How to remove WinLogOnView.exe

» File
File Details
Overview
Analysis

WinLogOnView.exe

The module WinLogOnView.exe has been detected as Trojan.Kryptik

Remove WinLogOnView.exe

File Details

Main Info:

Product Name:	WinLogOnView
Company Name:	NirSoft
MD5:	8654e4a7bd984acd493e445219362c36
Size:	98 KB
First Published:	2019-09-21 03:15:25 (5 years ago)
Latest Published:	2021-03-25 21:45:35 (3 years ago)

Analysis:

Status:	Trojan.Kryptik (on last analysis)
Analysis Date:	2021-03-25 21:45:35 (3 years ago)

Overview

Digital Signature

Signed By:	Nir Sofer
Status:	Valid

Common Places:

%profile%\downloads\symenu\programfiles\spssuite\nirsoftsuite

%profile%\downloads

%sysdrive%\utils\winrepairtools.zip\winrepairtools\downloads\nirlauncher

%sysdrive%\system\winrepairtools\downloads\nirlauncher

%desktop%\cartelle\attività quotidiane\manutenzione\windows_repair_toolbox\downloads\nirlauncher

%profile%\downloads\nirsoft_package_enc_1.23.11\nirsoft_package_enc_1.23.11.7z

%programfiles%\wscc4

%desktop%\торренты\nirlauncher package 1.23.20 portable

%sysdrive%\tools\nirlauncher

%appdata%\wscc4

Geography:

	13.9%
	11.1%
	8.3%
	8.3%
	8.3%
	5.6%
	5.6%
	5.6%
	5.6%
	5.6%
	2.8%
	2.8%
	2.8%
	2.8%
	2.8%
	2.8%
	2.8%
	2.8%

OS Version:

Windows 10	75.0%
Windows 7	19.4%
Windows 8.1	5.6%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0000dfe0

PE Sections:

Name	Size of data	MD5
.text	54784	5ddc10f3614c096ce46c4ff4823c26e9
.rdata	13312	a9c9b549f5a777a8bad4410d7bafa07e
.data	1024	4be3ffc1880cb2cbb3cd2a00eedbcd29
.rsrc	22016	c3ee18a8f80d6ca40b6ad020d824ac02

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for WinLogOnView.exe

copyright for information about WinLogOnView.exe