How to remove $RKE23ZH.exe

» File
File Details
Overview
Analysis

$RKE23ZH.exe

The module $RKE23ZH.exe has been detected as PUP.Gen

$RKE23ZH.exe

Remove $RKE23ZH.exe

File Details

Main Info:

Product Name:	proxycheck.exe
MD5:	27bb689e3900453e4658017f5413d00f
Size:	1 MB
First Published:	2018-06-08 20:08:14 (6 years ago)
Latest Published:	2018-10-31 21:15:35 (6 years ago)

Analysis:

Status:	PUP.Gen (on last analysis)
Analysis Date:	2018-10-31 21:15:35 (6 years ago)

Overview

Digital Signature

Signed By:	OOO Albreht I Vitte
Status:	Valid

Common Places:

%appdata%\agdata

%programfiles%

%appdata%\agdata\bin

%sysdrive%\$recycle.bin

%sysdrive%\$recycle.bin\s-1-5-21-2569117324-3299886040-174656144-1001

%sysdrive%\windows.old\users\fast_phred\appdata\roaming\agdata\bin

%sysdrive%\windows.old\users\fast_phred\appdata\roaming\agdata

File Names:

proxycheck.exe

$RKE23ZH.exe

$RNG70RE.exe

Geography:

	66.3%
	16.9%
	4.8%
	3.6%
	2.4%
	2.4%
	1.2%
	1.2%
	1.2%

OS Version:

Windows 10	78.3%
Windows 8.1	9.6%
Windows 7	9.6%
Windows 8	2.4%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0014581b

PE Sections:

Name	Size of data	MD5
.text	1502720	1de09af0349a24ecea65dd7a958c2a75
.rdata	272896	52dfbfa6f18d55e7bf9f95116b5fe2db
.data	12800	802514585ee9862aa3d73bb855893f7f
.rsrc	58880	7e8d6d10de78a3764dd9fbb1de5d0353
.reloc	63488	c9dbb233982ea532386e7efd2772712e

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for $RKE23ZH.exe

copyright for information about $RKE23ZH.exe