How to remove $RHQNUFY.exe
- File Details
- Overview
- Analysis
$RHQNUFY.exe
The module $RHQNUFY.exe has been detected as Adware.ELEX
File Details
| Company Name: |
|
| MD5: |
2886856f8a494115c8e4b0cdab890983 |
| Size: |
149 KB |
| First Published: |
2017-05-21 17:06:17 (7 years ago) |
| Latest Published: |
2020-06-04 22:03:11 (4 years ago) |
| Status: |
Adware.ELEX (on last analysis) |
|
| Analysis Date: |
2020-06-04 22:03:11 (4 years ago) |
Overview
| %programfiles%\thinksky\itools 3 |
| %sysdrive%\$recycle.bin\s-1-5-21-2524563508-4107490259-3552724189-1001\$rz1t5zl.exe |
| %sysdrive%\$recycle.bin\s-1-5-21-2524563508-4107490259-3552724189-1001\$rw2ypu4 |
| %profile%\downloads\itools v3.3.1.0 build 1.4 thai.exe |
| %profile%\downloads\programs\itools v3.3.1.0 build 1.4 thai |
| %profile%\downloads\itools v3.3.1.0 build 1.4 thai (1).exe |
| %programfiles%\thinksky |
| %sysdrive%\downloads |
| %sysdrive%\my drive\pc\drive d\downloads |
| %profile%\downloads |
| BugReport.exe |
| $RHQNUFY.exe |
|
50.0% |
|
|
9.8% |
|
|
8.0% |
|
|
7.6% |
|
|
2.2% |
|
|
2.2% |
|
|
2.2% |
|
|
1.8% |
|
|
1.3% |
|
|
1.3% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
| Windows 7 |
37.9% |
|
| Windows 10 |
33.5% |
|
| Windows 8 |
15.2% |
|
| Windows 8.1 |
10.7% |
|
| Windows XP |
2.2% |
|
| Windows Vista |
0.4% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00010aa3 |
| Name |
Size of data |
MD5 |
| .text |
70144 |
9e320ed2a64b2a63929ce9c25f3366bb |
| .rdata |
20480 |
7e9610335925d7d39da002016ae9289d |
| .data |
512 |
b3a74ef904c8a974b259db4ed2f755ae |
| .rsrc |
48640 |
e0f18bde21903994b20e8aa37c163da0 |
| .reloc |
6144 |
265c28766db054e470bd87a5c0df4f14 |
