I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
REGSVR.EXE – Virus Sality removal
| File | MD5 | Virus Alias |
|---|---|---|
| REGSVR.EXE | 085b32035e65d9f7232b5a2b1215c62a | Virus Sality |
| REGSVR.EXE | 085b32035e65d9f7232b5a2b1215c62a | Suspicious File |
| REGSVR.EXE | 085b32035e65d9f7232b5a2b1215c62a | Trojan Click |
| REGSVR.EXE | 085b32035e65d9f7232b5a2b1215c62a | Worm Autoit |
| REGSVR.EXE | 085b32035e65d9f7232b5a2b1215c62a | Worm Autorun |
| REGSVR.EXE | 085b32035e65d9f7232b5a2b1215c62a | Trojan Siggen |
REGSVR.EXE size: 686241 bytes
REGSVR.EXE hash: 085B32035E65D9F7232B5A2B1215C62A
Created files:
C:\ff7c0
%WinDir%\regsvr.exe
%SysDir%\28463\svchost.001
%SysDir%\28463\svchost.exe
%SysDir%\regsvr.exe
%SysDir%\svchost .exe
D:\ffba0
Autostart registry keys:
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell: Explorer.exe regsvr.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Msn Messsenger: %WinDir%\System32\regsvr.exe
Detected by UnHackMe:
REGSVR.EXE
Default location: %WinDir%\REGSVR.EXE
Dropper information:
MD5: 085b32035e65d9f7232b5a2b1215c62a
File size: 686241 bytes