How to remove SymantecRegMech_p1v1.exe.vir
- File Details
- Overview
- Analysis
SymantecRegMech_p1v1.exe.vir
The module SymantecRegMech_p1v1.exe.vir has been detected as PUP.OpenCandy
File Details
| MD5: |
8401b7bb86eace3d40830699d8cae8d4 |
| Size: |
193 KB |
| First Published: |
2017-05-25 04:12:32 (7 years ago) |
| Latest Published: |
2019-06-14 09:31:14 (5 years ago) |
| Status: |
PUP.OpenCandy (on last analysis) |
|
| Analysis Date: |
2019-06-14 09:31:14 (5 years ago) |
Overview
| %profile%\elcome\application data\opencandy\c4f7227683cd44719302b333f755dd5f |
| %appdata%\opencandy\b0dacfcd3659418b8b354efbf5029492 |
| %appdata%\opencandy\1fc1fa44f9544c24956ecc9ee92b6602 |
| %appdata%\opencandy\30d2ad67d4f542b7955305f896ea58d0 |
| %appdata%\opencandy |
| %profile%\op player\application data\opencandy |
| %sysdrive%\adwcleaner\quarantine\c\users\dell\appdata\roaming\opencandy |
| %appdata%\opencandy |
| SymantecRegMech_p1v1.exe |
| SymantecRegMech_p1v1.exe.vir |
|
33.3% |
|
|
16.7% |
|
|
8.3% |
|
|
8.3% |
|
|
8.3% |
|
|
8.3% |
|
|
8.3% |
|
|
8.3% |
|
| Windows 7 |
66.7% |
|
| Windows 8.1 |
16.7% |
|
| Windows XP |
8.3% |
|
| Windows 10 |
8.3% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000038af |
| Name |
Size of data |
MD5 |
| .text |
29696 |
419d4e1be1ac35a5db9c47f553b27cea |
| .rdata |
11264 |
cca1ca3fbf99570f6de9b43ce767f368 |
| .data |
512 |
77f0839f8ebea31040e462523e1c770e |
| .ndata |
0 |
00000000000000000000000000000000 |
| .rsrc |
2560 |
f4f5e325790334930f359c56f20563a0 |
| .reloc |
4096 |
6796fe0134d75635b1054823a8b6c63a |
