GLB1A2B.EXE – Virus Expiro

Virus No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

GLB1A2B.EXE – Virus Expiro removal

FileMD5Virus Alias
GLB1A2B.EXE 26462d71bacbdd45c8dcf350fa431cc4 Virus Expiro
GLB1A2B.EXE 26462d71bacbdd45c8dcf350fa431cc4 Trojan Crypt

GLB1A2B.EXE size: 256000 bytes
GLB1A2B.EXE hash: 26462D71BACBDD45C8DCF350FA431CC4

Created files:

%SysDir%\cisvc.vir
%SysDir%\clipsrv.vir
%SysDir%\dllhost.vir
%SysDir%\dmadmin.vir
%SysDir%\imapi.vir
%SysDir%\locator.vir
%SysDir%\lsass.vir
%SysDir%\mnmsrvc.vir
%SysDir%\msdtc.vir
%SysDir%\msiexec.vir
%SysDir%\netdde.vir
%SysDir%\rsvp.vir
%SysDir%\scardsvr.vir
%SysDir%\sessmgr.vir
%SysDir%\smlogsvc.vir
%SysDir%\svchost.vir
%SysDir%\tlntsvr.vir
%SysDir%\ups.vir
%SysDir%\vssvc.vir
%SysDir%\wbem\wmiapsrv.vir
%TEMP%\GLB1A2B.EXE

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\msiserver\Type: 20010000
HKLM\System\CurrentControlSet\Services\msiserver\Start: 02000000

Detected by UnHackMe:

GLB1A2B.EXE
Default location: %TEMP%\GLB1A2B.EXE

Dropper information:
MD5: 26462d71bacbdd45c8dcf350fa431cc4
File size: 256000 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images