How to remove 1327100778752.todo

1327100778752.todo

The module 1327100778752.todo has been detected as PUP.Tencent

1327100778752.todo
Remove 1327100778752.todo

File Details

Product Name:

QQ影音在线升级
Company Name:

Tencent
MD5: 970da88910e1c619bc0c6c5d2926567d
Size: 883 KB
First Published: 2017-05-24 15:07:03 (8 years ago)
Latest Published: 2022-04-18 23:18:42 (3 years ago)
Status: PUP.Tencent (on last analysis)
Analysis Date: 2022-04-18 23:18:42 (3 years ago)

Overview

Signed By: Tencent Technology(Shenzhen) Company Limited
Status: Valid

Common Places:

%programfiles%\tencent\qqplayer
%sysdrive%\adwcleaner\quarantine\files\rmxibktlhfugmsknbkuztszxgbbcwnwm\qqplayer
%sysdrive%\adwcleaner\quarantine\files\npbpvcznlgojkyxbqyqhfkimiqjfqzqi\qqplayer
%sysdrive%\adwcleaner\quarantine\1xvpfvjcrg\qqplayer
%sysdrive%\adwcleaner\quarantine\files\euvskeqxuceglbidzrqsejhgclhljsex\qqplayer
%appdata%\zhp\quarantine
%programfiles%\tencent
%sysdrive%\system volume information\_restore{8d42bc2e-8633-4738-8c91-82c48b0e1efc}
%programfiles%
%programfiles%\tencent

File Names:

QPUp.exe
1327100778752.todo
A0017027.exe
2001041999.todo

Geography:

45.8%
14.2%
6.7%
5.0%
3.1%
2.8%
2.2%
2.2%
2.2%
1.7%
1.4%
1.4%
1.4%
1.1%
1.1%
0.8%
0.6%
0.6%
0.6%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%

OS Version:

Windows 7 50.3%
Windows 10 28.3%
Windows XP 11.3%
Windows 8.1 9.3%
Windows 8 0.3%
Windows Server 2012 R2 0.3%
Windows Vista 0.3%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x0001ecba

PE Sections:

Name Size of data MD5
.text 258048 f052447b5153928309c794b6fda658e4
.rdata 102400 4642038a0ca2dd77616b29a2cdded81e
.data 8192 f6423dec0aad8479fd6de57f62ce7a8f
.rsrc 516096 1524b38f07dd68fb6e9aa2b4b1e31602

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for 1327100778752.todo
copyright for information about 1327100778752.todo