How to remove WebCompanionInstaller.exe.vir
- File Details
- Overview
- Analysis
WebCompanionInstaller.exe.vir
The module WebCompanionInstaller.exe.vir has been detected as Adware.OpenCandy
File Details
| MD5: |
7fdb2d146554933c9c6651020baabf86 |
| Size: |
7 MB |
| First Published: |
2017-05-22 11:23:49 (6 years ago) |
| Latest Published: |
2024-03-20 23:06:50 (a month ago) |
| Status: |
Adware.OpenCandy (on last analysis) |
|
| Analysis Date: |
2024-03-20 23:06:50 (a month ago) |
Overview
| %appdata%\rheng\ad13fbbe96d5467bba5dab1099c25ba7 |
| %sysdrive%\quarantine_mzk\folders\2016100119285760\opencandy.19.37.17.34\014417c3a5894a0b90c3da58527a072b |
| %appdata%\rheng\ecf41e48da2348a48691f6633c469b11 |
| %appdata%\opencandy\78e9c64a9c86434b954b1687bef08228 |
| %appdata%\opencandy\dd5e5c31a94a4953b0f5a3f5ec9d7294 |
| %sysdrive%\adwcleaner\quarantine\c\users\jerry chang\appdata\roaming\rpeng\351e56f07ff7484d9c22c79bc91f9dff |
| %appdata%\opencandy\3ef8b42254924206b29d40ab2a08f45a |
| %appdata%\opencandy\56816d1fe1304cf584cd8a3f2d64efc7 |
| %appdata%\rheng\9327fb9a077448b7be120335f425b203 |
| %appdata%\rheng\781cacc3463e4f02a31bd27966799371 |
| WebCompanionInstaller.exe |
| WebCompanionInstaller.exe.vir |
|
33.6% |
|
|
9.5% |
|
|
7.0% |
|
|
5.1% |
|
|
4.6% |
|
|
4.1% |
|
|
3.5% |
|
|
3.3% |
|
|
3.0% |
|
|
2.2% |
|
|
2.2% |
|
|
1.9% |
|
|
1.9% |
|
|
1.9% |
|
|
1.4% |
|
|
1.4% |
|
|
1.1% |
|
|
1.1% |
|
|
1.1% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
| Windows 10 |
54.2% |
|
| Windows 7 |
38.0% |
|
| Windows 8.1 |
5.4% |
|
| Windows 8 |
1.3% |
|
| Windows XP |
0.5% |
|
| Windows Vista |
0.5% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x001c588c |
| Name |
Size of data |
MD5 |
| .text |
2769920 |
eed5edbd3cbd30ae8d7172b5cd11310f |
| .rdata |
687616 |
03a29ff20b02f658b80a2edd8479471d |
| .data |
193536 |
12c27b036f5e04c74227e272c1c1ae10 |
| .tls |
512 |
bf619eac0cdf3f68d496ea9344137e8b |
| .rsrc |
4243456 |
a9e020762193cb44fc5f1bcc041a2c55 |
| .reloc |
159232 |
2cc601ef956bff37082027f0dd635ec8 |
