How to remove TNODPortable_1.6.0b_Multilingual f.exe

TNODPortable_1.6.0b_Multilingual f.exe

The module TNODPortable_1.6.0b_Multilingual f.exe has been detected as Trojan.Agent

TNODPortable_1.6.0b_Multilingual f.exe
Remove TNODPortable_1.6.0b_

File Details

Product Name:

TNOD
Company Name:

Tukero[X]Team
MD5: 1ef419793f1b4e6767145dd17b0fba03
Size: 2 MB
First Published: 2017-06-09 01:09:28 (7 years ago)
Latest Published: 2020-08-14 12:22:17 (4 years ago)
Status: Trojan.Agent (on last analysis)
Analysis Date: 2020-08-14 12:22:17 (4 years ago)

Overview

Signed By: PortableWares
Status: Invalid (digital signature could be stolen or file could be patched)

Common Places:

%profile%\downloads\compressed\vipre_internet_security_2016_lifetime_activator_rar\tnod user @amp;amp; password finder 1.6.0 portable.rar\tnod user @amp; password finder 1.6.0 portable
%sysdrive%\windows.old\$recycle.bin\s-1-5-21-4292268358-4271189104-3961616411-1001\$r9nqtfa.rar\tnod user @amp; password finder 1.6.0 portable
%profile%\downloads\eset smart security v9.0.375\license downloader
%desktop%\virus scan\tnod\tnod user @amp; password finder 1.6.0 portable.rar\tnod user @amp; password finder 1.6.0 portable
%desktop%\tnod\tnod user @amp; password finder 1.6.0 portable.rar\tnod user @amp; password finder 1.6.0 portable
%desktop%\ess\ess.9.0.375.x64\tnod user @amp; password finder 1.6.0 portable\tnod user @amp; password finder 1.6.0 portable
%localappdata%\microsoft\windows\filehistory\data\2413\c\users\jos\documents\vuze downloads\eset nod32 smart security 9.0.377.0\eset smart security 9.0.377.0 (x86)\tnod user @amp; password finder 1.6.0 portable
%localappdata%\microsoft\windows\filehistory\data\2414\c\users\jos\documents\vuze downloads\eset nod32 smart security 9.0.377.0\eset smart security 9.0.377.0 (x64)\tnod user @amp; password finder 1.6.0 portable
%profile%\downloads\eset smart security v9.0.375
%sysdrive%\softwares\eset nod32 antivirus 9.0.377.0 (x86x64) + keys [sadeempc]\eset nod32 antivirus 9.0.377.0 (x64) + keys [sadeempc]

File Names:

TNODPortable_1.6.0b_Multilingual.paf.exe
TNODPortable_1.6.0b_Multilingual f.exe

Geography:

30.0%
17.5%
12.5%
10.0%
7.5%
5.0%
2.5%
2.5%
2.5%
2.5%
2.5%
2.5%
2.5%

OS Version:

Windows 10 61.9%
Windows 7 33.3%
Windows 8.1 4.8%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000039e3

PE Sections:

Name Size of data MD5
.text 28672 f569e353af0ed51bf4c216faa9bed4e7
.rdata 11264 91eee43954e068e650f7b73a8b0e6915
.data 512 db9f7acbf1c3ddfe255077b699955dfa
.ndata 0 00000000000000000000000000000000
.rsrc 102912 c27bed8b81a8504cefd0b62b7904ab28
.reloc 4096 1bf979ac16c50758e73bfef9f805e18c

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for TNODPortable_1.6.0b_Multilingual f.exe
copyright for information about TNODPortable_1.6.0b_Multilingual f.exe