Trojan-Proxy.Wintu.aTrojan-Proxy.Wintu.a is a terrible Trojan program that will compromise your computer system by creating a specific proxy server on your machine. This will allow remote attackers to be route certain HTTP traffic through the computer which is infected. A malicious online attacker may be able to make use of your computer in order to perform a variety of activities with the inclusion of sending big amounts of spam email and perform various illegal activities. You need to be warned that Trojan-Proxy.Wintu.a is extremely dangerous. Trojan-Proxy.Wintu.a may go by the following names: Trojan-Proxy.Wintu.a may display some of the following symptoms: Trojan-Proxy.Wintu.a needs to be removed from your system upon immediate detection. This means that the moment you suspect you have it running on your machine, you need to find it and remove it properly. You have the option of the manual or the automatic removal process. It is within your best interest to invest in a decent antispyware application that is able to both detect as well as remove Trojan-Proxy.Wintu.a automatically for you. |
|
Download Spyware Removal Tool to Remove*
Trojan-Proxy.Wintu.a
|
|
How to manually remove Trojan-Proxy.Wintu.a
Files associated with Trojan-Proxy.Wintu.a infection:
winuowrd.exe
winqciwcs.exe
winohfuu.exe
winaiyowt.exe
efnh.exe
cubusy.exe
AntiViraAv.exe
winlwbn.exe
vwCfAqEryg.exe
oops.exe
nxmacwsero.exe
axoncrwesm.exe
setup.exe
~TMF74D.tmp
syitm.exe
sy5tm.exe
psyjo3.exe
lsvb.exe
lsq.exe
jwkd.exe
jwjqa.exe
ju7bd.exe
games.exe
dfe.exe
xt096xni.exe
r2sq6vfu.exe
j94x5zah.exe
bojokx71.exe
458bzfs8.exe
3o0m4t0l.exe
wqrlkqg4.exe
services.exe
vnyy.exe
tpjcj.exe
sssvcs.exe
mdms.exe
winlogon.exe
vsbntlo.exe
qir53ryq.exe
amtoojv8.exe
drqyy.exe
87rfnpp5.exe
gcw17f6l.exe
68sfnszt.exe
91j003xd.exe
alcrmvh.exe
ywkvx057.exe
o6ko.sys
awbtz6lp.exe
799.exe
311.exe
218.exe
ls888.exe
1.tmp
imod3.dll
ibodu.dll
IcnOvrly.dll
esribd.exe
pqlmq.exe
sysrest32.exe
igob8kze.exe
svchost.exe
yuevy.exe
rlls.dll
vzpncvee.exe
vse432.exe
hblPk.exe
.ttBD.tmp
dll32.exe
nfra.exe
sysdll.exe
owner.exe
SYS32DLL.exe
nfr[1].exe
bojas.exe
KHVCOL.EXE
qsjqaij.exe
abhhqq.exe
iqgfypvt.exe
Trojan-Proxy.Wintu.a DLL's to remove:
ibodu.dll
IcnOvrly.dll
rlls.dll
Trojan-Proxy.Wintu.a processes to kill:
winygbori.exe
winuowrd.exe
winqciwcs.exe
winohfuu.exe
winaiyowt.exe
efnh.exe
cubusy.exe
AntiViraAv.exe
winlwbn.exe
vwCfAqEryg.exe
oops.exe
nxmacwsero.exe
axoncrwesm.exe
setup.exe
syitm.exe
sy5tm.exe
psyjo3.exe
lsvb.exe
lsq.exe
jwkd.exe
jwjqa.exe
ju7bd.exe
games.exe
dfe.exe
xt096xni.exe
r2sq6vfu.exe
j94x5zah.exe
bojokx71.exe
458bzfs8.exe
3o0m4t0l.exe
wqrlkqg4.exe
services.exe
vnyy.exe
tpjcj.exe
sssvcs.exe
mdms.exe
winlogon.exe
vsbntlo.exe
qir53ryq.exe
amtoojv8.exe
drqyy.exe
87rfnpp5.exe
gcw17f6l.exe
68sfnszt.exe
91j003xd.exe
alcrmvh.exe
ywkvx057.exe
awbtz6lp.exe
799.exe
311.exe
218.exe
ls888.exe
esribd.exe
pqlmq.exe
sysrest32.exe
igob8kze.exe
svchost.exe
yuevy.exe
vzpncvee.exe
vse432.exe
hblPk.exe
dll32.exe
nfra.exe
sysdll.exe
owner.exe
SYS32DLL.exe
nfr[1].exe
bojas.exe
qsjqaij.exe
abhhqq.exe
iqgfypvt.exe
Remove Trojan-Proxy.Wintu.a registry entries:
HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 12CFG515-K641-55SF-N66P
HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 12CFG914-K641-26SF-N32P
HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ nfra
HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN 27256
HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN 27826
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWSNT\CURRENTVERSION\WINLOGON\NOTIFY\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\NOTIFY\ibodu
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWSNT\CURRENTVERSION\WINLOGON\NOTIFY\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\NOTIFY\imod3
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWSNT\CURRENTVERSION\WINLOGON\USERINIT\ userinit
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 14560
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 20194
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 27002
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 27826
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 29301
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 32093
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 5514
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 68sfnszt
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 87rfnpp5
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 91j003xd
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ Advanced DHTML Enable
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ alcrmvh
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ awbtz6lp
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ gcw17f6l
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ HP Toolbox
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ igob8kze
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ Microsoft (R) Windows Protocol Deployment Manager
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ sysrest32.exe
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ vzpncvee
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ ywkvx057
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\Advanced DHTML Enable
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\o6ko
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Security Service
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WINSOCK2\PARAMETERS\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catal
RUNNING PROGRAM\.ttBD.tmp
RUNNING PROGRAM\dll32.exe
RUNNING PROGRAM\explorer.exe
RUNNING PROGRAM\SYS32DLL.exe
Post comment — WE NEED YOUR OPINION!