Trojan.Asprox
Trojan.Win32.Agent2.cdb is a malignant computer trojan which uses malicious tricks to download other malware threats from the Internet. Trojan.Win32.Agent2.cdb opens up firewalls and gathers private data, such as personal and financial information. Trojan.Win32.Agent2.cdb also downloads additional components before the criminals get the remote access to the affected computer. Trojan.Win32.Agent2.cdb is an identified security risk and needs to be removed immediately upon detection.
File System Details
Trojan.Asprox may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %Temp%\_check32.bat | |
| 2. | %System%\aspimgr.exe | |
| 3. | %Windir%\s32.txt | |
| 4. | %Windir%\ws386.ini | |
| 5. | %System%\document.doc |
Registry Details
Trojan.Asprox may create the following registry entry or registry entries:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Applets\Wordpad\Text
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Applets\Wordpad\IP
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_ASPIMGR
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\aspimgr\Security
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_ASPIMGR\0000
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Applets\Wordpad\Settings
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Applets\Wordpad
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Applets\Wordpad\Write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\aspimgr\Security
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\aspimgr
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_ASPIMGR
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Applets\Wordpad\RTF
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Applets\Wordpad\Word6
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Applets\Wordpad\Options
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\aspimgr
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_ASPIMGR\0000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Sft
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.