TEMP4.EXE – Trojan OnLineGames

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

TEMP4.EXE – Trojan OnLineGames removal

File MD5 Virus Alias
TEMP4.EXE e478de8a7212342030e46f4d433a9eaa Trojan OnLineGames
TEMP4.EXE e478de8a7212342030e46f4d433a9eaa Trojan SuspiciousFile
TEMP4.EXE e478de8a7212342030e46f4d433a9eaa Trojan Qhost
TEMP4.EXE e478de8a7212342030e46f4d433a9eaa Trojan Artemis
TEMP4.EXE e478de8a7212342030e46f4d433a9eaa Trojan XPACK
TEMP4.EXE e478de8a7212342030e46f4d433a9eaa Trojan Generic

TEMP4.EXE size: 215040 bytes
TEMP4.EXE hash: E478DE8A7212342030E46F4D433A9EAA

Created files:

C:\3238300.dll
C:\windows\System32\RpcSvc.psd
C:\windows\Tasks\csrss.exe
C:\windows\temp\svohcst.exe
C:\windows\temp\temp1.exe
C:\windows\temp\temp2.exe
C:\windows\temp\temp3.exe
C:\windows\temp\temp4.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Download: C:\windows\temp\svohcst.exe
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit: %WinDir%\System32\userinit.exe,%WinDir%\Tasks\csrss.exe?, |Q- |X- |2???Detected by UnHackMe:

TEMP4.EXE
Default location: %TEMP%\TEMP4.EXE

Dropper information:
MD5: 845b0945d5fe0e0aaa16234dc21484e0
File size: 475152 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images