|
Peper Trojan
Overview
Peper Trojan, also called Troj/Peper-A, Trojan.Peper.A and SandBoxer, downloads
files to the user's computer, possibly adware which will open pop-up windows.
Some state that the trojan uses random filenames and registry entries, but it seems to
be pseudo random (?). Extremely hard to detect, Bazooka will try, but will most likely
fail.
A clear sign of infection is a 14 character long registry value starting with a number, located in
'HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Run'. Another indication
of infection is random named processes listed in the Task Manager's process list. Another
sign of infections is network connections to rads01.quadrogram.com (66.150.207.200).
Peper Trojan is bundled with MemoryWatcher.
Classification
Trojan Horse
Files
Amh4V.exe, FmrCj.exe, JvfMa7R.exe, SjrZsY.exe, Iei1NKe7.exe, CpaFG.exe, DozMu4.exe, Cio9f.exe, Ryf9m24V.exe, Idk277g.exe, Oval73H.exe, Yfk8.exe, LgnJ8V3.exe, YmxB.exe, MtyJ62.exe, Szep85ln.exe, XioVQ8s0.exe, Corx5Ux.exe, IpwoDw.exe, Xej7.exe, Kvw1.exe, FqbPw5.exe, HqoX.exe, Cjo9f.exe, NuaK63H.exe, Fdjd3o.exe, AozDF.exe
If you have any of the files related to Peper Trojan on your system,
please send them
for additional analysis. Generally, I have only analysed a
few versions for each software component listed at this web site. With your help I
will be able to look at both old and more recent versions of the Peper Trojan software.
Thank you very much for your time!
Log references
Log 13
Log 18
Log 29
Log 30
Log 38
Log 48
Vendor
QuadroGram LLC (?)
Privacy policy
No privacy policy available.
Detection
Bazooka Adware and Spyware Scanner detects Peper Trojan.
Bazooka is freeware and detects spyware, adware, foistware, trojan horses, viruses, worms and
other potentially unwanted applications.
Read more »
Uninstall Peper Trojan with FreeFixer
I'm working on a general purpose tool for removing unwanted software.
The tool is called FreeFixer
and can help you remove unwanted Browser Helper Objects, Internet Explorer toolbars
and software that starts automatically when you reboot your computer, so it can offer some
assistance while uninstalling Peper Trojan. The manual removal instructions
listed below will help you to identify what to delete with
FreeFixer.
Read more about FreeFixer.
Manual removal
Please follow the instructions below if you would like to remove Peper Trojan manually. Please
notice that you must follow the instructions very carefully and delete everything that is mentioned. In most
cases the removal will fail if one single item is not deleted. If Peper Trojan remains on your system
after stepping through the removal instructions, please double-check by stepping through them again.
- Make sure your system show hidden files and folders
-
Start your computer in safe mode.
-
Start the registry editor. This is done by clicking Start then Run.
(The Run dialog will appear.) Type regedit and click OK. (The registry editor will open.)
- Browse to the key:
'HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Run'
- In the right pane, look for a 14-character long random looking value, starting with a number. Remeber the file (*) it points to and delete the 14-character value.
- Exit the registry editor.
-
Start Windows Explorer and delete:
the file (*) mentioned above.
Problems uninstalling? Click here.
Alternative Uninstall procedure
Here's is an information page about how to remove it.
I'm looking for your help!
Thank you for using my site, I hope you find it useful. I'm looking
for help from all users, please read more.
Contact information for Peper Trojan's vendor
In order to provide correct, accurate and updated information about Peper Trojan
I encourage the vendor to contact me if any part of this write-up
needs a revision.
Related links |
|
Bazooka - Free scan for spyware, adware, trojan horses, keyloggers, etc. Detects more than 500 potentially unwanted applications. Freeware!
The File Database - Search the file database for more information. Free!
PopUp Blocker Test - Find out if your pop-up killer can handle all pop-ups. Free!
Kephyr Labs - Find out what is going on at Kephyr. Try products in an early stage of development.
|
|
|