Antivirus Blocking "Trojan-Banker.JS.Proxy.br" (34.80.59.191 / win.pac) - Virus, Trojan, Spyware, and Malware Removal Help
Tags
Common Information
| Type | Value |
|---|---|
| UUID | bd12c121-4468-43d7-94dc-07b1ec4355ba |
| Fingerprint | 5fc4a8ae66212f42 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Dec. 12, 2022, 2:52 p.m. |
| Added to db | Dec. 12, 2022, 11:40 p.m. |
| Last updated | Nov. 17, 2024, 6:55 p.m. |
| Headline | Antivirus Blocking "Trojan-Banker.JS.Proxy.br" (34.80.59.191 / win.pac) |
| Title | Antivirus Blocking "Trojan-Banker.JS.Proxy.br" (34.80.59.191 / win.pac) - Virus, Trojan, Spyware, and Malware Removal Help |
| Detected Hints/Tags/Attributes | 40/2/210 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 163 | ✔ | — | https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | trojan-banker.js.proxy.br |
|
| Details | Domain | 4 | winstore.app |
|
| Details | Domain | 9 | king.com |
|
| Details | Domain | 18 | microsoft.office |
|
| Details | Domain | 67 | microsoft.windows |
|
| Details | File | 4 | trojan-banker.js |
|
| Details | File | 91 | addition.txt |
|
| Details | File | 4 | wpsupdate.exe |
|
| Details | File | 1 | ksomisc.exe |
|
| Details | File | 2 | wpspdf.exe |
|
| Details | File | 2 | wpscenter.exe |
|
| Details | File | 8 | wps.exe |
|
| Details | File | 1 | c:\program files\bitcomet\tools\videosnapshot.exe |
|
| Details | File | 1 | c:\program files\bitcomet\tools\updater.exe |
|
| Details | File | 1 | c:\program files\bitcomet\tools\upnp.exe |
|
| Details | File | 1 | c:\program files\bitcomet\bitcomet.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\nsnaf3d.tmp |
|
| Details | File | 1 | bitcomet_stats.exe |
|
| Details | File | 1 | 45_setup.exe |
|
| Details | File | 11 | whatsapp.exe |
|
| Details | File | 1 | yourphone.exe |
|
| Details | File | 1 | c:\program files\autodesk\revit 2021\revit.exe |
|
| Details | File | 1 | c:\program files\autodesk\revit 2021\revitworker.exe |
|
| Details | File | 1 | networkmon.exe |
|
| Details | File | 1 | lmu.exe |
|
| Details | File | 1 | adsklicensingagent.exe |
|
| Details | File | 7 | officeclicktorun.exe |
|
| Details | File | 3 | et.exe |
|
| Details | File | 14 | filecoauth.exe |
|
| Details | File | 1 | maintenanceservice.exe |
|
| Details | File | 2 | localbridge.exe |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_363_plugin.exe |
|
| Details | File | 1 | hxaccounts.exe |
|
| Details | File | 3 | avbugreport.exe |
|
| Details | File | 7 | openvpn.exe |
|
| Details | File | 1 | c:\users\tee\appdata\roaming\autodesk\adpsdk\bin\adpclientservice.exe |
|
| Details | File | 1 | c:\program files\autodesk\autodesk adsso\adpclientservice.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\programs\autodesk\genuine service\message_router.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\_ai99cb.tmp |
|
| Details | File | 208 | setup.exe |
|
| Details | File | 1 | c:\windows\system32\authhost.exe |
|
| Details | File | 13 | hxoutlook.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\_aidede.tmp |
|
| Details | File | 2 | vpnupdate.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\_aia872.tmp |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\_ai1f29.tmp |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\_aif35b.tmp |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\_ai45ab.tmp |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\_ai9fd.tmp |
|
| Details | File | 1 | c:\users\tee\appdata\local\programs\autodesk\genuine service\genuineservice.exe |
|
| Details | File | 1 | c:\autodesk\wi\autodesk revit 2021\x86\adskapp\adapplicationmanager-webinstaller.exe |
|
| Details | File | 2 | utorrentie.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\_aic54c.tmp |
|
| Details | File | 1 | adpclientservice.exe |
|
| Details | File | 1 | c:\users\tee\downloads\revit_2021_g1_win_64bit_wi_en-us_setup_webinstall.exe |
|
| Details | File | 4 | vpn.exe |
|
| Details | File | 1 | c:\windows\temp\is-hkom7.tmp |
|
| Details | File | 1 | vpnsetupwatchdog.exe |
|
| Details | File | 1 | vpnsvc.exe |
|
| Details | File | 1 | c:\windows\temp\is-0er3k.tmp |
|
| Details | File | 1 | asw_setup_1586794073.tmp |
|
| Details | File | 4 | instup.exe |
|
| Details | File | 6 | photos.exe |
|
| Details | File | 19 | hxtsr.exe |
|
| Details | File | 1 | mcchsvc.exe |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_344_plugin.exe |
|
| Details | File | 5 | mcuicnt.exe |
|
| Details | File | 14 | ui.exe |
|
| Details | File | 1 | c:\windows\temp\nsq6ec8.tmp |
|
| Details | File | 1 | securityscan_inner.exe |
|
| Details | File | 1 | pingsender.exe |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_330_plugin.exe |
|
| Details | File | 1 | c:\users\tee\downloads\flashplayer32au_g_install.exe |
|
| Details | File | 1 | c:\windows\temp\nsad07c.tmp |
|
| Details | File | 1 | poptip.exe |
|
| Details | File | 4 | skypeapp.exe |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_321_plugin.exe |
|
| Details | File | 70 | onedrivesetup.exe |
|
| Details | File | 1 | c:\users\tee\downloads\flashplayer32au_dd_install.exe |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_314_plugin.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\scoped_dir13364_939965523\flashplayer32au_dd_install.exe |
|
| Details | File | 13 | onedriveupdaterservice.exe |
|
| Details | File | 2 | opera_autoupdate.exe |
|
| Details | File | 73 | opera.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\scoped_dir19428_807819717\operasetup.exe |
|
| Details | File | 13 | filesynchelper.exe |
|
| Details | File | 49 | onedrive.exe |
|
| Details | File | 1 | adobe_licensing_helper.exe |
|
| Details | File | 26 | app.exe |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_303_plugin.exe |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_293_plugin.exe |
|
| Details | File | 1 | c:\users\tee\documents\downloads\flashplayer32au_d_install.exe |
|
| Details | File | 1 | c:\windows\temp\nszd72b.tmp |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\nsz6135.tmp |
|
| Details | File | 1 | protectorupdater.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\reimagerepair.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\jds1168513812.tmp |
|
| Details | File | 1 | jre-8u201-windows-i586.exe |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_255_plugin.exe |
|
| Details | File | 1 | c:\users\tee\downloads\operasetup.exe |
|
| Details | File | 1 | companionapp.exe |
|
| Details | File | 1 | browser_crash_reporter.exe |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_238_plugin.exe |
|
| Details | File | 4 | adobearmhelper.exe |
|
| Details | File | 1 | c:\windows\temp\nse1e90.tmp |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_223_plugin.exe |
|
| Details | File | 1 | hxcalendarappimm.exe |
|
| Details | File | 1 | c:\windows\temp\nsgd922.tmp |
|
| Details | File | 1 | 8668_free.exe |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_207_plugin.exe |
|
| Details | File | 1 | c:\windows\temp\nsof346.tmp |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\is-j0o21.tmp |
|
| Details | File | 1 | pdfelement6-pro_full2996.tmp |
|
| Details | File | 1 | 8641_free.exe |
|
| Details | File | 1 | c:\windows\temp\nsxfe45.tmp |
|
| Details | File | 1 | c:\windows\temp\nss37dc.tmp |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_192_plugin.exe |
|
| Details | File | 1 | c:\program files\mcafee security scan\uninstallx.exe |
|
| Details | File | 1 | c:\windows\temp\nsj7b3.tmp |
|
| Details | File | 1 | transerr.exe |
|
| Details | File | 1 | 8343_free.exe |
|
| Details | File | 1 | c:\program files\bytefence\rtop\uninstall.exe |
|
| Details | File | 1 | c:\program files\bytefence\rsenginehelper.exe |
|
| Details | File | 1 | c:\users\tee\appdata\roaming\baidu\baidunetdisk\baidunetdiskhost.exe |
|
| Details | File | 1 | securebrowser_setup_155561709110688.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\_ai3ec4.tmp |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\7zs46d7f53b\carrier.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\7zs46d7f53b\genericsetup.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\7zs46d7f53b\installer.exe |
|
| Details | File | 1 | c:\program files\bytefence\rtop\bin\rtop_svc.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\uncheck_setup.exe |
|
| Details | File | 1 | c:\program files\bytefence\bytefencescan.exe |
|
| Details | File | 1 | c:\program files\bytefence\bytefenceservice.exe |
