CLIPSRV.VIR – Virus Expiro

Virus No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

CLIPSRV.VIR – Virus Expiro removal

File MD5 Virus Alias
CLIPSRV.VIR b2da18a286513e9f14dd6b5d7a61c5d6 Virus Expiro
CLIPSRV.VIR b2da18a286513e9f14dd6b5d7a61c5d6 Trojan SuspiciousFile

CLIPSRV.VIR size: 180736 bytes
CLIPSRV.VIR hash: B2DA18A286513E9F14DD6B5D7A61C5D6

Created files:

C:\windows\system32\cisvc.vir
C:\windows\system32\clipsrv.vir
C:\windows\system32\dllhost.exe
C:\windows\system32\dmadmin.vir
C:\windows\system32\imapi.vir
C:\windows\system32\mnmsrvc.vir
C:\windows\system32\msdtc.exe
C:\windows\system32\msiexec.vir
C:\windows\system32\svchost.vir

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\msiserver\Type: 20010000
HKLM\System\CurrentControlSet\Services\msiserver\Start: 02000000
HKLM\System\CurrentControlSet\Services\msiserver\SBIE_CheckPoint: 01000000

Detected by UnHackMe:

CLIPSRV.VIR
Default location: %SYSDIR%\CLIPSRV.VIR

Dropper information:
MD5: 0afb1ce185c539af29f774376dc45f5e
File size: 332288 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images