Hoax.Win32.ExpProc.aanm
Hoax.Win32.ExpProc.aanm is a seditious Trojan infection which is generated to enable remote attackers gain access to the affected computer system to take over the precious system resources. Hoax.Win32.ExpProc.aanm may propagate via drive-by downloads and does not need an infected user's consent to run on a PC. Hoax.Win32.ExpProc.aanm may change the web browser settings and redirect a user to different rogue websites. Hoax.Win32.ExpProc.aanm may also download additional malware threats onto the targeted computer system and steal confidential data. Hoax.Win32.ExpProc.aanm will also disable applications and some processes. Delete Hoax.Win32.ExpProc.aanm immediately upon detection to protect your PC from damage.
File System Details
Hoax.Win32.ExpProc.aanm may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %CommonAppData%\1800yt251w5336buwum0meg6emc8108i016k0km65 | |
| 2. | %Templates%\1800yt251w5336buwum0meg6emc8108i016k0km65 | |
| 3. | %Temp%\1800yt251w5336buwum0meg6emc8108i016k0km65 | |
| 4. | %AppData%\1800yt251w5336buwum0meg6emc8108i016k0km65 |
Registry Details
Hoax.Win32.ExpProc.aanm may create the following registry entry or registry entries:
HKEY_CURRENT_USER\Software\Classes\exefile\DefaultIcon
HKEY_CURRENT_USER\Software\Classes\exefile\shell\open\command
HKEY_CURRENT_USER\Software\Classes\.exe
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open
HKEY_CURRENT_USER\Software\Classes\exefile
HKEY_CURRENT_USER\Software\Classes\exefile\shell\open
HKEY_CURRENT_USER\Software\Classes\exefile\shell\runas\command
HKEY_CURRENT_USER\Software\Classes\.exe\shell
HKEY_CURRENT_USER\Software\Classes\.exe\shell\runas
HKEY_CURRENT_USER\Software\Classes\.exe\shell\runas\command
HKEY_CURRENT_USER\Software\Classes\exefile\shell
HKEY_CURRENT_USER\Software\Classes\exefile\shell\runas
HKEY_CURRENT_USER\Software\Classes\.exe\DefaultIcon
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.