summary

The following http urls were started:

•softupdate09.com/inst/index.php?affid=70&subid=0&guid=6f156c7b-6d88-4e14-881f-9a56796...

•update.pcprivacycleaner.com/FreeApp.exe

•virusremover2008.com/VRM_Free.exe?aid=ippupcpc_mrt_&a=ippupcpc&l=vrm_10&mt_info=6046_...

The hosts file was updated with the following url-to-ip mappings:

77.232.74.90	banamex.com
77.232.74.90	banamex.com.mx
77.232.74.90	boveda.banamex.com

The following internet connection was established:

68.109.11.216 : 445

68.109.11.218 : 445

68.109.11.219 : 445

The following Files were created:

Name	Version	Publisher	Signature (MD5)	File Size (in KB)
..\bf24ca3a.exe	1.0.0.0	踏雪飞鹤	ff73fe12388c6a1d84c14cba5a0bbac9	40960
..\f44c8390.exe	0.0.0.0	计算机反病毒论坛	b1fd0add9a1d9fc712da84527c21cc09	288768
..\cb0c9801.exe	1.1.0.0	蔷薇的羽翼	7b2d99608772c32a1c5b392e6787687b	907648
..\16b4cb94.exe	1.0.0.1	网神网络	8e0f93087a579208361517927174c4f9	154112
..\00133d0f.exe	1.0.0.0	湖北省交通规划设计院	b1691c5800d3e353dbd11e9938ea5f27	22016
..\2b51d310.exe	3.7.2.3	㊣版技术联合·综合群	a109995c78fee2540c015c5874d202c4	442880
..\fba3087c.exe	2.0.0.0	明科工作室	89fb12d1f56e38cc57e6327878259a29	84171
..\fe9dbc7e.dll	1.0.0.1	微软中国	86fa24bc85da257197ef300ad7be70ec	8192
..\811a122c.exe	1.0.0.0	店长制作	e5ee272b9f11c13b2edee30df9bba689	241664
..\d96cc8b9.exe	5.1.1.1005	奇虎网	b130c42c285b127f98aec7e9289680ec	696528
..\d68c33bd.exe	8.0.0.454	卡巴斯基实验室	b1740604a3f20594911d5dfa7f8507ec	432633
..\e54ce4d2.dll	1.0.1.103	北京金叶天翔科技有限公司	fed8d638f22b36403a500c0d8e3182ec	245760
..\b8305d41.exe	1.0.1.3	北京三七二一科技有限公司	5813d9a505f1d92c69a2d748ddef7fd1	47104
..\c13362b7.exe	1.6.5.0	刘健英	24fd378065ca2f43aff8cdcab567348c	39424
..\744895a7.exe	1.6.5.0	刘健英	1f0e6305fd8c1635d8397ae0d79f9922	57856
..\1c671331.exe	3.2.0.0	世界通小天使升级 V3.2	b1301eb07dde6bbaf94148c9b8aae817	1781760
..\F3F0A6C5.DLL	1.0.1.50	Zumie.com	6b7cc04966e5ddb63b1c99e812b095a4	487424
..\C4A27A37.EXE	5.0.2169.1	ZSAVJE Corporation	0dadf2dc1a2bf0483c53525504824148	24064
..\Temp\B9299600.EXE	38.22.863.4	Zrrubue Kevwykujpat	afc2f33040c6991b9919e6688b447390	30720
..\Temp\wpv511246307027.exe	28.78.644.6	Zqseweu Zojdjhypmoc	de5256cd6d545d6a6fcfefbdcfbfeed0	44544
..\meandyou.exe	5.0.2169.1	ZLAXAE Corporation	8532ab9d5b20fb2f16a4948fd84782c2	393216
..\D081C8E1.EXE	0.0.0.0	ZJ Computing, Inc.		5929980
..\f3cb5abc.exe	6.2.0.6	zhiyi	148a9e180d007ac1dcee625ecb0f07d8	146305
..\5302FA07.EXE	1.0.0.0	zhijian01	342842ffb656153ff55268afdf8d36a0	488835
..\11786D37.EXE	1.0.0.0	zhao	0439f67d464eb1e32df2db06a0df3469	454656
..\5C1A2E8F.EXE	1.0.0.0	ZEZAR	6c6d5969d5f109588e57ff889764970f	53248
..\084D63E8.EXE	1.0.0.0	ZEZAR	6a475a452c6301e7fe99d915acbde364	147325

The following Registry Entries were created:

•	..\System\CurrentControlSet\Services\svcmon
•	..\System\CurrentControlSet\Services\q9nld
•	..\System\CurrentControlSet\Services\trkwksw32time
•	..\System\CurrentControlSet\Services\lwuqdu9yya
•	..\System\CurrentControlSet\Services\ip_fw
•	..\System\CurrentControlSet\Services\cscenter
•	..\System\CurrentControlSet\Services\d027da8b
•	..\System\CurrentControlSet\Services\f1d7cca
•	..\System\CurrentControlSet\Services\kprof
•	..\System\CurrentControlSet\Services\eaxq67
•	..\System\CurrentControlSet\Services\ntwscsvc
•	..\System\CurrentControlSet\Services\akjevie6
•	..\System\CurrentControlSet\Services\internet explorer update
•	..\System\CurrentControlSet\Services\eth8023
•	..\System\CurrentControlSet\Services\nrs_service
•	..\System\CurrentControlSet\Services\yzphgyzi
•	..\System\CurrentControlSet\Services\protectedstorager1
•	..\System\CurrentControlSet\Services\msrkit86
•	..\System\CurrentControlSet\Services\b009900
•	..\System\CurrentControlSet\Services\windowsentserver2008
•	..\System\CurrentControlSet\Services\gjy05
•	..\System\CurrentControlSet\Services\vikuc
•	..\System\CurrentControlSet\Services\cfxces96
•	..\System\CurrentControlSet\Services\acpidisk
•	..\System\CurrentControlSet\Services\wdswsdewn

Recommendation to remove Trojan.Agent

Spyware Detector can remove Trojan.Agent, and thousands of other Spyware automatically and instantly. Click here to download Spyware Detector and scan for free.

Download Spyware Detector and Scan for FREE

Search Threats