Home / Parasites / Malware / Packed.Execryptor
Danger level 8
Type: Malware

Packed.Execryptor

Packed.Execryptor is the latest in PC infections. Being a form of malware, whcih displays spyware characteristics, Packed.Execryptor is not going to do any good for any system it has embed itself within.

Packed.Execryptor is classified as malicious software, as it is designed to compromise and corrupt any system it has infiltrated. Not dissimilar to the Home Search Virus, Packed.Execryptor is capable of installing a local service which monitors its own state of health.

This local service seems to be installed within the registry of a computer system. This particular service will then also reinstall itself to registry should the user attempt to change its registry entries. The Packed.Execryptor’s services will startup each and every time the system is rebooted. It is because of this interference with registry settings that it is highly recommended to remove Packed.Execryptor from any system it has been detected in.

Packed.Execryptor has a few aliases, namely: convert.dll, kdfhok.dll, sXe Injected.exe and wbsrv.dll.

Packed.Execryptor also displays the following behavior:

• The Process is polymorphic and can change its structure
• The Process is packed and/or encrypted using a software packing process
• Adds a Registry Key (RUN) to auto start Programs on system start up
• This Process Deletes Other Processes From Disk
• Added as a Registry auto start to load Program on Boot up
• Executed as a Process
• The process is hooked into all running processes which could allow it to take control of the system or record keyboard input, mouse activity and screen contents
• Registered as a Dynamic Link Library File

The threat of this particular parasite, Packed.Execryptor, is not to be taken lightly, as Packed.Execryptor is highly capable of severely compromising a computer system and may even result in system failure if not entirely removed from the infected system.

In order to protect a computer system from the threat of Packed.Execryptor one should adhere to the following rules:

1. Keep your Windows security updated
2. Download and install a reliable and competent anti-spyware application, one that will recognise the current Packed.Execryptor threat, as well as any other forms of spyware, malware, viruses, worms, etc.

The most important thing to remember when it comes to this PC parasite, Packed.Execryptor, is to remove it as soon as it has been detected on a computer system.

Download Spyware Removal Tool to Remove* Packed.Execryptor
  • Quick & tested solution for Packed.Execryptor removal.
  • 100% Free Scan for Windows
disclaimer

How to manually remove Packed.Execryptor

Files associated with Packed.Execryptor infection:

sXe Injected.exe
wbsrv.dll
convert.dll
kdfhok.dll

Packed.Execryptor DLL's to remove:

wbsrv.dll
convert.dll
kdfhok.dll

Packed.Execryptor processes to kill:

sXe Injected.exe

Remove Packed.Execryptor registry entries:

HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN sXe Injected
HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSNTCURRENTVERSIONWINLOGONNOTIFYSOFTWAREMICROSOFTWINDOWS NTCURRENTVERSIONWINLOGONNOTIFYWBSrv
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWSNT\CURRENTVERSION\WINLOGON\NOTIFY\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\NOTIFY\WBSrv
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ sXe Injected
RUNNING PROGRAMexplorer.exe
RUNNING PROGRAM\explorer.exe
Disclaimer

Post comment — WE NEED YOUR OPINION!

Comment:
Name:
Please enter security code:
 This is a captcha-picture. It is used to prevent mass-access by robots.

 
© 2006-2024 pcthreat.com  |  Terms of use |  Privacy policy |  About us |  Link to US