Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
SystemTrojan-Downloader_Win32_Agent.nmi
The Trojan downloads another program through the Internet and launches it on the victim's computer without the user's knowledge or permission.
Detection date: August 21, 2008
Specifications
The Trojan downloads another program through the Internet and launches it on the victim's computer without the user's knowledge or permission. It is an EXE file with size ranging from 18KB to 47KB.
Work
The Trojan will contact the following website:
http://xanjan.cn/*****update.txt
This is a list of files that will be downloaded to your computer. This list file will be downloaded to the directory:
% Application Data% update.dat
The links in the file are encrypted. Trojans will then download the files from the link in the file and save them at:
% Application Data% .exe
is an acronym for random strings of numbers and letters, for example: m2zpp.exe , 43m66m.exe .
After the files have been downloaded to the computer, they will start executing and then delete themselves. If the downloaded files are dll files, they will register themselves to the system registry and be started every time the system works.
After the distribution has been completed, the original Trojan deletes itself from the victim's computer.
Instructions for removal
a complete antivirus solution, follow these instructions to remove malicious code from your computer:
1. Delete the original Trojan file (file location depends on how it originally entered the victim computer).
2. Update the virus database and perform a full computer scan.
- Appeared Trojans spy on businesses
- The fake Trojan add-on Trojan is extremely dangerous
- Appeared trojan trojan antivirus tool for mobile
- Microsoft warned the Emotet trojan back on a large scale, stealing the victim's banking information
- Carefully stolen information with Trojan - How to disable Trojan
- The new Trojan BagleDl-U is spreading fast
- How to Become a Nickelodeon Star
- Find out about Virus.Win32.Sality.ag template
- Information about Gpcode.ak virus
- Hidden Trojan alerts in MP3 music files
- Trojan-PSW.Win32.OnLineGames.rlh
- Summary: All new Windows 10 features are announced by Microsoft at Build 2020
- How to Get a Talent Agent
- What's special about the new plan to remove Microsoft's 2019 Win32 applications?
- What is Trojan Dropper?
- Trojan-Downloader.Win32.Agent.mee
-
How to Shut Down or Restart Another Computer Using CMD - How to share and copy files between Nox App Player and computer
- What is Great Discover Virus? How to remove Great Discover virus
- 8 ways to speed up network through Regedit in Windows 10
- How to record on computer using Adobe Audition
- How to use Ultraviewer to send and receive files
How to Shut Down or Restart Another Computer Using CMD 
How to share and copy files between Nox App Player and computer 
What is Great Discover Virus? How to remove Great Discover virus 
8 ways to speed up network through Regedit in Windows 10 
How to record on computer using Adobe Audition 
How to use Ultraviewer to send and receive files 
Windows XP
Windows Server 2012
Windows 8
Windows 7
Windows 10
Wifi tips
Virus Removal - Spyware
Speed up the computer
Server
Security solution
Mail Server
LAN - WAN
Ghost - Install Win
Fix computer error
Configure Router Switch
Computer wallpaper
Computer security
Windows 11
Mac OS X
Hardware
Game