How to remove YImage.dll
YImage.dll
The module YImage.dll has been detected as Worm.Ramnit
File Details
| Product Name: | Yahoo! Messenger |
| Company Name: | Yahoo! Inc. |
| MD5: | 792e98176f87269004b0c9eeeacb9c9f |
| Size: | 408 KB |
| First Published: | 2017-09-07 17:11:50 (7 years ago) |
| Latest Published: | 2017-09-07 17:11:50 (7 years ago) |
| Status: | Worm.Ramnit (on last analysis) | |
| Analysis Date: | 2017-09-07 17:11:50 (7 years ago) |
Common Places:
| %programfiles%\yahoo!\messenger |
Geography:
| 100.0% |
OS Version:
| Windows 7 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x60d30000 |
| Entry Address: | 0x00041000 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 204800 | 684acc7c339ae40becd9bba3b45b9e76 |
| .rdata | 40960 | d190535c8caea1c1e1367263e2753968 |
| .data | 4096 | 09816f19248948a8c704d8cdc3819f70 |
| .rsrc | 4096 | d62b64459b0fc85652f24643fb73737a |
| .reloc | 8192 | 7acf73d00a30acfa31f56f96d401478b |
| .text | 151552 | 231a42c1b4d9665a08cd4c093efb1d76 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for YImage.dll
