TEM81.EXE – Trojan Agent

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

TEM81.EXE – Trojan Agent removal

FileMD5Virus Alias
TEM81.EXE 35db985e312f22cc6ead0a4a5f2d0a2d Trojan Agent
TEM81.EXE 35db985e312f22cc6ead0a4a5f2d0a2d Trojan Generic
TEM81.EXE 35db985e312f22cc6ead0a4a5f2d0a2d Trojan MulDrop4
TEM81.EXE 35db985e312f22cc6ead0a4a5f2d0a2d Trojan Downloader
TEM81.EXE 35db985e312f22cc6ead0a4a5f2d0a2d Worm Viking
TEM81.EXE 35db985e312f22cc6ead0a4a5f2d0a2d Worm Autorun

TEM81.EXE size: 23552 bytes
TEM81.EXE hash: 35DB985E312F22CC6EAD0A4A5F2D0A2D

Created files:

%SysDir%\6to4.dll
%SysDir%\dllcache\6to4.dll
%TEMP%\tem81.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\6to4\Type: 20000000
HKLM\System\CurrentControlSet\Services\6to4\Start: 02000000
HKLM\System\CurrentControlSet\Services\6to4\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\6to4\DisplayName: 6to4
HKLM\System\CurrentControlSet\Services\6to4\ImagePath: %SystemRoot%\System32\svchost.exe -k netsvcs
HKLM\System\CurrentControlSet\Services\6to4\SBIE_Win32ExitCode: 7F000000
HKLM\System\CurrentControlSet\Services\6to4\Parameters\ServiceDll: 43003A005C00570049004E0044004F00570053005C00730079007300740065006D00330032005C00360074006F0034002E0064006C006C000000

Detected by UnHackMe:

TEM81.EXE
Default location: %TEMP%\TEM81.EXE

Dropper information:
MD5: 509cf566fd2040864fb21857113b470a
File size: 843776 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images