Trojan.Spy.Agent Removal Report

Table of Contents

Aliases

15 security vendors flagged this file as malicious.

Anti-Virus Software	Detection
Ikarus	Gen.Trojan.Heur
DrWeb	DLOADER.Trojan
Avast	Win32:Malware-gen
McAfee	Artemis!D951CF99EEC5
Panda	Lion.II
AhnLab-V3	BAT/Rootkit
Antiy-AVL	Trojan/Shell.Agent
AntiVir	TR/Rootkit.Linux.Agent.SK
DrWeb	Unix.ShellSpy
Kaspersky	Trojan-Spy.Shell.Agent.a
Avast	VBS:Malware-gen
Symantec	Infostealer
F-Prot	Unix/Agent.SK
NOD32	Linux/Shell.Agent.A
K7AntiVirus	Trojan

SpyHunter Detects & Remove Trojan.Spy.Agent

File System Details

Trojan.Spy.Agent may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	winmonprocessmonitor.sys	290389e59ca9fe99ce1779f41f26d645	223,366
Name: winmonprocessmonitor.sys MD5: 290389e59ca9fe99ce1779f41f26d645 Size: 36.09 KB (36096 bytes) Detections: 223,366 Type: System file Path: %WINDIR%\system32\drivers\winmonprocessmonitor.sys Group: Malware file Last Updated: May 10, 2024
2.	winmon.sys	4ef0c39e632279d7b3672d2efc071e5b	100,430
Name: winmon.sys MD5: 4ef0c39e632279d7b3672d2efc071e5b Size: 7.24 KB (7248 bytes) Detections: 100,430 Type: System file Path: %WINDIR%\system32\drivers\winmon.sys Group: Malware file Last Updated: May 12, 2024
3.	winmon.sys	0abf2951ad6d55b34be49004261c4a41	1,142
Name: winmon.sys MD5: 0abf2951ad6d55b34be49004261c4a41 Size: 7.24 KB (7248 bytes) Detections: 1,142 Type: System file Path: %WINDIR%\system32\drivers\winmon.sys Group: Malware file Last Updated: February 29, 2024
4.	winmon.sys	533af2f594b5c4536ec8cf93abaec514	391
Name: winmon.sys MD5: 533af2f594b5c4536ec8cf93abaec514 Size: 7.25 KB (7256 bytes) Detections: 391 Type: System file Path: %WINDIR%\system32\drivers\winmon.sys Group: Malware file Last Updated: December 6, 2022
5.	WinmonProcessMonitor.sys.dvs	cc32dc3e78ddc9c36e0cb286f255a999	293
Name: WinmonProcessMonitor.sys.dvs MD5: cc32dc3e78ddc9c36e0cb286f255a999 Size: 35.07 KB (35072 bytes) Detections: 293 Path: C:\Windows\System32\drivers\WinmonProcessMonitor.sys.dvs Group: Malware file Last Updated: December 5, 2023
6.	688606ed20b933123345a197a174110fdd92940ae3b67484b2a6f7ef001470ca	c74978bf8dbff9da9d3104fc3fe03cec	273
Name: 688606ed20b933123345a197a174110fdd92940ae3b67484b2a6f7ef001470ca MD5: c74978bf8dbff9da9d3104fc3fe03cec Size: 27.83 KB (27832 bytes) Detections: 273 Path: E:\5914079931432960\688606ed20b933123345a197a174110fdd92940ae3b67484b2a6f7ef001470ca Group: Malware file Last Updated: December 6, 2022
7.	winmonprocessmonitor.sys	d64b955e7e24dea146a70fbc671c5eb9	182
Name: winmonprocessmonitor.sys MD5: d64b955e7e24dea146a70fbc671c5eb9 Size: 28.36 KB (28368 bytes) Detections: 182 Type: System file Path: %WINDIR%\system32\drivers\winmonprocessmonitor.sys Group: Malware file Last Updated: September 7, 2022
8.	svhosts.exe	0d8febf9cdd19417d92cff61c39b77a6	61
Name: svhosts.exe MD5: 0d8febf9cdd19417d92cff61c39b77a6 Size: 31.74 KB (31744 bytes) Detections: 61 Type: Executable File Path: %LOCALAPPDATA%\Microsoft\Windows\Explorer Group: Malware file Last Updated: March 3, 2017
9.	MSIMG32.dll	1d0b4f048fffd884b81814b452126a7b	54
Name: MSIMG32.dll MD5: 1d0b4f048fffd884b81814b452126a7b Size: 81.4 KB (81408 bytes) Detections: 54 Type: Dynamic link library Path: %APPDATA%\AdobeUdpate Group: Malware file Last Updated: December 17, 2016
10.	asz$audio.exe	fff6fe8e5091420d284da376b5641781	24
Name: asz$audio.exe MD5: fff6fe8e5091420d284da376b5641781 Size: 320 KB (320008 bytes) Detections: 24 Type: Executable File Path: %APPDATA% Group: Malware file Last Updated: February 8, 2017
11.	MSIMG32.dll	23842e945f3a8234a07fa08b309c1732	21
Name: MSIMG32.dll MD5: 23842e945f3a8234a07fa08b309c1732 Size: 118.78 KB (118784 bytes) Detections: 21 Type: Dynamic link library Path: %APPDATA%\AdobeUdpate Group: Malware file Last Updated: December 17, 2016
12.	svhosts.exe	6f86be05e0d9a74455b42e87ecf2c651	19
Name: svhosts.exe MD5: 6f86be05e0d9a74455b42e87ecf2c651 Size: 31.74 KB (31744 bytes) Detections: 19 Type: Executable File Path: %LOCALAPPDATA%\Microsoft\Windows\Explorer Group: Malware file Last Updated: March 3, 2017
