REGSVR.EXE – Worm Autoit

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

REGSVR.EXE – Worm Autoit removal

FileMD5Virus Alias
REGSVR.EXE 134a591d82075cd0f6b41575de7e8cf5 Worm Autoit
REGSVR.EXE 134a591d82075cd0f6b41575de7e8cf5 Trojan ASPack
REGSVR.EXE 134a591d82075cd0f6b41575de7e8cf5 Trojan SuspiciousFile
REGSVR.EXE 134a591d82075cd0f6b41575de7e8cf5 Trojan Artemis
REGSVR.EXE 134a591d82075cd0f6b41575de7e8cf5 Trojan XPACK
REGSVR.EXE 134a591d82075cd0f6b41575de7e8cf5 Trojan Generic

REGSVR.EXE size: 2060288 bytes
REGSVR.EXE hash: 134A591D82075CD0F6B41575DE7E8CF5

Created files:

%WinDir%\regsvr.exe
%SysDir%\28463\svchost.001
%SysDir%\regsvr.exe
%SysDir%\svchost .exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell: Explorer.exe regsvr.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Msn Messsenger: %WinDir%\System32\regsvr.exe

Detected by UnHackMe:

REGSVR.EXE
Default location: %WinDir%\REGSVR.EXE

Dropper information:
MD5: 134a591d82075cd0f6b41575de7e8cf5
File size: 2060288 bytes

Leave a Reply