How to remove WinSetup64.exe

» File
File Details
Overview
Analysis

WinSetup64.exe

The module WinSetup64.exe has been detected as Adware.Downloader

Remove WinSetup64.exe

File Details

Main Info:

Product Name:	B1 Free Archiver
Company Name:	b1.org
MD5:	1aec44ee6aa15f75a14b6175a15b7775
Size:	130 KB
First Published:	2017-05-21 08:10:08 (8 years ago)
Latest Published:	2024-03-15 23:18:33 (2 years ago)

Analysis:

Status:	Adware.Downloader (on last analysis)
Analysis Date:	2024-03-15 23:18:33 (2 years ago)

Overview

Digital Signature

Signed By:	Catalina Group Limited
Status:	Valid

Common Places:

%programfiles%\b1 free archiver

%sysdrive%\adwcleaner\quarantine\rqf69azbla

%sysdrive%\adwcleaner\quarantine\files

%programfiles%

%sysdrive%\programas\b1

%sysdrive%\adwcleaner\quarantine

%localappdata%

%profile%\downloads

%programfiles%

Geography:

	18.2%
	9.1%
	7.3%
	6.1%
	5.5%
	5.5%
	4.8%
	3.6%
	3.6%
	3.0%
	2.4%
	2.4%
	2.4%
	1.8%
	1.8%
	1.2%
	1.2%
	1.2%
	1.2%
	1.2%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%

OS Version:

Windows 10	57.4%
Windows 7	29.0%
Windows 8.1	11.2%
Windows 8	2.4%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x00007bcc

PE Sections:

Name	Size of data	MD5
.text	75264	5fd41581baa57ea697415f40efb54586
.rdata	38912	06a2debb35ba5a70c9abb26b5975712b
.data	5120	26b3c7d28c75958c87ad7ce1ba96e42a
.pdata	4096	30c197652dc65abac9209a63e89178d5
.rsrc	1536	ff5f64354a85c38636ee0318ef59545b
.reloc	4608	743c88f045ed6f2fa7423460a5b5e3a0

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for WinSetup64.exe

copyright for information about WinSetup64.exe