13.	MSIMG32.dll	b4aaa9ff5cfe3d6e26fd985f2ec70507	17
Name: MSIMG32.dll MD5: b4aaa9ff5cfe3d6e26fd985f2ec70507 Size: 79.87 KB (79872 bytes) Detections: 17 Type: Dynamic link library Path: %APPDATA%\AdobeUdpate Group: Malware file Last Updated: December 17, 2016
14.	hbmwqlq.exe	90a74c3fa4357f9c4ebb2cb665cdd86a	15
Name: hbmwqlq.exe MD5: 90a74c3fa4357f9c4ebb2cb665cdd86a Size: 434.17 KB (434176 bytes) Detections: 15 Type: Executable File Path: C:\ProgramData\dhvev Group: Malware file Last Updated: December 7, 2018
15.	svhosts.exe	ee7c3f90b02824e913e017e975b180dd	6
Name: svhosts.exe MD5: ee7c3f90b02824e913e017e975b180dd Size: 32.25 KB (32256 bytes) Detections: 6 Type: Executable File Path: %LOCALAPPDATA%\Microsoft\Windows\Explorer Group: Malware file Last Updated: March 3, 2017
16.	sexurbs.exe	2b530b9a6833c8ae3b9e5282ccdeaf79	6
Name: sexurbs.exe MD5: 2b530b9a6833c8ae3b9e5282ccdeaf79 Size: 297.33 KB (297335 bytes) Detections: 6 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\qtugd Group: Malware file Last Updated: October 30, 2018
17.	MARRIO~1.EXE	3dba917e0b2610600ac5d99d63c6211f	5
Name: MARRIO~1.EXE MD5: 3dba917e0b2610600ac5d99d63c6211f Size: 241.66 KB (241664 bytes) Detections: 5 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\MARRIO~1 Group: Malware file Last Updated: November 5, 2018
18.	NYQBIDP.exe	a6e351d7be60c0b518738badc8b1f5b3	5
Name: NYQBIDP.exe MD5: a6e351d7be60c0b518738badc8b1f5b3 Size: 1.52 MB (1527808 bytes) Detections: 5 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\NYQBIDP Group: Malware file Last Updated: November 7, 2018
19.	MSIMG32.dll	c80e521cbc443b8c1e0c9f7a879e5f18	4
Name: MSIMG32.dll MD5: c80e521cbc443b8c1e0c9f7a879e5f18 Size: 99.32 KB (99328 bytes) Detections: 4 Type: Dynamic link library Path: %APPDATA%\AdobeUdpate Group: Malware file Last Updated: December 17, 2016
20.	svhosts.exe	93937438037b43c45ec9c8442831f985	3
Name: svhosts.exe MD5: 93937438037b43c45ec9c8442831f985 Size: 31.74 KB (31744 bytes) Detections: 3 Type: Executable File Path: %LOCALAPPDATA%\Microsoft\Windows\Explorer Group: Malware file Last Updated: March 3, 2017
21.	MSIMG32.dll	bab03273be6dc5f0b4449238f182214e	3
Name: MSIMG32.dll MD5: bab03273be6dc5f0b4449238f182214e Size: 79.87 KB (79872 bytes) Detections: 3 Type: Dynamic link library Path: %APPDATA%\AdobeUdpate Group: Malware file Last Updated: December 17, 2016
22.	svhosts.exe	11157ba34879eeb01e844a3c2031ddcd	1
Name: svhosts.exe MD5: 11157ba34879eeb01e844a3c2031ddcd Size: 31.74 KB (31744 bytes) Detections: 1 Type: Executable File Path: %LOCALAPPDATA%\Microsoft\Windows\Explorer Group: Malware file Last Updated: March 3, 2017
23.	svhosts.exe	d649dd3f37a4debf42f730b3ce627eb7	1
Name: svhosts.exe MD5: d649dd3f37a4debf42f730b3ce627eb7 Size: 32.76 KB (32768 bytes) Detections: 1 Type: Executable File Path: %LOCALAPPDATA%\Microsoft\Windows\Explorer Group: Malware file Last Updated: March 3, 2017
24.	MSIMG32.dll	4c6098312f9cb57168c6392b6ef6dec5	1
Name: MSIMG32.dll MD5: 4c6098312f9cb57168c6392b6ef6dec5 Size: 139.26 KB (139264 bytes) Detections: 1 Type: Dynamic link library Path: %APPDATA%\AdobeUdpate Group: Malware file Last Updated: December 17, 2016
25.	ivrewkgc.exe	d07e48313d4459b9f6c6cb047dfd8baf	1
Name: ivrewkgc.exe MD5: d07e48313d4459b9f6c6cb047dfd8baf Size: 127.48 KB (127488 bytes) Detections: 1 Type: Executable File Path: c:\Users\<username>\appdata\local\ebcsswdx Group: Malware file Last Updated: October 12, 2018
26.	uhhxnxyzzxwx.exe	763408f6eacbb3770dc425f52d375481	1
Name: uhhxnxyzzxwx.exe MD5: 763408f6eacbb3770dc425f52d375481 Size: 663.74 KB (663743 bytes) Detections: 1 Type: Executable File Path: C:\Program Files (x86)\Hrvw0r2e Group: Malware file Last Updated: November 26, 2018
27.	Cleated.exe	d30191b8a128a44ea7acae6df8a7b797	1
Name: Cleated.exe MD5: d30191b8a128a44ea7acae6df8a7b797 Size: 241.66 KB (241664 bytes) Detections: 1 Type: Executable File Path: C:\Users\<username>\AppData\Roaming Group: Malware file Last Updated: November 27, 2018

