REGSVR.EXE – Worm Autoit

Worm No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

REGSVR.EXE – Worm Autoit removal

FileMD5Virus Alias
REGSVR.EXE 050e07347363c08cce0e936d13b356f5 Worm Autoit
REGSVR.EXE 050e07347363c08cce0e936d13b356f5 Trojan Generic
REGSVR.EXE 050e07347363c08cce0e936d13b356f5 Trojan Click
REGSVR.EXE 050e07347363c08cce0e936d13b356f5 Trojan Downloader
REGSVR.EXE 050e07347363c08cce0e936d13b356f5 Worm Autorun
REGSVR.EXE 050e07347363c08cce0e936d13b356f5 Trojan Siggen

REGSVR.EXE size: 616609 bytes
REGSVR.EXE hash: 050E07347363C08CCE0E936D13B356F5

Created files:

%WinDir%\regsvr.exe
%SysDir%\28463\svchost.001
%SysDir%\28463\svchost.002
%SysDir%\28463\svchost.exe
%SysDir%\regsvr.exe
%SysDir%\svchost .exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\svchost Agent: %WinDir%\System32\28463\svchost.exe
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell: Explorer.exe regsvr.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Msn Messsenger: %WinDir%\System32\regsvr.exe

Detected by UnHackMe:

REGSVR.EXE
Default location: %WinDir%\REGSVR.EXE

Dropper information:
MD5: 050e07347363c08cce0e936d13b356f5
File size: 616609 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images