The program JAVAP.EXE is used for hidden penetration into PC and its remote administration.
UnHackMe is recommended as a reliable program for solving the problem with JAVAP.EXE.
Download for free: http://www.unhackme.com
Malware Analysis of JAVAP.EXE
Full path on a computer: %SysDir%\Oracle\javap.exe
Detected by UnHackMe:
JAVAP.EXE
Default location: %SysDir%\Oracle\javap.exe
Removal Results: Success
Number of reboot: 1
JAVAP.EXE is known as:
Backdoor.Xtrat, Trojan ( 0034caa31 ), Trojan.Xtrat.csrqil, W32.Extrat, Trojan.Xtrat.flh, Trojan.Xtrat.AW6V.gMGxmE, TR.Dropper.VB.10072, Troj.Xtrat.f.(kcloud), Backdoor.Xtrat.A, W32.Trojan.NLYQ-6451, Trojan.Xtrat, Trojan.Xtrat.AScR, Win32.Remtasu.Y, W32.Xtrat.FLH.tr, Win32.Trojan.Multi.daf
JAVAP.EXE hash:
- MD5: 5d434d3e1fd93dbf87323132dda08096
The file tries to connect to the dangerous web site.
How to quickly detect JAVAP.EXE presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\HKCU: “%SysDir%\Oracle\javap.exe”
Folders:- %SysDir%\Oracle
Files:- %Appdata%\Microsoft\Windows\ShNet.cfg
- %Appdata%\Microsoft\Windows\ShNet.dat
- %Appdata%\Microsoft\Windows\ShNet.xtr
- %Temp%\test09848.exe
- %SysDir%\Oracle\javap.exe