How to remove WinPcap_4_1_3.exe

WinPcap_4_1_3.exe

The module WinPcap_4_1_3.exe has been detected as Trojan.CainAbel

WinPcap_4_1_3.exe
Remove WinPcap_4_1_3.exe

File Details

Product Name:

WinPcap 4.1.3
Company Name:

Riverbed Technology, Inc.
MD5: a11a2f0cfe6d0b4c50945989db6360cd
Size: 893 KB
First Published: 2017-05-22 09:03:28 (8 years ago)
Latest Published: 2024-10-13 23:02:15 (a year ago)
Status: Trojan.CainAbel (on last analysis)
Analysis Date: 2024-10-13 23:02:15 (a year ago)

Overview

Signed By: Riverbed Technology, Inc.
Status: Valid

Common Places:

%profile%
%programfiles%\cain\driver
%programfiles%\cain
%localappdata%
%programfiles%\cain
%programfiles%\cain
%programfiles%\cain
%programfiles%\cain
%programfiles%\cain
%programfiles%\cain

File Names:

WinPcap.exe
WinPcap_4_1_3.exe
Tempwinpcap.exe

Geography:

13.5%
7.0%
5.9%
4.9%
4.9%
3.8%
3.8%
3.8%
3.2%
2.7%
2.7%
2.2%
2.2%
1.6%
1.6%
1.6%
1.6%
1.6%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%

OS Version:

Windows 10 59.6%
Windows 7 31.4%
Windows 8.1 6.9%
Windows 8 0.5%
Windows Server 2003 0.5%
Windows XP 0.5%
Windows Server 2008 R2 0.5%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000030fa

PE Sections:

Name Size of data MD5
.text 24064 856b32eb77dfd6fb67f21d6543272da5
.rdata 5120 dc77f8a1e6985a4361c55642680ddb4f
.data 1024 7922d4ce117d7d5b3ac2cffe4b0b5e4f
.ndata 0 00000000000000000000000000000000
.rsrc 17408 ba26f4f9f9b95c2435c1dbf47e17a040

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for WinPcap_4_1_3.exe
copyright for information about WinPcap_4_1_3.exe