More files

Registry Details

Trojan.Spy.Agent may create the following registry entry or registry entries:

File name without path

RE[B]Ell.bat

Regexp file mask

%ALLUSERSPROFILE%\ccleaner.exe

%ALLUSERSPROFILE%\Windows Server\wserver.exe

%APPDATA%\datZZ~.dat

%APPDATA%\dvdcss\dvdcss.exe

%APPDATA%\Kaspersky Internet Security 2017\explorers.exe

%APPDATA%\Kaspersky Internet Security 2017\spoolsvc.exe

%APPDATA%\Kaspersky Internet Security 2017\svhost.exe

%APPDATA%\Kaspersky Internet Security 2017\Taskhosts.exe

%APPDATA%\WebCounter\WebCounter.exe

%COMMONPROGRAMFILES%\finder.exe

%COMMONPROGRAMFILES(x86)%\finder.exe

%LOCALAPPDATA%\Jaxx\jaxxsrv.exe

%LOCALAPPDATA%\Microsoft Windows\svchost.exe

%LOCALAPPDATA%\Packages\SandboxieRpcSc.exe

%LOCALAPPDATA%\Packages\svchost.exe

%USERPROFILE%\gupd.exe

%WINDIR%\Media\Long\certsvc.exe

%WINDIR%\system32\drivers\ibinldr.sys

%WINDIR%\System32\drivers\WinmonProcessMonitor.sys

%WINDIR%\SysWOW64\Windows Server\wserver.exe

Directories

Trojan.Spy.Agent may create the following directory or directories:

%ALLUSERSPROFILE%\googieupdater

%TEMP%\NetPlatform\WorkDir

%WINDIR%\cmdacoBin

Ranking:	246
Threat Level:	80 % (High)
Infected Computers:	572,252

First Seen:	July 24, 2009
Last Seen:	May 13, 2024
OS(es) Affected:	Windows

Promote SpyHunter via ShareASale & Get a 55% Payout

Search

Change Region

Trojan.Spy.Agent

Threat Scorecard

EnigmaSoft Threat Scorecard

Aliases

SpyHunter Detects & Remove Trojan.Spy.Agent

File System Details

Registry Details

Directories

Submit Comment

Related Posts

Trojan.Spy.Agent.avwq

Trojan.Spy.Agent.sc

Trojan.Spy.Agent.alf

Trojan.Spy.Agent.bfo

Trojan.Spy.Agent.dcp

Trojan.Spy.Agent.BR

Trending

FindQuest

Nudebase.com

Maxask.com

Most Viewed

Discord Shows Black Screen when Sharing Screen

How To Fix 'Printer Driver is Unavailable' Error

What is Msedge.exe?