REGSRV64.EXE – Trojan Jorik

February 28, 2013

Alex NightWatcher

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

REGSRV64.EXE – Trojan Jorik removal

File	MD5	Virus Alias
REGSRV64.EXE	6cbcffb35d7e4456121c8918e911ca79	Trojan Jorik
REGSRV64.EXE	6cbcffb35d7e4456121c8918e911ca79	Trojan XPACK
REGSRV64.EXE	6cbcffb35d7e4456121c8918e911ca79	Trojan Generic
REGSRV64.EXE	6cbcffb35d7e4456121c8918e911ca79	Trojan Downloader
REGSRV64.EXE	6cbcffb35d7e4456121c8918e911ca79	Trojan Lethic
REGSRV64.EXE	6cbcffb35d7e4456121c8918e911ca79	Backdoor Maximus

REGSRV64.EXE size: 8704 bytes
REGSRV64.EXE hash: 6CBCFFB35D7E4456121C8918E911CA79

Created files:

%AppData%\regsrv64.exe

Autostart registry keys:

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Microsoft DLL Registration: %WinDir%\System32\config\Systemprofile\Application Data\regsrv64.exe

Detected by UnHackMe:

REGSRV64.EXE
Default location: %APPDATA%\REGSRV64.EXE

Dropper information:
MD5: 6cbcffb35d7e4456121c8918e911ca79
File size: 8704 bytes

Leave a Reply Cancel reply

You must be logged in to post a comment.