How to remove GRW.exe
GRW.exe
The module GRW.exe has been detected as Trojan.Heur!
File Details
| MD5: | 4622b90db1101c2505ebe199a442c901 |
| Size: | 129 MB |
| First Published: | 2017-11-01 00:11:15 (7 years ago) |
| Latest Published: | 2020-01-19 21:09:39 (4 years ago) |
| Status: | Trojan.Heur! (on last analysis) | |
| Analysis Date: | 2020-01-19 21:09:39 (4 years ago) |
Overview
| Signed By: | Blue Byte GmbH |
| Status: | Valid |
Common Places:
| %programfiles% |
| %sysdrive%\games |
| %sysdrive%\games |
| %sysdrive%\games |
Geography:
| 22.2% | ||
| 22.2% | ||
| 22.2% | ||
| 11.1% | ||
| 11.1% | ||
| 11.1% |
OS Version:
| Windows 10 | 77.8% | |
| Windows 7 | 22.2% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x04902151 |
PE Sections:
| Name | Size of data | MD5 |
| .sbss | 0 | 00000000000000000000000000000000 |
| .data1 | 8205824 | df4006920e4f68a1bb65745135c407cd |
| .xpdata | 9836032 | 5f120234fbd59357e5a5564c8442a45f |
| .pdata | 3404288 | aa772410ed602c2151b01d8070cefc0d |
| .srdata | 262656 | 6995170cb588c539e740067e11973bff |
| .arch | 512 | b1c4f1469db71fab9cd23a6369edffa4 |
| .reloc | 6144 | 9cb4b6d18bdd5c2de7a72e9a3a44f64d |
| .rsrc | 1024 | e70e898d5160209cd25701445e4e1a6d |
| .trace | 512 | bf1e7039ee086ea6905e98cc7c486c2c |
| .sdata | 4096 | 620f0b67a91f7f74151bc5be745b7110 |
| .xtls | 113463296 | 24aab7d8fc481b143234c82126d8ed97 |
| .edata | 554496 | 354d215cd8860aaefd6b7f2ef6ded274 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for GRW.exe
