How to remove ColorScheme.exe

» File
File Details
Overview
Analysis

ColorScheme.exe

The module ColorScheme.exe has been detected as Trojan.Agent

ColorScheme.exe

Remove ColorScheme.exe

File Details

Main Info:

Product Name:	Windows Application Color Scheme
Company Name:	Microsoft Windows Application
MD5:	d94998833a57bf6c5ff14a384e85c760
Size:	2 MB
First Published:	2018-10-29 21:14:47 (6 years ago)
Latest Published:	2020-03-29 13:35:05 (4 years ago)

Analysis:

Status:	Trojan.Agent (on last analysis)
Analysis Date:	2020-03-29 13:35:05 (4 years ago)

Common Places:

%localappdata%\microsoft\windows

%localappdata%\microsoft\windows

Geography:

	54.5%
	45.5%

OS Version:

Windows 7	72.7%
Windows 8.1	18.2%
Windows 8	9.1%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00153396

PE Sections:

Name	Size of data	MD5
.text	1736704	12aad32536dde18c5077e7746969feb9
.rdata	550912	caecda5e03c57e5e3f404c7540c4f254
.data	125440	5858c3eb8f9dd737539b0155d43f6ee8
.rsrc	4096	7160297be3af41adfc73f7b0ff0f14a7
.reloc	128000	3a281585d4bec8d7ff9a74c48b73d51b

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for ColorScheme.exe

copyright for information about ColorScheme.exe