Home / Spyware Encyclopedia / Packed.pepatch.ju << Back

Recommendation to Automatically remove Packed.pepatch.ju


Our products can remove Packed.pepatch.ju and thousands of other Virus and Spyware automatically and instantly.

Packed.pepatch.ju Details


  • Category Packed
  • Discovered 6/12/2011 12:45:58 AM
  • Modified 10/3/2024 11:10:59 AM
  • Threat Level Medium
  • Category Description
    Spyware files which are compressed as they make their work undetectable by anti-virus products.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
5d365a10.exe 389171Microsoft Corporation4.72.3110.0889216131beca8a62e74e87bda965e54 
rstray.exe 713216  d3a0271dfd8856702abc48f99db9c8d7 
01A83E2B.EXE 303104  c7cf698535e60af1cc0fe908325a1641 
2B8794D1.EXE 407728  7e5f86049b3f296de681644eae049516 
B5906E4F.EXE 55360  4cbfe8d26ddfe720e93185c5536d0a94 
lzgtlh.dat 36352  2d543c7da1751c2b823a8b58498f892b 
oeazbr.dat 36352  2d543c7da1751c2b823a8b58498f892b 
E06A207E.EXE 7268  29f28da64604235257d9cdb648cb79e3 
2E15F761.EXE 203182  27ecb79451093746760f16265cbeb092 
11ea217b.exe 807526Microsoft Corporation6.0.2900.2180aeb94798983c0bc3d88cbead561b65c9 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"ilortgdg"\"%win.sys32%\keepsafe.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"dsfghjgj"\"%win.sys32%\keepsafe.exe"
..\System\CurrentControlSet\Enum\root\legacy_roxe\(Default)
..\System\CurrentControlSet\Enum\root\legacy_daohao\(Default)
..\System\CurrentControlSet\Services\daohao\(Default)
..\System\CurrentControlSet\Enum\root\legacy_graypigeonserver\(Default)
..\System\CurrentControlSet\Enum\root\legacy_rstray.exe\(Default)
..\System\CurrentControlSet\Services\rstray.exe\(Default)
..\System\CurrentControlSet\Enum\root\legacy_rcmdsvc\(Default)
..\System\CurrentControlSet\Enum\root\legacy_utilitymangerr\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware