How to remove comres.exe
comres.exe
The module comres.exe has been detected as Risk.CoinMiner
File Details
| Product Name: | XMRig-NVIDIA |
| Company Name: | www.xmrig.com |
| MD5: | 9f56e3593d3aeae2e34a2214f3cde5c6 |
| Size: | 13 MB |
| First Published: | 2019-07-01 03:08:03 (6 years ago) |
| Latest Published: | 2021-01-05 15:11:30 (4 years ago) |
| Status: | Risk.CoinMiner (on last analysis) | |
| Analysis Date: | 2021-01-05 15:11:30 (4 years ago) |
Common Places:
| %commonappdata% |
| %appdata% |
| %appdata% |
Geography:
| 66.7% | ||
| 33.3% |
OS Version:
| Windows 10 | 66.7% | |
| Windows 7 | 33.3% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x001c6e5c |
PE Sections:
| Name | Size of data | MD5 |
| .text | 2196480 | a57255d2bcb82278633f812f7587b54e |
| .rdata | 869888 | 8667500686d061afa683c0ea69c4c5d6 |
| .data | 76800 | 2c40e262cebee617b51fade59758e4ed |
| .pdata | 115200 | e5b27475841735abdc6f179024ebf31e |
| .nv_fatb | 10370560 | 7a549bcd1ba7f533729e4ce047eee777 |
| .nvFatBi | 512 | 8bd37ca9e0b5505f6cc27b2d4254b183 |
| _TEXT_CN | 4096 | 5a25255560866a9ac9221da624259dbe |
| _TEXT_CN | 5632 | 0d1e9bb9805e5514d99f6626f47a0615 |
| .gfids | 3072 | 1d954553d07628101509cb006338d40b |
| .tls | 512 | 1f354d76203061bfdd5a53dae48d5435 |
| .rsrc | 23552 | d2b1b63ccfd0db0c14283cf8e6c97dc5 |
| .reloc | 32256 | d11c7148b93e57bdf00ce4c1149ca0ba |
More information:
Download GridinSoft
Anti-Malware - Removal tool for comres.exe
