TEM81.EXE – Trojan Agent

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

TEM81.EXE – Trojan Agent removal

FileMD5Virus Alias
TEM81.EXE 35db985e312f22cc6ead0a4a5f2d0a2d Trojan Agent
TEM81.EXE 35db985e312f22cc6ead0a4a5f2d0a2d Trojan Generic
TEM81.EXE 35db985e312f22cc6ead0a4a5f2d0a2d Trojan Xema
TEM81.EXE 35db985e312f22cc6ead0a4a5f2d0a2d Trojan Hllw
TEM81.EXE 35db985e312f22cc6ead0a4a5f2d0a2d Trojan Downloader
TEM81.EXE 35db985e312f22cc6ead0a4a5f2d0a2d Worm Autorun

TEM81.EXE size: 23552 bytes
TEM81.EXE hash: 35DB985E312F22CC6EAD0A4A5F2D0A2D

Created files:

%SysDir%\6to4.dll
%SysDir%\dllcache\6to4.dll
%TEMP%\tem81.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\6to4\Type: 20000000
HKLM\System\CurrentControlSet\Services\6to4\Start: 02000000
HKLM\System\CurrentControlSet\Services\6to4\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\6to4\DisplayName: 6to4
HKLM\System\CurrentControlSet\Services\6to4\ImagePath: %SystemRoot%\System32\svchost.exe -k netsvcs
HKLM\System\CurrentControlSet\Services\6to4\SBIE_Win32ExitCode: 7F000000
HKLM\System\CurrentControlSet\Services\6to4\Parameters\ServiceDll: 43003A005C00570049004E0044004F00570053005C00730079007300740065006D00330032005C00360074006F0034002E0064006C006C000000

Detected by UnHackMe:

TEM81.EXE
Default location: %TEMP%\TEM81.EXE

Dropper information:
MD5: d6ea9edaa94b1520103a298ffa9cda3f
File size: 401408 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images