Trojan.TechAgent
* Registry path
hcu_key\Software\TechAgent
hlm_key\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\TechAgent
hlm_key\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3230F7A7-A7C3-45FC-9B34-E9DD0F280CD4}
hlm_key\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{43524D85-E552-4D7E-B28C-9A13E6B2AB08}
hlm_key\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\TechAgent Task
hlm_key\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\TechAgentTask
* Files path
C\Windows\System32\Tasks\TechAgentTask
C\Windows\System32\Tasks\TechAgent Task
C\Users\Public\Desktop\TechAgent.lnk
C\ProgramData\Microsoft\Windows\Start Menu\Programs\TechAgent\TechAgent.lnk
C\ProgramData\Microsoft\Windows\Start Menu\Programs\TechAgent\TechAgent on the Web.url
C\Program Files\TechAgent\uninstaller.exe
C\Program Files\TechAgent\TechAgent.exe
dir_C\ProgramData\Microsoft\Windows\Start Menu\Programs\TechAgent
dir_C\Program Files\TechAgent
|
|
|