Home / Spyware Encyclopedia / Packed.pepatch.ju << Back

Recommendation to Automatically remove Packed.pepatch.ju


Our products can remove Packed.pepatch.ju and thousands of other Virus and Spyware automatically and instantly.

Packed.pepatch.ju Details


  • Category Packed
  • Discovered 6/12/2011 12:45:58 AM
  • Modified 10/3/2024 11:10:59 AM
  • Threat Level Medium
  • Category Description
    Spyware files which are compressed as they make their work undetectable by anti-virus products.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
0c292a59.exe 1381888Microsoft Corporation6.00.2900.3300 (xps359ad623ef154b654d03167e2e32f66e 
5d365a10.exe 389171Microsoft Corporation4.72.3110.0889216131beca8a62e74e87bda965e54 
2c3c749e.exe 366592  fe905884744e62694af8773666010956 
rstray.exe 713216  d3a0271dfd8856702abc48f99db9c8d7 
01A83E2B.EXE 303104  c7cf698535e60af1cc0fe908325a1641 
e284da3c.exe 871100  afc4b476ad331b319a9ea3d85923e5f6 
B689B5EA.EXE 693659  4d9a36f2071255eded1bf312e6909657 
B5906E4F.EXE 55360  4cbfe8d26ddfe720e93185c5536d0a94 
d2ef66dd.exe 872481  4ba5a39c270e2506781b44a661845a31 
r.dll 15360  473b323ed4ab6baadcbf6c2b8ecdf9aa 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"ilortgdg"\"%win.sys32%\keepsafe.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"dsfghjgj"\"%win.sys32%\keepsafe.exe"
..\System\CurrentControlSet\Enum\root\legacy_roxe\(Default)
..\System\CurrentControlSet\Enum\root\legacy_daohao\(Default)
..\System\CurrentControlSet\Services\daohao\(Default)
..\System\CurrentControlSet\Enum\root\legacy_graypigeonserver\(Default)
..\System\CurrentControlSet\Enum\root\legacy_rstray.exe\(Default)
..\System\CurrentControlSet\Services\rstray.exe\(Default)
..\System\CurrentControlSet\Enum\root\legacy_rcmdsvc\(Default)
..\System\CurrentControlSet\Enum\root\legacy_utilitymangerr\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.