How to remove StartMenuIndexer.exe.vir
- File Details
- Overview
- Analysis
StartMenuIndexer.exe.vir
The module StartMenuIndexer.exe.vir has been detected as PUP.Pokki
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
fb201c9f836c29fb79e7942826e1a4fb |
| Size: |
2 MB |
| First Published: |
2017-05-22 10:15:15 (7 years ago) |
| Latest Published: |
2020-08-13 23:45:16 (4 years ago) |
| Status: |
PUP.Pokki (on last analysis) |
|
| Analysis Date: |
2020-08-13 23:45:16 (4 years ago) |
Overview
| Signed By: |
Pokki |
| Status: |
Valid |
| %localappdata%\pokki\engine |
| %sysdrive%\adwcleaner\quarantine\files\sgamfqzgvbnhiznfxzdvrfpgsjebsrgs\engine |
| %sysdrive%\adwcleaner\quarantine\files\bwuugzokvtuhzcurqkjkgxigeezxydwb\engine |
| %sysdrive%\adwcleaner\quarantine\rywtiizs2t\engine |
| %sysdrive%\adwcleaner\quarantine\1xvpfvjcrg\engine |
| %sysdrive%\windows.old\users\default\appdata\local\pokki\engine |
| %localappdata%\pokki |
| %sysdrive%\adwcleaner\quarantine\exuieaoeii |
| %sysdrive%\adwcleaner\quarantine\c\users\ss\appdata\local\pokki |
| %sysdrive%\adwcleaner\quarantine\files\jikslpdedbjzexfmqfhmlynfwemqpvpp |
| StartMenuIndexer.exe |
| StartMenuIndexer.exe.vir |
|
21.8% |
|
|
9.0% |
|
|
7.7% |
|
|
6.4% |
|
|
5.1% |
|
|
3.8% |
|
|
3.8% |
|
|
3.8% |
|
|
3.8% |
|
|
3.8% |
|
|
3.8% |
|
|
2.6% |
|
|
2.6% |
|
|
2.6% |
|
|
2.6% |
|
|
2.6% |
|
|
2.6% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
| Windows 10 |
53.8% |
|
| Windows 8.1 |
46.2% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x001bfa50 |
| Name |
Size of data |
MD5 |
| .text |
2221568 |
a7f76091f9942e947c91b0bd6aebd242 |
| .rdata |
623104 |
7aad07c2434fff969377225b689ae50d |
| .data |
31232 |
924e80702d9a41285badd7ff7a28d299 |
| .pdata |
134144 |
aebb8f2364f1080aeea9359b8a9fcc47 |
| .tls |
512 |
bf619eac0cdf3f68d496ea9344137e8b |
| text |
3072 |
f37b78c5d06cc9fe1daa4b96afdd49ae |
| data |
10240 |
a6643ae545092962a14d7bee1a5b20fe |
| .rsrc |
58368 |
05baf42275f173b4a2b8a09e1235d6ab |
| .reloc |
12800 |
7f921283d87a4ba018013b36a27154c1 |
