Threat Database Backdoors Temp:winupd.exe

Temp:winupd.exe

By ZulaZuza in Backdoors

Temp:winupd.exe is a backdoor Trojan that allows attackers to obtain remote access or send commands to the targeted PC system. Temp:winupd.exe may permit remote attackers to steal the affected computer user's confidential data, download additional files, run and delete processes, etc. Temp:winupd.exe can make a task that automatically re-adds it to Startup. Temp:winupd.exe also harms certain program shortcuts, usually CMD, Internet Explorer, Notepad and others. It is highly recommended to uninstall Temp:winupd.exe as soon as possible.

File System Details

Temp:winupd.exe may create the following file(s):
# File Name Detections
1. %Temp%\winupd.exe
2. C:\Documents and Settings\\Local Settings\Temp\ (Windows 2000/NT/XP)
3. C:\Users\\AppData\Local\Temp\ (Windows 7)

Registry Details

Temp:winupd.exe may create the following registry entry or registry entries:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run winupd = "%UserProfile%\LOCALS~1\Temp:winupd.exe"

Trending

Most Viewed

Loading...