How to remove $RAYXZH4.exe

» File
File Details
Overview
Analysis

$RAYXZH4.exe

The module $RAYXZH4.exe has been detected as Adware.Gen

Remove $RAYXZH4.exe

File Details

Main Info:

Product Name:	Web Quick Macro
Company Name:	vrBrothers.com
MD5:	a1836a2a7c1afb60a6ee4d549b8d2f81
Size:	3 MB
First Published:	2017-10-01 14:09:57 (8 years ago)
Latest Published:	2024-08-16 23:00:59 (a year ago)

Analysis:

Status:	Adware.Gen (on last analysis)
Analysis Date:	2024-08-16 23:00:59 (a year ago)

Overview

Digital Signature

Signed By:	福建创意嘉和软件有限公司
Status:	Valid

Common Places:

%sysdrive%\$recycle.bin

%sysdrive%\按键精灵

%programfiles%\按键精灵

%commonappdata%\按键精灵

%sysdrive%\software2\按键精灵

%desktop%\国际服单自瞄-禁止国服 (1)

%sysdrive%\按键精灵

File Names:

WQM.exe

$RAYXZH4.exe

Geography:

	53.8%
	38.5%
	7.7%

OS Version:

Windows 7	53.8%
Windows 10	38.5%
Windows 8.1	7.7%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00055b29

PE Sections:

Name	Size of data	MD5
.text	2530816	5cef25ac87829a4b2ccd6fa7d1afaf68
.rdata	414720	57208a8356923ab6c7f8ae94cf2439d7
.data	31232	aa7d35e4d5208ad96d2da8130b5b4625
.rsrc	847872	0ab47eab6a6a0fdb1c2a6ebc971a5d73

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for $RAYXZH4.exe

copyright for information about $RAYXZH4.exe

How to remove $RAYXZH4.exe

$RAYXZH4.exe

The module $RAYXZH4.exe has been detected as Adware.Gen

File Details

Main Info:

Web Quick Macro

vrBrothers.com

Analysis:

Overview

Digital Signature

Common Places:

Geography:

OS Version:

Analysis

PE Info:

PE Sections:

More information: