7/03/2012

Be careful with WTISYSSRO.EXE

There is no place for WTISYSSRO.EXE on your computer, because it is harmful one. It is implanted on the vulnerable computer by cyber crooks as a tool for evil plot implementation.
The file is used for hidden penetration into PC and its remote administration. Regularly check your PC for WTISYSSRO.EXE and other insecure items. All PC holders are at the risk group.
Full path on a computer: %System%\wbem\WtiSysSro.exe


The short report of this malware analysis

Full path on a computer: %System%\wbem\WtiSysSro.exe
WTISYSSRO.EXE is known under the name of Backdoor.DirtJump, Trojan.Barys, Worm.Joleee

In the process of installation it adds the following registry entries:

HKLM\SYSTEM\CurrentControlSet\Services\SrvWinDrivs2\ImagePath: “%System%\wbem\WtiSysSro.exe”

The files are caused by this malware

%System%\wbem\WtiSysSro.exe
To stop this turmoil, we recommend you to launch GridinSoft Trojan Killer, a reputable antivirus tool. It will remove this unwanted file and check your computer system for other insecure stuff.

WTISYSSRO.EXE file remover:

malware removal tool

No comments:

Post a Comment