How to remove Afreecodec_downloader_For_Microsoft_Office_PowerPo

Afreecodec_downloader_For_Microsoft_Office_PowerPo

The module Afreecodec_downloader_For_Microsoft_Office_PowerPo has been detected as Adware.Downloader

Afreecodec_downloader_For_Microsoft_Office_PowerPo
Remove Afreecodec_downloade

File Details

Product Name:

BSdownloader Module
MD5: 62dfd743acb458f2398645476b9f5a5b
Size: 569 KB
First Published: 2018-03-01 12:06:23 (6 years ago)
Latest Published: 2018-03-01 12:06:35 (6 years ago)
Status: Adware.Downloader (on last analysis)
Analysis Date: 2018-03-01 12:06:35 (6 years ago)

Overview

Signed By: KORAM GAMES LIMITED
Status: Invalid (digital signature could be stolen or file could be patched)

Common Places:

%sysdrive%\$recycle.bin\s-1-5-21-2190263935-2828028545-1150949999-1000\$rg0dstx\backup set 2014-04-13 223413\backup files 2014-04-13 223413\backup files 4.zip\c\users\user
%sysdrive%\$recycle.bin\s-1-5-21-2190263935-2828028545-1150949999-1000\$r5yy0zj\backup set 2014-04-28 185042\backup files 2014-04-28 185042\backup files 4.zip\c\users\user
%sysdrive%\$recycle.bin\s-1-5-21-2190263935-2828028545-1150949999-1000\$rqp7qr6\backup set 2014-05-12 095416\backup files 2014-05-12 095416\backup files 4.zip\c\users\user
%sysdrive%\$recycle.bin\s-1-5-21-2190263935-2828028545-1150949999-1000\$rhuive8\backup set 2014-05-25 225130\backup files 2014-05-25 225130\backup files 4.zip\c\users\user

Geography:

100.0%

OS Version:

Windows 8.1 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000525de

PE Sections:

Name Size of data MD5
.text 442368 70d7f03942da39f0c2bfaf0e4bcc985a
.rdata 65536 e708b756a82f18c14cb1e1f971e6a7b4
.data 12288 9eb31aa787ac43aabf092371489a5535
.rsrc 53248 007322b3a63bcf530331596945d714db

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for Afreecodec_downloader_For_Microsoft_Office_PowerPo
copyright for information about Afreecodec_downloader_For_Microsoft_Office_PowerPo