How to remove conx64.exe

» File
File Details
Overview
Analysis

conx64.exe

The module conx64.exe has been detected as PUP.UCBrowser

Remove conx64.exe

File Details

Main Info:

Product Name:	Microsoft® Windows® Operating System
Company Name:	Microsoft Corporation
MD5:	64da8fe5680c553e26f8bd9364bb7314
Size:	86 KB
First Published:	2017-05-21 03:02:07 (8 years ago)
Latest Published:	2025-04-12 23:02:17 (2 months ago)

Analysis:

Status:	PUP.UCBrowser (on last analysis)
Analysis Date:	2025-04-12 23:02:17 (2 months ago)

Overview

Digital Signature

Signed By:	Guangzhou Tieren Network Technology Co.,Ltd.
Status:	Valid

Common Places:

%localappdata%\ucbrowser\user data\default\extensions\pbnmnlipmkfkadfcdocgblonoccmolpe\3.1.0_0\bin\pphelper

%localappdata%\ucbrowser\user data\default\extensions\pbnmnlipmkfkadfcdocgblonoccmolpe\3.0.3_0\bin\pphelper

%localappdata%\ucbrowser\user data\default\extensions\pbnmnlipmkfkadfcdocgblonoccmolpe\3.1.0_1\bin\pphelper

%localappdata%\ucbrowser\user data\default\extensions\pbnmnlipmkfkadfcdocgblonoccmolpe\3.0.1_0\bin\pphelper

%localappdata%\ucbrowser\user data\default\extensions\pbnmnlipmkfkadfcdocgblonoccmolpe\3.0.2_0\bin\pphelper

%profile%\dministrator\local settings\application data\ucbrowser\user data\default\extensions\pbnmnlipmkfkadfcdocgblonoccmolpe\3.1.0_0\bin\pphelper

%localappdata%\ucbrowser\user data\default\extensions\pbnmnlipmkfkadfcdocgblonoccmolpe\3.0.1_1\bin\pphelper

%localappdata%\ucbrowser\user data\default\extensions\pbnmnlipmkfkadfcdocgblonoccmolpe\3.0.3_1\bin\pphelper

%localappdata%\ucbrowser\user data\default\extensions\pbnmnlipmkfkadfcdocgblonoccmolpe\3.0.0_0\bin\pphelper

%localappdata%\ucbrowser\user data\default\extensions\pbnmnlipmkfkadfcdocgblonoccmolpe\3.0.0_1\bin\pphelper

Geography:

Vietnam	18.6%
Taiwan	17.6%
Indonesia	12.8%
South Korea	5.9%
Thailand	5.4%
Turkey	4.5%
Hong Kong	3.3%
Japan	2.8%
Russia	2.8%
Poland	2.0%
Hungary	1.9%
Romania	1.8%
Israel	1.5%
Ukraine	1.2%
Italy	1.2%
Bulgaria	1.1%
Malaysia	0.8%
Brazil	0.8%
Spain	0.8%
China	0.8%
Mexico	0.6%
Iran	0.6%
Greece	0.6%
Costa Rica	0.6%
Netherlands	0.5%
Bosnia and Herzegovina	0.4%
Czech Republic	0.4%
Kazakhstan	0.4%
Argentina	0.4%
United Kingdom	0.4%
New Zealand	0.4%
Portugal	0.4%
Luxembourg	0.4%
Algeria	0.3%
Saudi Arabia	0.3%
Germany	0.3%
Chile	0.3%
Philippines	0.3%
India	0.3%
Latvia	0.3%
United Arab Emirates	0.2%
Croatia	0.2%
Morocco	0.2%
United States	0.2%
France	0.2%
Slovakia	0.2%
Egypt	0.2%
Colombia	0.2%
Singapore	0.2%
Slovenia	0.2%
Belarus	0.2%
Tunisia	0.2%
Denmark	0.2%
Qatar	0.2%
Belgium	0.2%
South Africa	0.1%
Serbia	0.1%
Laos	0.1%
Venezuela	0.1%
Kenya	0.1%
Moldova	0.1%
Dominican Republic	0.1%
Kuwait	0.1%
Pakistan	0.1%
Uruguay	0.1%
Uganda	0.1%
Austria	0.1%
Nepal	0.1%
Australia	0.1%
Sudan	0.1%
Mauritius	0.1%
Iraq	0.1%
Georgia	0.1%
Estonia	0.1%
Belize	0.1%
Iceland	0.1%
Ecuador	0.1%

OS Version:

Windows 7	49.0%
Windows 10	42.9%
Windows 8.1	6.7%
Windows 8	1.1%
Windows Vista	0.2%
Windows XP	0.1%
Windows Embedded 8.1	0.1%

Analysis

PE Info:

Subsystem:	Windows CUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000100000000
Entry Address:	0x0000707c

PE Sections:

Name	Size of data	MD5
.text	31232	201fd2570ef7d068a92975b2bf6763e9
.data	2048	634696de22c643126b727919d6ce281b
.pdata	1024	81956a98d2bbbc715a7145dc17a06168
.rsrc	45056	8dbdbbfe31d5dbe1fb6da5bfb9194ba2
.reloc	512	745c5ccfd9fce4046c9e6fadee1fa360

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for conx64.exe

copyright for information about conx64.exe