REGSVR.EXE – Worm Autorun

Alex NightWatcher

Worm No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

REGSVR.EXE – Worm Autorun removal

File	MD5	Virus Alias
REGSVR.EXE	13c2ce7b5a40efb9d9f42793b8bd59a5	Worm Autorun
REGSVR.EXE	13c2ce7b5a40efb9d9f42793b8bd59a5	Trojan SuspiciousFile
REGSVR.EXE	13c2ce7b5a40efb9d9f42793b8bd59a5	Trojan Generic
REGSVR.EXE	13c2ce7b5a40efb9d9f42793b8bd59a5	Trojan Hllw
REGSVR.EXE	13c2ce7b5a40efb9d9f42793b8bd59a5	Trojan Downloader
REGSVR.EXE	13c2ce7b5a40efb9d9f42793b8bd59a5	Worm Sohanat

REGSVR.EXE size: 1245184 bytes
REGSVR.EXE hash: 13C2CE7B5A40EFB9D9F42793B8BD59A5

Created files:

%WinDir%\regsvr.exe
%SysDir%\regsvr.exe
%SysDir%\svchost .exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell: Explorer.exe regsvr.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Msn Messsenger: %WinDir%\System32\regsvr.exe

Detected by UnHackMe:

REGSVR.EXE
Default location: %WinDir%\REGSVR.EXE

Dropper information:
MD5: 13c2ce7b5a40efb9d9f42793b8bd59a5
File size: 1245184 bytes

Leave a Reply Cancel reply

You must be logged in to post a comment.