REGSVR.EXE – Worm Autoit

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

REGSVR.EXE – Worm Autoit removal

File MD5 Virus Alias
REGSVR.EXE 0eac81f65054f76fefc9131a4165b75f Worm Autoit
REGSVR.EXE 0eac81f65054f76fefc9131a4165b75f Trojan Hllw
REGSVR.EXE 0eac81f65054f76fefc9131a4165b75f Trojan Downloader
REGSVR.EXE 0eac81f65054f76fefc9131a4165b75f Worm Sohanat
REGSVR.EXE 0eac81f65054f76fefc9131a4165b75f Worm Vobfus
REGSVR.EXE 0eac81f65054f76fefc9131a4165b75f Worm Autorun

REGSVR.EXE size: 1382400 bytes
REGSVR.EXE hash: 0EAC81F65054F76FEFC9131A4165B75F

Created files:

%WinDir%\regsvr.exe
%SysDir%\regsvr.exe
%SysDir%\svchost .exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell: Explorer.exe regsvr.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Msn Messsenger: %WinDir%\System32\regsvr.exe

Detected by UnHackMe:

REGSVR.EXE
Default location: %WinDir%\REGSVR.EXE

Dropper information:
MD5: 0eac81f65054f76fefc9131a4165b75f
File size: 1382400 bytes

Leave a Reply