How to remove $RFDWJMI.exe
- File Details
- Overview
- Analysis
$RFDWJMI.exe
The module $RFDWJMI.exe has been detected as Adware.ELEX
File Details
| MD5: |
a58387f6990a22a3b648925a1deec87b |
| Size: |
25 MB |
| First Published: |
2017-05-27 22:06:43 (7 years ago) |
| Latest Published: |
2018-06-01 05:11:03 (6 years ago) |
| Status: |
Adware.ELEX (on last analysis) |
|
| Analysis Date: |
2018-06-01 05:11:03 (6 years ago) |
Overview
| %sysdrive%\adwcleaner\quarantine\files\ywteuwbsbnqvvpyctinwawiewvvqekxi |
| %commonappdata%\wintools |
| %commonappdata% |
| %sysdrive%\$recycle.bin |
| %temp% |
| WintoolUprI.exe |
| $RFDWJMI.exe |
| inst12.exe |
|
37.5% |
|
|
18.8% |
|
|
18.8% |
|
|
12.5% |
|
|
12.5% |
|
| Windows 7 |
87.5% |
|
| Windows 8.1 |
12.5% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0000f7e0 |
| Name |
Size of data |
MD5 |
| .text |
144896 |
50606c04903e124cbb414d2d716afa0c |
| .rdata |
37888 |
9ee1a9d8a00446691653e3847dba4bf4 |
| .data |
7680 |
74694d1d4747425a4eb99d46b3ac4016 |
| .rsrc |
26980352 |
23e04bc4c5caa6d7147e036577f91f44 |
| .reloc |
7168 |
f32e8329aa9ea68267ed83584285603b |
