|
|
Detect and remove hidden rootkits using
UnHackMe
RegRun Security Suite = 24 system utilities for protecting your computer. Try now! |
 Reg32.exe - Dangerous
It is a simple Trojan that copies itself to the windows folder as the file Reg32.exe and sets the following registry entry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Reg32 = C:\Windows\Reg32.exe This trojan will also set the registry entries listed below to point to the page secure.html located in the default Windows folder. This HTML page claims that the system has been compromised by spyware and prompts the user to visit the URL http://www.privacyoutpost.com/enter.html... HKCU\Software\Microsoft\Internet Explorer\Main\Default_Page_URL HKCU\Software\Microsoft\Internet Explorer\Main\Local Page HKCU\Software\Microsoft\Internet Explorer\Main\Start Page HKLM\Software\Microsoft\Internet Explorer\Main\Default_Page_URL HKLM\Software\Microdoft\Internet Explorer\Main\Local Page HKLM\Software\Microsoft\Internet explorer\Main\Start Page Manual removal: Locate the HKEY_LOCAL_MACHINE entry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\ and delete this value: Reg32= C:\Windows\Reg32.exe Removal: Reg32.exe is removed by RegRun.
Read more... Removal instructions...
Recommended software: RegRun Security Suite - removal and protection. http://www.regrun.com RegRun Reanimator - free removal tool. greatis.com/reanimator
What is hidden in MSDN? Why software developers prefer Win32.FreeTechSecrets.com? All Unix Manuals in Alphabetical Order C# controls for .NET in 3 simple steps. Constantly updated. Last update: June 30 2008
Interesting information about Vista programs... Need consultation? Would you like to add your opinion?
|
|