|
| Details | File | 1 | c:\program files\bytefence\bytefence.exe |
|
| Details | File | 3 | 19.exe |
|
| Details | File | 1 | c:\users\tee\downloads\bitcomet_setup.exe |
|
| Details | File | 1 | candycrushsaga.exe |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_171_plugin.exe |
|
| Details | File | 1 | maps.exe |
|
| Details | File | 17 | microsoftedgeupdate.exe |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_156_plugin.exe |
|
| Details | File | 1 | peopleapp.exe |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_142_plugin.exe |
|
| Details | File | 4 | wpscloudsvr.exe |
|
| Details | File | 1 | 7635_free.exe |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_114_plugin.exe |
|
| Details | File | 1 | onenoteim.exe |
|
| Details | File | 1 | c:\windows\syswow64\macromed\flash\flashutil32_32_0_0_101_plugin.exe |
|
| Details | File | 1 | c:\users\tee\downloads\flashplayer32au_d_install.exe |
|
| Details | File | 1 | securebrowser_setup_154355315614312.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\statistics.exe |
|
| Details | File | 6 | qhsafetray.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\temp\nsyf44e.tmp |
|
| Details | File | 1 | statistics.exe |
|
| Details | File | 1 | c:\program files\legacyfx metatrader 5 terminal\metatester64.exe |
|
| Details | File | 1 | faxrx.exe |
|
| Details | File | 5 | qhactivedefense.exe |
|
| Details | File | 1 | 360tsliveupd.exe |
|
| Details | File | 3 | c:\windows\system32\alg.exe |
|
| Details | File | 1 | c:\users\tee\appdata\roaming\zoom\bin\airhost.exe |
|
| Details | File | 1 | c:\users\tee\appdata\roaming\zoom\bin\zoom.exe |
|
| Details | File | 18 | mdnsresponder.exe |
|
| Details | File | 1 | 360instantsetup.exe |
|
| Details | File | 1 | c:\users\tee\appdata\local\microsoft\onedrive\onedrive.exe |
|
| Details | File | 1 | c:\program files\autodesk\3ds max 2016\nvidia\satellite\raysat_3dsmax2016_64.exe |
|
| Details | File | 1 | c:\program files\autodesk\3ds max 2016\nvidia\satellite\raysat_3dsmax2016_64server.exe |
|
| Details | File | 1 | ccd.exe |
|
| Details | File | 2 | powerdvd.exe |
|
| Details | File | 2 | powerdvd12ml.exe |
|
| Details | File | 2 | powerdvd12.exe |
|
| Details | File | 1 | pdr10.exe |
|
| Details | File | 3 | liveupdate360.exe |
|
| Details | File | 1 | dmcdaemon.exe |
|
| Details | File | 1 | windowsupnpmv.exe |
|
| Details | File | 87 | skype.exe |
|
| Details | File | 27 | avgui.exe |
|
| Details | File | 2 | c:\program files\avg\tuneup\tuneupui.exe |
|
| Details | File | 1 | c:\program files\avg\driver updater\driverupdui.exe |
|
| Details | File | 1 | c:\program files\avg\secure vpn\vpn.exe |
|
| Details | File | 22 | c:\program files\microsoft office\root\office16\outlook.exe |
|
| Details | File | 1 | adsklicensinganalyticsclient.exe |
|
| Details | File | 1 | senddmp.exe |
|
| Details | File | 1 | adsklicensinginsthelper.exe |
|
| Details | File | 3 | adsklicensingservice.exe |
|
| Details | File | 1 | adskflex.exe |
|
| Details | File | 1 | lmgrd.exe |
|
| Details | File | 1 | c:\program files\avg\breachguard\bgui.exe |
|
| Details | File | 11 | dropbox.exe |
|
| Details | File | 1 | omnipage19.exe |
|
| Details | File | 1 | ppmv.exe |
|
| Details | File | 2 | ereg.exe |
|
| Details | File | 1 | gladinetclient.exe |
|
| Details | File | 1 | wosvsssvr.exe |
|
| Details | File | 1 | wosvsssvr2003.exe |
|
| Details | File | 52 | c:\program files\google\chrome\application\chrome.exe |
|
| Details | File | 76 | msedgewebview2.exe |
|
| Details | File | 1 | tuneupsvc.exe |
|
| Details | File | 533 | ntdll.dll |
|
| Details | File | 2 | c:\program files\avg\tuneup\tuneupsvc.exe |
|
| Details | File | 36 | c:\windows\system32\ntdll.dll |
|
| Details | File | 1 | isuspm.exe |
|
| Details | File | 2 | c:\programdata\flexnet\connect\11\isuspm.exe |
|
| Details | File | 4 | shellexperiencehost.exe |
|
| Details | File | 2 | c:\windows\systemapps\shellexperiencehost_cw5n1h2txyewy\shellexperiencehost.exe |
|
| Details | File | 1122 | svchost.exe |
|
| Details | File | 6 | aswamsi.dll |
|
| Details | File | 4 | antimalware_provider.dll |
|
| Details | File | 7 | sihclient.exe |
|
| Details | IPv4 | 2 | 34.80.59.191 |
|
| Details | IPv4 | 1 | 5.4.1.19 |