Versions

16, 10, 0, 0	1.52%
16, 6, 0, 0	0.51%
16, 5, 0, 0	0.51%
16, 1, 0, 0	0.51%
16, 1, 0, 0	0.51%
15, 8, 0, 0	0.51%
15, 6, 0, 0	3.54%
15, 6, 0, 0	0.51%
15, 5, 5, 0	4.55%
15, 5, 5, 0	1.52%
15, 5, 0, 0	2.53%
15, 2, 0, 0	2.53%
15, 1, 1, 0	2.53%
15, 1, 0, 0	6.06%
15, 0, 0, 0	4.55%
14, 3, 1, 0	0.51%
14, 3, 0, 0	1.52%
14, 3, 0, 0	0.51%
14, 2, 1, 0	4.55%
14, 2, 0, 0	7.58%
14, 1, 2, 0	1.52%
14, 1, 1, 0	1.52%
14, 1, 1, 0	6.06%
14, 1, 1, 0	0.51%
14, 0, 2011, 0	0.51%
14, 0, 2, 0	2.53%
14, 0, 1, 0	7.58%
14, 0, 1, 0	0.51%
13, 5, 0, 0	0.51%
13, 4, 0, 0	1.52%
13, 3, 0, 0	7.58%
13, 2, 0, 0	12.12%
13, 2, 0, 0	0.51%
13, 1, 1, 0	0.51%
13, 0, 0, 0	1.52%
13, 0, 0, 0	1.52%
12, 4, 3, 0	1.52%
12, 4, 3, 0	0.51%
12, 4, 0, 0	1.52%
12, 4, 0, 0	0.51%
12, 1, 2, 0	0.51%
12, 1, 1, 0	1.52%
12, 0, 0, 0	0.51%

Warning 4 antivirus scanners has detected malware in various versions of RegSrvc.exe.

There are 43 versions of regsrvc.exe in the wild, the latest version being 16, 10, 0, 0. It is started as a Windows Service called 'IntelR PROSet/Wireless Registry Service' with the name 'RegSrvc' and described as “Provides registry access to all IntelR PROSet/Wireless Software components”. . In addition, it is run under the context of the SYSTEM account with extensive privileges (the administrator accounts have the same privileges). The average file size is about 476.31 KB. The file is a digitally signed and issued to Intel Corporation by Intel Corporation. Some variations of the file have been seen to be installed with the program Lenovo Patch Utility 64 bit from Lenovo. During the process's lifecycle, the typical CPU resource utilization is about 0.0001% including both foreground and background operations, the average private memory consumption is about 2.25 MB with the maximum memory reaching around 6.31 MB. Addionally, typically read and write I/O disk operations is about 2.17 KB per minute for reads and 0 Bytes per minute for writes.

Intel PROSet/Wireless WiFi Registry Service is used to set up, edit, and manage network profiles to connect to a network. It also includes advanced settings such as power management and channel selection for setting up ad-hoc networks. The WiFi Connection Utility Main Window lets users view the current connection details (signal quality, speed and current network name), scan for available WiFi networks and troubleshoot wireless connection problems.

Based on 40+ industry antivirus scanners, 4 of them detected the following malware.