The file REJOICE2007.EXE can destroy your system, thus making the computer to work abnormally.
REJOICE2007.EXE is a dangerous file.
RemoveREJOICE2007.EXE from your computer immediately.
Kill the process REJOICE2007.EXE and remove REJOICE2007.EXE from the Windows startup.
Malware Analysis of REJOICE2007.EXE
Full path on a computer: %Program Files Common%\Microsoft Shared\MSInfo\rejoice2007.exe
Detected by UnHackMe:
REJOICE2007.EXE
Default location: %Program Files Common%\Microsoft Shared\MSInfo\rejoice2007.exe
Removal Results: Success
Number of reboot: 1
REJOICE2007.EXE is known as:
Trojan.Pigeon.yhvhy, Backdoor.Graybird.Gen, Obfuscated.O.genr, Packed.Black.d, Backdoor.Hupigon.BJ75tLlxVA8, Trojan.Agent.Gen-Kryptor, Backdoor.Hupigon.figf0, BackDoor.Pigeon.775, Mal.DSpy-B, Backdoor.Huigezi.2007.aorn, Backdoor.Hupigon.CK, Backdoor.Hupigon, MalwareScope.Trojan-PSW.Game.16, Backdoor.Graybird, probably a variant of Win32.Hupigon, Backdoor.ShangXing.kd, Suspicion: unknown virus, Trj.Thed.B
REJOICE2007.EXE hash:
- MD5: 0f017ada0f2acee21ac72d2d2cd3889a
Registry:- HKLM\System\CurrentControlSet\Services\Windows_rejoice2007\Type: 0×00000110
- HKLM\System\CurrentControlSet\Services\Windows_rejoice2007\Start: 0×00000002
- HKLM\System\CurrentControlSet\Services\Windows_rejoice2007\ErrorControl: 0×00000000
- HKLM\System\CurrentControlSet\Services\Windows_rejoice2007\ImagePath: “%Program Files Common%\Microsoft Shared\MSINFO\rejoice2007.exe”
- HKLM\System\CurrentControlSet\Services\Windows_rejoice2007\DisplayName: “Windows_rejoice2007″
- HKLM\System\CurrentControlSet\Services\Windows_rejoice2007\ObjectName: “LocalSystem”
- HKLM\System\CurrentControlSet\Services\Windows_rejoice2007\Description: “EI?EO