TENCENTHW.EXE – Trojan Downloader

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

TENCENTHW.EXE – Trojan Downloader removal

FileMD5Virus Alias
TENCENTHW.EXE 107e71382f8c42169041743dd0e8e72e Trojan Downloader
TENCENTHW.EXE 107e71382f8c42169041743dd0e8e72e Trojan Eldorado
TENCENTHW.EXE 107e71382f8c42169041743dd0e8e72e Trojan QQPass

TENCENTHW.EXE size: 35856 bytes

Created files:

%Temporary Internet Files%\Content.IE5\1HVEIEYW\tplink27[1].exe
%SysDir%\e0x2.dll
%SysDir%\gamehw.exe
%SysDir%\gametohw.exe
%SysDir%\Tencenthw.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\54rk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

Detected by UnHackMe:

TENCENTHW.EXE
Default location: %SYSDIR%\TENCENTHW.EXE

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images