Home / Spyware Encyclopedia / Packed.pepatch.ju << Back

Recommendation to Automatically remove Packed.pepatch.ju


Our products can remove Packed.pepatch.ju and thousands of other Virus and Spyware automatically and instantly.

Packed.pepatch.ju Details


  • Category Packed
  • Discovered 6/12/2011 12:45:58 AM
  • Modified 10/3/2024 11:10:59 AM
  • Threat Level Medium
  • Category Description
    Spyware files which are compressed as they make their work undetectable by anti-virus products.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
5d365a10.exe 389171Microsoft Corporation4.72.3110.0889216131beca8a62e74e87bda965e54 
rstray.exe 713216  d3a0271dfd8856702abc48f99db9c8d7 
01A83E2B.EXE 303104  c7cf698535e60af1cc0fe908325a1641 
e284da3c.exe 871100  afc4b476ad331b319a9ea3d85923e5f6 
1a99995c.exe 715264  7ab842c04a51047c087beb735151e39a 
8B27208C.EXE 557056  6b8d1592b18915c61c662adc8398474d 
pack.exe 346112  6698b7e4b118c63d90cc0f40633b8d7e 
B689B5EA.EXE 693659  4d9a36f2071255eded1bf312e6909657 
d2ef66dd.exe 872481  4ba5a39c270e2506781b44a661845a31 
ECEDDF76.EXE 427088  39ce8fa45c45815a1bec7963b8ff1dc2 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"ilortgdg"\"%win.sys32%\keepsafe.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"dsfghjgj"\"%win.sys32%\keepsafe.exe"
..\System\CurrentControlSet\Enum\root\legacy_roxe\(Default)
..\System\CurrentControlSet\Enum\root\legacy_daohao\(Default)
..\System\CurrentControlSet\Services\daohao\(Default)
..\System\CurrentControlSet\Enum\root\legacy_graypigeonserver\(Default)
..\System\CurrentControlSet\Enum\root\legacy_rstray.exe\(Default)
..\System\CurrentControlSet\Services\rstray.exe\(Default)
..\System\CurrentControlSet\Enum\root\legacy_rcmdsvc\(Default)
..\System\CurrentControlSet\Enum\root\legacy_utilitymangerr\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.