How to remove $RWHG5BG.dll

» File
File Details
Overview
Analysis

$RWHG5BG.dll

The module $RWHG5BG.dll has been detected as Adware.Agent

Remove $RWHG5BG.dll

File Details

Main Info:

Product Name:	Assembly imported from type library 'Shell32'.
Company Name:
MD5:	8d73f922a4e3181288f3a13cc151c859
Size:	55 KB
First Published:	2017-08-15 03:10:12 (7 years ago)
Latest Published:	2024-04-05 23:05:49 (10 months ago)

Analysis:

Status:	Adware.Agent (on last analysis)
Analysis Date:	2024-04-05 23:05:49 (10 months ago)

Overview

Digital Signature

Signed By:	Secure Installer Inc
Status:	Valid

Common Places:

%programfiles%\driverrestore

%desktop%\nkt 2017\nhà b tgð\driverrestore

%programfiles%

%desktop%\documentos\webcam

%sysdrive%\adwcleaner\quarantine

%sysdrive%\$recycle.bin

%programfiles%

File Names:

Interop.Shell32.dll

$RWHG5BG.dll

Geography:

	33.3%
	14.3%
	14.3%
	7.1%
	4.8%
	4.8%
	4.8%
	2.4%
	2.4%
	2.4%
	2.4%
	2.4%
	2.4%
	2.4%

OS Version:

Windows 10	64.3%
Windows 7	16.7%
Windows 8.1	14.3%
Windows 8	4.8%

Analysis

PE Info:

Subsystem:	Windows CUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0000a71e

.NET Info:

MVID:	d32d3929-05f4-4399-b440-14f4325302cd
Typelib ID:	50a7e9b0-70ef-11d1-b75a-00a0c90564fe

PE Sections:

Name	Size of data	MD5
.text	36864	90088e5eb67752c5507a752b75b59b86
.rsrc	4096	e9568283d0cab7114374a84ca1c530db
.reloc	4096	2e8559db85c869e516c8602a388ba56a

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for $RWHG5BG.dll

copyright for information about $RWHG5BG.dll

How to remove $RWHG5BG.dll

$RWHG5BG.dll

The module $RWHG5BG.dll has been detected as Adware.Agent

File Details

Main Info:

Assembly imported from type library 'Shell32'.

Analysis:

Overview

Digital Signature

Common Places:

Geography:

OS Version:

Analysis

PE Info:

.NET Info:

PE Sections:

More information: