How to remove trz43B9.tmp

trz43B9.tmp

The module trz43B9.tmp has been detected as Trojan.Agent

trz43B9.tmp
Remove trz43B9.tmp

File Details

Product Name:

WinPcap
Company Name:

Riverbed Technology, Inc.
MD5: 4faffea3ea90757fcc48dbfab200095b
Size: 132 KB
First Published: 2018-10-09 16:16:33 (6 years ago)
Latest Published: 2019-03-20 20:05:04 (5 years ago)
Status: Trojan.Agent (on last analysis)
Analysis Date: 2019-03-20 20:05:04 (5 years ago)

Overview

Signed By: STAFF4IMAGING LTD
Status: Valid

Common Places:

%system%
%sysdrive%\adwcleaner\quarantine\v1\20181013.004431
%system%
%system%

File Names:

nfstat.sys
trz43B9.tmp
nfstat.sys#FF1E3BC2BF6DBE53

Geography:

13.6%
11.7%
6.8%
5.5%
5.2%
4.9%
4.9%
4.5%
4.2%
2.6%
1.9%
1.9%
1.9%
1.6%
1.6%
1.6%
1.3%
1.3%
1.3%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%

OS Version:

Windows 10 79.6%
Windows 7 12.3%
Windows 8.1 7.5%
Windows Embedded 8.1 0.3%
Windows 8 0.3%

Analysis

Subsystem: Native
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000000010000
Entry Address: 0x00022064

PE Sections:

Name Size of data MD5
.text 95232 5e16865eee85eccfa21906bef68adf18
.rdata 17920 dabe480beb71d21586b7d3f489cdc3fd
.data 5632 b0aa088fbc02641c26a09ad50bb93ef5
.pdata 4096 af47929c1dfc56e701a9d815528baa3a
INIT 4096 00e860546e9f4ed8d9c1d16c486e4f43
.rsrc 1536 09dee542e7f1665f66de1d1412acce2c
.reloc 512 c8da9e905374b91a9d1c31fbed9d959c

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for trz43B9.tmp
copyright for information about trz43B9.tmp