How to remove YImage.dll
YImage.dll
The module YImage.dll has been detected as Worm.Ramnit
File Details
| Product Name: | Yahoo! Messenger |
| Company Name: | Yahoo! Inc. |
| MD5: | e8f314d1545bb39a94e7504395ba6f9b |
| Size: | 324 KB |
| First Published: | 2017-12-08 09:08:39 (7 years ago) |
| Latest Published: | 2017-12-08 09:08:39 (7 years ago) |
| Status: | Worm.Ramnit (on last analysis) | |
| Analysis Date: | 2017-12-08 09:08:39 (7 years ago) |
Common Places:
| %sysdrive%\yahoo! |
Geography:
| 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x60d90000 |
| Entry Address: | 0x00041000 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 204800 | 9e8dd03b29f659a2c2d58f8897f2b485 |
| .rdata | 40960 | bad8f0dd720b7f2b4d9b1c6b53c1048c |
| .data | 4096 | 68b09a1e005aa169d9d49b74df1f2051 |
| .rsrc | 4096 | 3e15c6889ac64ec413866fd22aa79cb2 |
| .reloc | 8192 | 7acf73d00a30acfa31f56f96d401478b |
| .text | 65536 | 6432752ad7791aa41110302c042af112 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for YImage.dll
